Header graphic for print
Global Media and Communications Watch The International Legal Blog for the Tech, Media and Telecoms Industry

Tag Archives: privacy

Posted in Consumer Privacy, Policy & Regulation Mark BrennanJulian Flamant

Efforts to Expand CCPA’s Private Right of Action Remain in Question

The California legislature is considering significant amendments to the California Consumer Privacy Act (CCPA) ahead of the law’s January 1, 2020 implementation date. Of particular note has been the potential for CCPA amendments to expand the private right of action beyond violations of businesses’ duty to implement and maintain reasonable security procedures to instead cover violations of any CCPA right.… Continue Reading

Posted in Consumer Privacy Bret CohenJulian FlamantGreg FerenbachRay LiFilippo Raso

Beyond FERPA: The California Consumer Privacy Act’s New Rules for Privacy in the Education Sector

In June of 2018, California passed the California Consumer Privacy Act (CCPA), which seeks to give consumers additional safeguards regarding their personal information. The CCPA will become effective January of 2020 and may impact companies in the education sector, including the larger education technology companies.

While the CCPA does not apply to nonprofit educational institutions, it may apply to certain … Continue Reading

Posted in Consumer Privacy, Data Protection & Privacy, Policy & Regulation, TMT2020 Mark BrennanSean Spivey

Commerce Secretary Ross to FCC: Overbroad TCPA Rules Could Have a “Devastating” Impact on Federal Agencies and the 2020 Census

As we head towards 2020, it’s time once again for the decennial U.S. national Census – one of the broadest data collections that the United States federal government undertakes to learn more about its citizens, recalibrate Congressional districts, allocate public funding, and deliver critical public services. But the government’s ability to conduct the upcoming Census is under threat from an … Continue Reading

Posted in Cybersecurity, Data Protection & Privacy, International/EU privacy, Policy & Regulation, privacy and security litigation

Asia Pacific Data Protection and Cybersecurity Regulation: 2018 in Review and Looking Ahead to 2019

What is in store for data protection and cyber security regulation in Asia Pacific (APAC) in 2019?

2018 was a momentous year for data protection and cyber security regulation globally – the implementation of the European Union’s General Data Protection Regulation (GDPR) was, of course, the main event. The shockwaves of GDPR hit APAC with full force, coupled with the … Continue Reading

Posted in Cybersecurity, Data Protection & Privacy, Policy & Regulation, privacy and security litigation, Technology

Privacy and Cybersecurity April 2019 Events

Please join us for our April events.

April 2                             Trust in data, no longer a luxury?
Nicola Fulford and James Denvil will speak at the workshop,” Trust in data, no longer a luxury – Privacy, security, and consumer trust for 21st century,” at the Luxury Law London Summit. They will discuss some of the challenges of succeeding in a data-driven … Continue Reading

Posted in Consumer Privacy, Data Protection & Privacy, Policy & Regulation Mark BrennanSarah K. Leggin

Assessing the Evolving U.S. Privacy Landscape and the Road Ahead

New proposals to protect consumer privacy in the U.S. seem to be appearing every day. There are now more than 90 privacy proposals that federal, state, and local regulators and policymakers are considering as privacy continues to dominate the news cycle. Hogan Lovells partners Mark Brennan and Nicola Fulford led a panel of industry stakeholders at the INCOMPAS Policy Summit … Continue Reading

Posted in Data Protection & Privacy, intellectual property, Policy & Regulation, Technology

Consumer Horizons 2019 – IP in the mix

The Consumer industry is evolving at lightning speed, and the way consumer companies operate is shifting. From issues in supply chain to the digitalization of the consumer experience, companies are rapidly changing to keep up with consumer demands. Last year businesses in the consumer industry saw a wave of unprecedented disruption and transformation, and 2019 promises challenges of similar or … Continue Reading

Posted in Data Protection & Privacy, Entertainment & Content, Internet Penny ThorntonLucy AdelmanJamie Pollock

UK House of Lords Select Committee calls for a Digital Authority to regulate the online world

