Facial Recognition Company Enters into Settlement Agreement for Alleged Violations of Illinois’ Biometric Information Privacy Act
On May 11, 2022, a consent order was entered into following a settlement agreement between Clearview AI, the American Civil Liberties Union (“ACLU”), and other parties ending a two-year long lawsuit regarding Illinois’ Biometric Information Privacy Act, the nation's first biometric privacy law.
What Your Business Needs to Know About the Newly Announced PCI Data Security Standards v4.0
In a press release published on March 31st, the PCI Security Standards Council (PCI SSC) announced v4.0 of the PCI Data Security Standards (PCI DSS). In this blog post, we provide a brief overview of what’s new in this latest iteration of the standard. We also glance at the implementation timeline so that your business can get the ball rolling on the transition process.
Federal Privacy and Cybersecurity Regulatory Developments – Key Updates
In the absence of overarching federal privacy legislation, enforcement authority over privacy and cybersecurity is shared among several different government agencies. With attention on privacy and cybersecurity-related issues rapidly increasing, federal agencies seek to address these issues by actively engaging in rulemaking, enforcement, and policy development.
The Utah Consumer Privacy Act: The Fourth Comprehensive State Privacy Law Following California, Virginia, and Colorado
On March 24th, Utah Governor Spencer Cox signed Senate Bill 227, the Utah Consumer Privacy Act (“UCPA”), into law. Utah is the fourth state to enact a comprehensive privacy law, following California, Virginia, and Colorado.
U.S. and European Commission Announce “Agreement in Principle” on a New Trans-Atlantic Data Privacy Framework
At a joint press conference on Friday, March 25, 2022, President Biden and European Commission President Ursula von der Leyen announced that the U.S. and the EU had reached an “agreement in principle on a new framework for transatlantic data flows.”
Update on International Data Transfers under the UK GDPR as of March 21, 2022
Following the UK's departure from the EU and the CJEU judgment in the Schrems II case, the UK Information Commissioner's Office (ICO) sought public consultation on August 11, 2021, regarding international data transfers outside the UK. After this consultation period, the Secretary of State on February 2, 2022, laid before Parliament (1) Version A1.0 of the International Data Transfer Agreement (the "IDTA"), (2) Version B1.0 of the International Data Transfer Addendum to the EU Commission Standard Contractual Clauses (the "Addendum"), and (3) the International Data Transfer Agreement Transitional Provisions.
With no objections from Parliament, they came into force yesterday, March 21, 2022.
With no objections from Parliament, they came into force yesterday, March 21, 2022.
The New York Privacy Act: Proposed Privacy Legislation 2022 Update
On May 13, 2021, New York State Senator Kevin Thomas reintroduced the New York Privacy Act (S6701). With California, Virginia, and Colorado already having comprehensive state privacy laws on the books, New York may be the next state to have one of its own. As of February 8, 2022, the Senate version of the bill has been reported and committed to the Internet and Technology Committee.
Read on for some of the important details that businesses should know about the proposed legislation:
Read on for some of the important details that businesses should know about the proposed legislation:
Data Privacy Day 2022 – Octillo Attorneys Make 2022 Data Security & Privacy Predictions
Happy Data Privacy Day 2022! In observance of Data Privacy Day, January 28, 2022, we asked our Global Data Privacy Team Leads, Jordan Fischer and Kara Hilburger, what they expect to see in this space in 2022.
Data Privacy Day: 5 Privacy Considerations for Businesses in 2022
January 28th is Data Privacy Day – an annual, international event to promote privacy and data protection best practices for both consumers and businesses.
Year in Review: 2021’s Top Privacy and Cybersecurity Trends
Despite the ongoing COVID-19 pandemic, 2021 proved to be another incredibly busy year for consumer privacy and cybersecurity. In this blog post, we revisit some of the most important domestic and international privacy and cybersecurity trends of the past year.
New York’s New Rules on Employee Electronic Monitoring
On November 8, 2021, New York Governor Kathy Hochul signed into law Senate Bill 2628 / Assembly Bill 430, making New York the third state, following Connecticut and Delaware, to require employers to provide notice of electronic monitoring to employees.
OCC/FDIC Board Final Rule for Bank Organizations Notification Requirements
On November 18, 2021, the three primary banking regulatory agencies -- the Office of the Comptroller of the Currency (OCC), Treasury; the Board of Governors of the Federal Reserve System (Board); and the Federal Deposit Insurance Corporation (FDIC) – jointly approved a final rule with two distinct notification requirements