As state legislatures begin their 2020 sessions, proposals for stronger privacy laws are at the top of the agenda across the country. Carrying forward the story we told in reports in February, April, and July of last year,...more
2/4/2020
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Corporate Counsel ,
Fair Credit Reporting Act (FCRA) ,
General Data Protection Regulation (GDPR) ,
GLBA Privacy ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Personal Data ,
Personal Information ,
Privacy Laws ,
Proposed Legislation ,
State Data Privacy Laws
The automobile industry has been racing full speed ahead in recent years on its quest for increased connectivity and automation, but it may soon find itself swept up in the wave of privacy and data security laws and...more
1/3/2020
/ Automotive Industry ,
California Consumer Privacy Act (CCPA) ,
Connected Cars ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Legislative Agendas ,
Manufacturers ,
Personal Information ,
Popular ,
Risk Management
In recent months, the Office of the Information Commissioner of the UK (“ICO”) has been looking into how personal data is used in real time bidding (“RTB”) in programmatic advertising, involving key stakeholders, including in...more
On May 1, 2019, the Senate Commerce Committee held a hearing on “Consumer Perspectives: Policy Principles for a Federal Data Privacy Framework”—the Committee’s third hearing during this session discussing principles for...more
5/7/2019
/ Biometric Information ,
California Consumer Privacy Act (CCPA) ,
Congressional Investigations & Hearings ,
Consumer Privacy Rights ,
Data Privacy ,
Data Protection Authority ,
Enforcement Authority ,
Facial Recognition Technology ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Personal Data ,
Preemption ,
Privacy Laws ,
Regulatory Authority
Continuing Congress’s consideration of possible comprehensive federal privacy legislation, the Senate Commerce Committee’s Subcommittee on Manufacturing, Trade, and Consumer Protection held a hearing on March 26, 2019 on...more
4/1/2019
/ California Consumer Privacy Act (CCPA) ,
Congressional Committees ,
Data Controller ,
Data Privacy ,
Data-Sharing ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Personally Identifiable Information ,
Preemption ,
Privacy Concerns ,
Privacy Laws ,
Small Business
Continuing Congress’s efforts to craft comprehensive federal privacy legislation, the Senate Judiciary Committee on March 12, 2019, held a hearing on “GDPR & CCPA: Opt-ins, Consumer Control, and the Impact on Competition and...more
3/15/2019
/ Behavioral Advertising ,
California Consumer Privacy Act (CCPA) ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Legislative Agendas ,
Legislative Committees ,
Opt-In ,
Opt-Outs ,
Preemption ,
Privacy Laws ,
Privacy Policy ,
Small Business
This week both the House and Senate held hearings kicking off the legislative process for federal privacy legislation. Legislators from both parties voiced support for comprehensive and bipartisan legislation. ...more
3/4/2019
/ California Consumer Privacy Act (CCPA) ,
Congressional Committees ,
Congressional Investigations & Hearings ,
Data Privacy ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Preemption ,
Privacy Policy ,
Private Right of Action ,
Small Business ,
State and Local Government
The enactment in June 2018 of California’s sweeping new privacy law, the California Consumer Privacy Act (CCPA), has both increased momentum for enactment of a general federal privacy law and spurred state legislatures to...more
The enactment in June 2018 of California’s sweeping new privacy law, the California Consumer Privacy Act (CCPA), has both increased momentum for enactment of a general federal privacy law and spurred state legislatures to...more
2/20/2019
/ California Consumer Privacy Act (CCPA) ,
Congressional Intent ,
Congressional Investigations & Hearings ,
Corporate Counsel ,
Covered Entities ,
Federal Trade Commission (FTC) ,
GAO ,
General Data Protection Regulation (GDPR) ,
NIST ,
Personal Data ,
Privacy Laws ,
Proposed Legislation ,
Public Hearing ,
Trade Associations
This is the fourth article in a series of five articles written by WilmerHale lawyers discussing how the emergence of IoT technologies will impact the automotive industry. The first article, ‘‘The Developing Landscape of...more
12/18/2018
/ Automotive Industry ,
California Consumer Privacy Act (CCPA) ,