On 9 March 2019, the House of Lords Select Committee on Communications published its report on “Regulating in a digital World”. It included a number of recommendations to the government, including 10 guiding principles for the development of regulation online, a new public interest test for data driven mergers and a new Digital Authority, to oversee regulation of the digital … Continue Reading

Posted in Cybersecurity, Data Protection & Privacy, International/EU privacy, Policy & Regulation, privacy and security litigation Joke Bodewits

Dutch Data Protection Authority States Cookie Walls Violate GDPR

On 7 March 2019, the Dutch Data Protection Authority published guidance (in Dutch) that it considers “cookie walls” to violate the GDPR. A cookie wall is a pop-up on a website that blocks a user from access to the website until he or she consents to the placing of tracking cookies or similar technologies.

Under current Dutch cookie law, functional … Continue Reading

Posted in Cybersecurity, Data Protection & Privacy, Policy & Regulation, privacy and security litigation, Technology

A global approach to IoT cybersecurity?

The European Telecommunications Standards Institute (ETSI) has published a new standard for cybersecurity in relation to consumer IoT products. The standard builds on the UK’s Code of Practice for Consumer IoT Security, published in October last year. The Code of Practice was developed by the UK Government following publication of a draft code as part of the Secure by … Continue Reading

Posted in Data Protection & Privacy, Policy & Regulation Winston MaxwellChristine Gateau

An Approach for Setting Administrative Fines Under the GDPR

Article 83 of the GDPR provides for two levels of administrative fines: a lower level – maximum of €10 million or 2% of the global turnover – for violations relating to record-keeping, data security, data protection impact assessments, data protection by design and default, and data processing agreements; and a higher level – maximum of €20 million or 4% of … Continue Reading

Posted in Cybersecurity, Data Protection & Privacy, Drones, Internet, Policy & Regulation, Technology Mark Parsons

Privacy, Cybersecurity, and the Internet of Things in Asia: What to Expect in 2019

Increasing numbers of initiatives, devices, and solutions related to the Internet of Things (IoT) are substantially impacting the development of cybersecurity and data privacy regulations throughout Asia. After the implementation of the General Data Protection Regulation (GDPR) in Europe, for example, Asian lawmakers are considering strengthening their own data protection laws. The region is also characterized by a push in … Continue Reading

Posted in Data Protection & Privacy Timothy Tobin

California Consumer Privacy Act: The Challenge Ahead – CCPA and Employee Data

This is the seventh installment in Hogan Lovells’ series on the California Consumer Privacy Act.

The application of the California Consumer Protection Act of 2018 (“CCPA”) to employee data has been the subject of much debate since the first version of the bill was introduced on June 21, 2018 (just days prior to its enactment on June 28). Under a … Continue Reading

Posted in Data Protection & Privacy

California Consumer Privacy Act: The Challenge Ahead – Four Key Considerations for Health and Life Sciences Companies

This is the sixth installment in Hogan Lovells’ series on the California Consumer Privacy Act.

The California Consumer Privacy Act of 2018 (CCPA) adds another set of privacy requirements for health and life sciences companies.  Managing the interaction of these new requirements with existing obligations under the Health Insurance Portability and Accountability Act of 1996 (HIPAA), California’s Confidentiality of Medical Continue Reading

Posted in Cybersecurity Mark BrennanBret Cohen

NTIA Seeks Comment on New, Outcome-Based Privacy Approach

Yesterday, the U.S. Department of Commerce’s National Telecommunications and Information Administration (NTIA) issued a Request for Comments (RFC) on a new consumer privacy approach that is designed to focus on outcomes instead of prescriptive mandates. The RFC presents an important opportunity for organizations to provide legal and policy input to the administration, and comments are due October 26.The RFC notes … Continue Reading
Posted in Data Protection & Privacy Bret Cohen

California Consumer Privacy Act: The Challenge Ahead – A Comparison of 10 Key Aspects of The GDPR and The CCPA

This is the fifth installment in Hogan Lovells’ series on the California Consumer Privacy Act. 

