On October 18, 2017, the European Commission issued its report on the first annual review of the EU- U.S. Privacy Shield, aimed at allowing personal data transfer from the EU to the U.S. through the implementation of a data … Continue Reading
In June the ICO updated its Subject Access Code of Practice, which gives guidance to data controllers on how to respond to subject access requests from data subjects. The Code itself is not legally binding, but provides advice on … Continue Reading
On January 23, 2017, the FTC released a new report outlining its recommendations for companies using cross-device tracking. The report focused on the FTC’s continued commitment to consumer choice, transparency, and security.
What is cross-device tracking?
Cross-device tracking occurs when … Continue Reading
As the healthcare industry continues to embrace the Internet of Things, cybersecurity may present unprecedented health and privacy risks to patients. Wireless-enabled medical devices are increasingly common. For some patients, this means that their hearts are, quite literally, connected … Continue Reading
“The goal is to turn data into information, and information into insight.” – Carly Fiorina, former CEO, Hewlett-Packard Co.
The most valuable asset of every organization is information. Organizing, analyzing and optimizing this complex source of business intelligence … Continue Reading
High-profile data breaches seem to hit the headlines almost every day. These breaches have proved terrifying for many companies, particularly as the attackers release embarrassing emails and other information. The frequency of attacks is accelerating. Respondents from a PricewaterhouseCoopers survey … Continue Reading
On October 6, 2015, the Court of Justice of the EU (CJEU) ruled that the Safe Harbor decision from the EU Commission (Decision 2000/520) is invalid. The ruling seems more severe than the opinion rendered on September 23, … Continue Reading
Updated October 5, 2015 at 1:26 p.m.
It’s 12:43 in the morning, and you have had a tough day at work. You are tired, thinking slowly, and feeling a little anxious that you should already be in bed to catch … Continue Reading
On June 26, Rhode Island Governor Gina Raimondo (D) signed into law Senate Bill 0134, the Rhode Island Identity Theft Protection Act of 2015 (the Act), which clarifies data security measures, expands protection to health data and information in paper … Continue Reading
The redesigned account page does not offer any additional privacy or security options over those previously offered. Instead, … Continue Reading
The Federal Trade Commission (FTC) recently announced formation of its Office of Technology Research and Investigation (OTRI), an office meant to “ensure that consumers enjoy the benefits of technological progress without being placed at risk of deceptive and unfair practices.” … Continue Reading
The Obama administration, on February 10, announced its intention to create a new federal agency to combat cyber threats and coordinate digital intelligence among all federal agencies. This new agency will be called the Cyber Threat Intelligence Integration Center (CTIIC), … Continue Reading
The FTC’s recent settlement with a medical online payments company and its former CEO highlights the importance of using clear and non-deceptive notices when asking consumers to share or provide sensitive personal health information.
The FTC is continuing its trend of enforcement actions against mobile application companies. Most recently, the FTC settled with Snapchat—yet another mobile application provider that allegedly failed to keep its word to consumers regarding data privacy and security. (Previously we … Continue Reading
CNN.com reported yesterday about a major development in the fight against malware:
… Continue Reading
One of the largest global cybercrime crackdowns has yielded the arrests of more than 100 people linked to the Blackshades malware, with 365 searches conducted and 102
The Limits of the Freedom of Expression
In its ruling of May 13, 2014, the Court of Justice of the European Union (CJEU) holds that:
1. A search engine processes personal data because it collects, retrieves, records, organizes and stores … Continue Reading