In the Federal Trade Commission’s (“FTC”) first action related to connected vehicle data, the agency announced that it reached a settlement with General Motors (“GM”) over GM’s unauthorized collection, use, and sale of driver...more
On January 16, 2025, the Federal Trade Commission (“FTC”) announced its Final Rule amendments to the Children’s Online Privacy Protection Act (“COPPA”) Rule, which imposes requirements on website and online service operators...more
The Department of Justice (“DOJ”) published its final regulations on “Preventing Access to U.S. Sensitive Personal Data and Government-Related Data by Countries of Concern or Covered Persons” (the “Final Rule”). The Final...more
2/3/2025
/ Data Privacy ,
Data Protection ,
Data Security ,
Department of Justice (DOJ) ,
Enforcement Actions ,
Executive Orders ,
Federal Contractors ,
Final Rules ,
National Security ,
Recordkeeping Requirements ,
Regulatory Requirements ,
Risk Management ,
Sensitive Personal Information
The Office for Civil Rights (“OCR”) under the U.S. Department of Health and Human Services (“HHS”) recently issued a Notice of Proposed Rulemaking (the “Proposed Rule”) to modify the Health Insurance Portability and...more
Summary - On July 10, 2023, the European Commission issued an adequacy decision for the EU-U.S. Data Privacy Framework (“EU-U.S. DPF” or “DPF”). The decision concludes that the U.S. ensures an adequate level of protection...more
On March 28, 2023, Iowa became the sixth state to pass a comprehensive consumer privacy law, joining California, Colorado, Connecticut, Utah, and Virginia. The Iowa Act Relating to Consumer Data Protection (“ICDPA”) will...more
Started in Europe in 2007, Data Privacy Day, or Data Protection Day as it is known internationally, is an international effort that takes place annually on January 28 to create awareness of the importance of data privacy. In...more
1/28/2022
/ California Consumer Privacy Act (CCPA) ,
Data Mapping ,
Data Privacy ,
Data Protection ,
Fair Credit Reporting Act (FCRA) ,
General Data Protection Regulation (GDPR) ,
GLBA Privacy ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Personally Identifiable Information ,
Policies and Procedures ,
Regulatory Standards
Arnall Golden Gregory LLP's Food & Drug Newsletter is a monthly update of legal and regulatory issues that affect the FDA-regulated community and highlights articles from members of our Food & Drug practice, as well as from...more
On July 7, 2021, Colorado Governor Jared Polis signed into law S.B. 21-190, known as the Colorado Privacy Act (“CPA”). Colorado is now the third U.S. state to enact comprehensive consumer data privacy legislation, following...more
8/6/2021
/ Colorado ,
Consumer Privacy Rights ,
Data Collection ,
Data Controller ,
Data Privacy ,
Data Protection ,
Opt-Outs ,
Personal Data ,
Privacy Laws ,
Right of Access ,
State Privacy Laws
With the recent enactment of Virginia’s Consumer Data Privacy Act (VCDPA), and similar bills under consideration in several state legislatures, healthcare and life sciences companies are considering how these new laws are...more
On March 2, 2021, Virginia Governor Ralph Northam signed into law the Virginia Consumer Data Protection Act (VCDPA), making Virginia the second state, after California, to enact general data privacy legislation. The VCDPA...more
4/13/2021
/ CDPA ,
Consumer Privacy Rights ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Security ,
Opt-Outs ,
Personal Data ,
Privacy Laws ,
Right to Delete ,
State Privacy Laws ,
Virginia
In this episode, AGG’s Food & Drug team leader, Alan G. Minsk, and co-chair of AGG's Data Privacy practice, Kevin L. Coy, discuss U.S. and international privacy and data security law issues life sciences companies may...more
It is a good time to review your website and its accompanying terms and conditions and privacy policies. From year to year, the legal landscape evolves with changes being driven by technological advancements, shifting...more
CISA, FBI, & HHS Warn of Ransomware Activity Targeting the Healthcare Sector - On October 28, 2020, the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of...more
11/11/2020
/ Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Data Privacy ,
Department of Health and Human Services (HHS) ,
FBI ,
Hackers ,
Health Care Providers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Office of Foreign Assets Control (OFAC) ,
Popular ,
Ransomware
California ballot initiative, Proposition 24, has passed. Less than a year after the California Consumer Privacy Act (CCPA) took effect, Californians voted on November 3rd to approve the California Privacy Rights Act (CPRA)...more
On August 14, 2020, the California Office of Administrative Law (OAL) approved the final California Consumer Privacy Act (CCPA) regulations that were submitted by the California Attorney General (AG) on June 1, 2020. The...more
The COVID-19 Pandemic is forcing organizations to adjust their operating practices to continue operations, meetings, classes, and services remotely insofar as possible. Organizations using these types of technologies, as...more
4/6/2020
/ Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Data Use Policies ,
Data-Sharing ,
General Data Protection Regulation (GDPR) ,
Internet ,
Teleconferences ,
Videoconference ,
Websites
Arnall Golden Gregory LLP's Food and Drug Newsletter is a monthly update of legal and regulatory issues that affect the FDA-regulated community and highlights articles from members of AGG outside the Food and Drug Practice....more
On January 1, 2020, the California Consumer Privacy Act (CCPA or the “Act”) became effective. At a high level, the CCPA gives California residents, with certain exceptions, new rights to know what types of personal...more
1/16/2020
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Opt-Outs ,
Personal Information ,
Privacy Laws ,
Right to Delete
On Thursday, October 10th, the California Attorney General’s Office released long-awaited Proposed Regulations governing implementation of key provisions of the California Consumer Privacy Act of 2018 (CCPA) (Proposed...more
10/16/2019
/ Attorney General ,
California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Opt-Outs ,
Personal Information ,
Privacy Laws
Against the backdrop of the growing controversy surrounding allegations that Facebook allowed a company to mine the personal information of approximately 50 million Facebook users, the Federal Trade Commission (“FTC”)...more
The increasing amounts of health information being generated, stored and collected have heightened the special risks medical device manufacturers have long faced. In addition to the nexus to patient health and safety, if a...more
8/21/2015
/ Contract Terms ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Security ,
De-Identified Protected Health Information ,
Department of Health and Human Services (HHS) ,
Federal Trade Commission (FTC) ,
Food and Drug Administration (FDA) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Internet Privacy ,
Medical Devices ,
Mobile Medical Applications ,
Passwords ,
Patient Privacy Rights ,
Personally Identifiable Information ,
Popular