Connected Cars ,
Data Collection ,
Data Security ,
Department of Transportation (DOT) ,
Driverless Cars ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Internet of Things ,
NHTSA ,
Regulatory Agenda
On October 10, the Senate Committee on Commerce, Science and Transportation conducted a hearing titled “Consumer Privacy: Examining Lessons From the European Union’s General Data Protection Regulation and the California...more
The Indian government is currently considering a sweeping data privacy law which, if enacted, would mean significant changes for foreign companies doing business in the world’s fastest-growing digital economy. The Personal...more
On June 28, 2018, California enacted the California Consumer Privacy Act of 2018 (CCPA), a sweeping privacy law that provides consumers with broad notice, access, and deletion rights concerning many types of personal...more
7/3/2018
/ Cybersecurity ,
Data Breach ,
Fair Credit Reporting Act (FCRA) ,
General Data Protection Regulation (GDPR) ,
Governor Brown ,
Gramm-Leach-Blilely Act ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HITECH Act ,
New Regulations ,
Personal Data ,
Privacy Laws ,
Private Right of Action ,
Statutory Damages
This is the inaugural issue of WilmerHale’s 8-in-8 Recent Trends in European Law and Policy Alert Series. Over the next eight weeks, our attorneys will share insights on current and emerging issues affecting companies doing...more
5/31/2018
/ Cybersecurity ,
Data Controller ,
Data Processors ,
Data Protection ,
EU ,
EU Data Protection Laws ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Multinationals ,
Personal Data ,
Popular
This is the inaugural issue of WilmerHale's 8-in-8 Recent Trends in European Law and Policy Alert Series. Over the next eight weeks, our attorneys will share insights on current and emerging issues affecting companies doing...more
Brexit raises critical issues regarding the future transfer of personal data outside of the EU, not least as to the role of the UK Data Protection Authority, the Information Commissioner’s Office (“ICO”), and as to its...more
11/22/2017
/ Binding Contractual Rules ,
Data Protection Authority ,
EU ,
General Data Protection Regulation (GDPR) ,
Information Commissioner's Office (ICO) ,
Member State ,
Personal Data ,
Popular ,
UK ,
UK Brexit ,
UK Data Protection Act
One of the key components of the General Data Protection Regulation (Regulation (EU) 2016/679) (“GDPR”) is its stronger enforcement mechanisms. Administrative fines are one of the most powerful parts of the enforcement...more
On October 18, the Article 29 Working Party released its draft of “ Guidelines on Automated individual decision-making and Profiling for the Purpose of Regulation 2016/679” (“Guidelines on Automated individual decision-making...more
The EU General Data Protection Regulation’s (GDPR) requirements are coming into focus quickly as EU data protection authorities continue to issue guidance on different aspects of the law. On April 4, 2017, the Article 29...more
The UK Information Commissioner’s Office (ICO) continues to play an active role in shaping data protection law in the EU, notwithstanding the UK’s decision to leave the EU in the aftermath of Brexit. On April 6, 2017, the ICO...more
While companies prepare for the EU General Data Protection Regulation (GDPR) to take effect in May 2018, another highly significant item on the agenda is arguably the current review process of the proposal for a Regulation on...more
On February 20, 2017, the Article 29 Working Party released procedures and a template complaint form for implementing the EU-US Privacy Shield. The procedures govern the functioning of the informal data protection authority...more
On January 10, 2017, the European Commission presented its proposal for a Regulation on Privacy and Electronic Communications (the “Proposed Regulation”). The Proposed Regulation would repeal and replace Directive 2002/58/EC...more
The EU’s Article 29 Working Party (WP29) held a plenary meeting in early December 2016. At the meeting, the WP29 adopted guidelines and issued FAQs relating to the EU General Data Protection Regulation’s (GDPR’s) provisions...more
On December 15, 2015, the European Union reached an agreement on the final text of the new General Data Protection Regulation. The Regulation will replace the 1995 Data Protection Directive, which is currently the basis for...more