CONTENT CENTER
“Ding Dong” -- FTC-Drizly Data Breach Settlement Will follow CEO Personally for a Decade
The Federal Trade Commission (“FTC”) announced on Monday that it is settling a case against Drizly and its CEO stemming from a 2020 data breach that impacted roughly 2.5 million consumers. The proposed order not only contains a laundry list of security-related obligations for Drizly that span twenty years, but also names and targets its CEO James Cory Rellas personally, hitting him with obligations that will follow him for a decade, even if he moves to other organizations. There are also hints that the FTC intends to elevate information security issues to boards of directors and other top-level executives.
California Assembly Passes Sweeping Age-Appropriate Privacy Legislation
California is leading the way on privacy regulation --- again. The California State Assembly has passed AB 2273, which, if approved by the California Governor, would require businesses that provide online services, products, or features likely to be accessed by children or teens under the age of 18 to increase their privacy and safety protections.
California Legislature Passes New Key Privacy Laws, Expected to Be Signed Next Week
California lawmakers wrapped up this year’s legislative session, passing roughly 900 bills this year. Among those were only a few privacy initiatives, which we outline in this article.
Another Court Orders Production of Cybersecurity Firm’s Forensic Report in a Data Breach Case
Another district court just ordered the defendant in a data breach class action to turn over the forensic report it believed was entirely protected from disclosure by the attorney-client privilege and work product doctrine. The court granted the motion to compel Rutter’s to produce its investigative report (the “Kroll Report”), which was created after the defendant was notified of a potential breach.
And Now There are Three…. The Colorado Privacy Act
Colorado has now joined California and Virginia to become the third US state to pass a comprehensive data privacy legislation when Governor Jared Polis signed the Colorado Privacy Act (the “CPA”) into law on July 8, 2021.
White House to Business: “Take Ransomware Crime Seriously”
By Cynthia Larose
As we come out of the COVID-19 pandemic, another type of infection is threatening businesses as ransomware continues to spread. A roll call of entities have experienced major ransomware attacks just in the past few weeks.
The California Consumer Privacy Law is Here. Get Prepared.
By Cynthia Larose and Brian Lam
This webinar provides an overview of the act including who it applies to, the types of data covered, and the new rights granted by the act such as data access, deletion, and portability.
Employers Beware: Judge Greenlights Employee’s Privacy Lawsuit Over Dropbox Access
By Cynthia Larose, Katharine Beattie, and Jennifer Budoff
Many employers maintain policies limiting their employees’ expectation of privacy in the workplace, including policies that eliminate any expectation of privacy when using company-issued electronic devices. While employers may think that having such a policy would protect them from invasion of privacy claims under the Fourth Amendment or state law, a recent federal court decision may cause employers to think otherwise. This post examines this decision and provides best practices for avoiding issues with employees’ privacy interests.
The California Consumer Privacy Act (CCPA): What Startups Should Know
By Brian Lam
Privacy and data security is a serious concern for many startups. They understand that end users, consumers, partners, and investors are now concerned like never before about how data is collected, used, stored and transferred. A bad data event quickly turns into a bad news story, can turn off users, discourage investors, and bring regulatory scrutiny and enforcement.
How to Leverage Privacy as a Key Competitive Advantage
By Cynthia Larose and Brian Lam
“Privacy by design” – while not a new concept – is certainly enjoying a new spot in the sunshine thanks to the European Union’s General Data Protection Regulation (“GDPR”) (93 days and counting…) and its codification of “privacy by design and default” in Article 25.
Privacy can also be a key differentiator and a competitive advantage. Read on for some points that can help drive your data privacy/data management program.
What App Users Care About When Sharing Personal Data: Permissions
By Cynthia Larose and Jane Haviland
A Pew Research Center Report relayed useful information regarding application users’ concerns with sharing personal data. Ninety percent of app users indicated that how their personal data will be used is “very” or “somewhat” important to them, and influences their decision to download an app. Sixty percent of users decided against downloading an app when they saw how much personal information they would need to share. Android 6.0, or Marshmallow, should abate users’ concerns.
Sort by Topic:
Form a Company
Raise Capital
Build Your Team
Protect Your Idea and Data
Grow Your Company
Exits
View our full collection of blogs from Mintz by topic