As the most comprehensive privacy law to be enacted in the United States thus far, the California Consumer Privacy Act (CCPA) has inevitably invited comparisons to the European Union’s General Data Protection Regulation (GDPR). At first glance, it is clear that the drafters of the … Continue Reading

Posted in Data Protection & Privacy

California Consumer Privacy Act: The Challenge Ahead – Consumer Litigation and the CCPA: What to Expect

This is the fourth installment in Hogan Lovells’ series on the California Consumer Privacy Act

This post discusses litigation exposure that businesses collecting personal information about California consumers should consider in the wake of the California Legislature’s passage of the California Consumer Privacy Act of 2018 (CCPA).

For several years, the plaintiffs’ bar increasingly has relied on statutes like the … Continue Reading

Posted in Cybersecurity, Data Protection & Privacy Mark BrennanW. James Denvil

California Consumer Privacy Act: the Challenge Ahead – Data Mapping and the CCPA

This is the third installment in Hogan Lovells’ series on the California Consumer Privacy Act.

What personal information do you have about California consumers and households?

The California Consumer Privacy Act of 2018 (“CCPA”) provides a series of new compliance obligations and operational challenges for companies doing business in California. A vital first step for any company subject to the Continue Reading

Posted in Cybersecurity, Data Protection & Privacy Harriet Pearson

California Consumer Privacy Act: The Challenge Ahead – Key Terms in the CCPA

This is the second installment in Hogan Lovells’ series on the California Consumer Privacy Act.

Words matter. Nowhere is this truer than in legislation, where word choices—often the product of long debate and imperfect compromise—determine the scope and impact of a law. Legislative history can speak volumes about those word choices, and the unique legislative history of the California Consumer … Continue Reading

Posted in Cybersecurity, Data Protection & Privacy Harriet PearsonEdith Ramirez

California Consumer Privacy Act: The Challenge Ahead – Introduction to Hogan Lovells’Blog Series

Groundbreaking. Watershed. Unprecedented.

We have heard the California Consumer Privacy Act of 2018 (CCPA) called all these things and more since its enactment on June 28, ‌2018. Our experience to date has confirmed the compliance challenge ahead for organizations that engage with the residents of the world’s fifth-largest economy.

We will explore the ramifications for businesses of this seminal legislation … Continue Reading

Posted in Data Protection & Privacy, Policy & Regulation Massimiliano MasnadaMarco Berliri

GDPR Italian Implementing Decree Has Been Published

On 4 September, the Legislative Decree no. 101 of 10 August 2018 (the “Decree”) for the national implementation of General Data Protection Regulation (EU) 2016/679 (the “GDPR”) has been published in the Official Journal. The approach of the legislator was to maintain the structure of former Legislative Decree 196/2003 (the “Privacy Code”) which, however, has been extensively amended and … Continue Reading

Posted in Data Protection & Privacy

Privacy and Cybersecurity September 2018 Events

Please join us for our September 2018 Privacy and Cybersecurity Events.

September 11
GDPR One Stop Shop
Eduardo Ustaran is participating in DataGuidance’s webinar on “One Stop Shop under the GDPR.”
Location: Webinar

 

September 13
Messaging Forum
Mark Brennan will lead a session at the CTIA Mobile World Congress Americas where he will discuss text messaging privacy and
Continue Reading
Posted in Data Protection & Privacy Eduardo Ustaran

Who Will Get the First Big GDPR Fine and How to Avoid It?

In July, Eduardo Ustaran spoke at Privacy Laws & Business’ International Conference in Cambridge about the sort of activities likely to prompt regulators into exercising their increased fining powers under the EU GDPR. A link to the video of his presentation can be found here and a detailed report of the presentation is available here.… Continue Reading

Posted in Cybersecurity, Data Protection & Privacy Timothy TobinWinston Maxwell

Straight Talks podcast: Data privacy and cybersecurity in the age of rolling smart devices

The U.S. Environmental Protection Agency was created in 1970 to safeguard the environment against pollutants. The tidal wave of environmental regulations that followed impacted every industry in the United States, especially the automotive market. Decades later, organizations have internalized these regulations into their culture.

Today, the European Union’s General Data Protection Regulation (GDPR) is driving a regulatory wave of similar Continue Reading