|The famous case brought by Maximilian Schrems against Facebook Ireland in Austria, aimed to become an international and large data protection class action, led on 25 January 2018 to a ruling from the CJEU on two main points:
Aetna will pay almost $17.2 million to settle a federal class action lawsuit stemming from a 2017 mailing that disclosed the HIV status of health plan members. Aetna also agreed last week to pay a $1.15 million fine to the state of New York after the Attorney General Eric Schneiderman’s (NY AG) investigation into Aetna’s alleged violations of federal and … Continue Reading
Hogan Lovells has announced that Edith Ramirez, the former Chairwoman of the US Federal Trade Commission (FTC), has joined the firm as a partner and will play an active role in Hogan Lovells’ Privacy and Cybersecurity practice. She will also co-head the firm’s Antitrust, Competition and Economic Regulation (ACER) practice.
Ramirez will co-lead the global antitrust practice alongside Suyong … Continue Reading
As previously reported, on Thursday, March 9th, the Federal Trade Commission (FTC) hosted a forum on the consumer implications of recent developments in artificial intelligence (AI) and blockchain technologies. This is the second of two entries on the March 9th FinTech Forum. Today’s post focuses blockchain technologies. Coverage of the opening remarks and the AI discussion may … Continue Reading
On Thursday, March 9th, the Federal Trade Commission (FTC) hosted a forum on the consumer implications of recent developments in artificial intelligence (AI) and blockchain technologies. This was the FTC’s third forum on issues in FinTech. Previous FinTech Forums covered marketplace lending and crowdfunding and peer-to-peer payments.
In opening remarks, the FTC acknowledged the benefits of technological … Continue Reading
In a March 17 live stream webinar, a panel of academic all-stars will discuss the key legal and tech trends for 2017, including regulation of artificial intelligence, the disruptive potential of blockchain, competition law and big data, global privacy and copyright trends, and the future of net neutrality.
Our panel will also share insights into the tech priorities of … Continue Reading
The internet has become today’s global trade route, and personal data is one of its major currencies. The growth in the digital economy is impressive. One study found that economic activity taking place over the internet is growing at 10% per year within the G-20 group of nations. In the United States alone, one estimate found that companies exported nearly … Continue Reading
Cyber risk has been high on the agenda of financial services regulators for some time now. In the UK, the FCA specifically addressed its concerns in its 2015/2016 Business Plan and it has an on-going programme of work which includes working with the PRA and Bank of England on visibility of IT resilience and risks at board level, and with … Continue Reading
|–||What are the legal implications of the Internet of Things (IoT) in the U.S. and around the world?|
|–||How do we mitigate the risks to consumer privacy and data security?|
|–||How do we meet IoT’s demands on infrastructure?|
Join us for Hogan Lovells’ 5th Annual Winnik International Telecoms and Internet Forum on 1 November, in Washington, … Continue Reading
On August 29, 2016, the Federal Aviation Administration’s (“FAA”) long-awaited small unmanned aircraft systems (“UAS” or “drone”) rule went into effect, for the first time broadly authorizing commercial drone operations. This is a positive step, as drones have great safety and efficiency benefits for the public. Nevertheless, the American public remains concerned about drone privacy issues.
The prevailing thinking among … Continue Reading
The Department of Health and Human Services (HHS) Office for Civil Rights (OCR) is taking an aggressive stand on HIPAA enforcement and targeting violations related to security risk assessments and business associate agreements. Three resolution agreements posted in the last month make clear that the agency expects entities subject to HIPAA to take appropriate steps to secure their data, regardless … Continue Reading
The Department of Health and Human Services (HHS) released guidance on July 11, 2016, intended to help the healthcare industry prepare for and respond to ransomware attacks. Specifically, this guidance clarifies: (1) that a ransomware attack is considered a “security incident” under HIPAA, and (2) that a ransomware attack will typically be considered a “breach” by HHS unless entities are … Continue Reading
The Beijing No.1 Intermediate People’s Court recently refused to recognise that there is a “right to be forgotten” under Chinese laws. However, the fact that this issue was expressly raised and discussed in the Chinese court highlights that litigants and courts in China have kept themselves apprised of data privacy developments elsewhere in the world. And while recognising that this … Continue Reading
The new EU General Data Protection Regulation (GDPR) is finally with us. All change. All affected. Now is the time to pay attention.
Businesses have two years to prepare for the new GDPR, which will become fully enforceable on 25 May 2018.
Our Privacy and Cybersecurity team has issued an up to date practical guide, Future-proofing privacy, co-authored by 24 … Continue Reading
Hogan Lovells announced last week that Julie Brill will join the firm as a partner and co-director of the Privacy and Cybersecurity practice on 1 April. Brill is a Commissioner at the Federal Trade Commission and her service will conclude on 31 March.
As co-director of the Privacy and Cybersecurity practice, Brill succeeds co-director and founding partner Christopher Wolf, who … Continue Reading
As reported in The New York Times, Hogan Lovells represented a diverse group of 15 major technology companies, such as Google, Facebook, Microsoft, Snapchat, and Cisco, in filing last week an amicus brief in In re Search of an Apple iPhone. The Times reports:
“‘These companies, which are often fierce competitors, have joined together to voice concern about … Continue Reading
To what extent are the personal communications sent by an employee from their employer’s computer private? In Europe it has been accepted for some years that employees do not lose their right to privacy in the workplace. However a recent decision from the European Court of Human Rights (ECHR) confirms the rights of the employer to restrict employees from any … Continue Reading
One of the most common devices in the emerging Internet of Things (IoT) was reportedly discovered to have a bug. According to the research firm Fortinet, a popular fitness tracker was vulnerable to wireless attacks through its unsecured Bluetooth port. A savvy attacker could install malware wirelessly within ten seconds—simply by coming within a few feet of the tracker. When … Continue Reading
The need for proper and legitimate powers to enable intelligence and law enforcement agencies to do their job and keep everyone safe requires little justification. We live in a dangerous and uncertain world where anyone can be a victim of intolerance. So in a show of political awareness and legislative dexterity, the UK government is currently seeking to adopt a … Continue Reading
Personal data is an important aspect of most M&A transactions because almost all businesses store information about their employees and customers. For some deals, data is critical, and there is a trend among regulators on a global scale to increase sanctions over data privacy and security violations. There is also a risk that data protection violations may render a deal … Continue Reading
2014 saw the implementation of new comprehensive, “European style” privacy laws in Singapore and Malaysia, the amendment of China’s consumer protection law to include data privacy principles and a further … Continue Reading
Thank you to everyone who participated in the Hogan Lovells webinar “Russia Data Localization Update: New Details Emerge from Meetings with Russian Regulator” on 2 April 2015. This update follows an October 2014 presentation that outlined Russia’s newly enacted Data Localization Law. In this webinar, Hogan Lovells privacy and data protection attorneys Natalia Gulyaeva and Bret Cohen provided insight into … Continue Reading
With the September 2015 effective date of Russia’s Data Localization Law less than six months away, the Russian data protection authority, Roskomnadzor, has still not issued any formal guidance on how it interprets the law’s broad requirement that companies must process and store the personal data of Russian citizens within Russia. Roskomnadzor has, however, recently held a series of meetings … Continue Reading
Security concerns and the need to increase cyber security measures have recently boosted the use of Bring Your Own Device (BYOD) policies in France. Recent events have exacerbated fears of data breaches and hacking for IT managers who were not overly concerned before. As a consequence, IT security teams are seeking to apply the same security and device management systems … Continue Reading