Showing Posts In "Data Protection and Privacy" Category





New Colorado Statute Provides Data Protection Guidance for Employers in the Centennial State and Beyond

A new data protection law took effect in Colorado in early September that requires state employers to implement procedures to protect and eventually destroy employees personally identifiable information. If said information is provided to a third-party service, the covered entity must be sure that reasonable security procedures and practices are upheld. The new law also […]


The Practical Guide to the California Consumer Privacy Protection Act Part 1

The California Consumer Privacy Protection Act of 2018 (CCPA), designed to emulate the European General Data Protection Regulation (GDPR), has U.S. companies rushing to verify that their practices comply with the statute. Bryan Cave Leighton Paisner has published a multi-part Practical Guide to the CCPA to help address any confusion. In it, he shares that […]


Employment Screening Resources (ESR) Incorporates Fully Compliant GDPR Technology to Help U.S. Employers Screen EU Residents

Employment Screening Resources (ESR) has incorporated fully compliant General Data Protection Regulation (GDPR) policies, procedures and technologies to help employers screen European Union (EU) residents. According to Brad Landin, ESRs president, the ESR Assured Compliance system will provide clients with required GDPR-related tools. The tool will allow the company to present and collect the consent […]


Do You Have a Consent Clause in Any of Your Policies or Contracts?

General Data Protection Regulation (GDPR) laws went into effect on May 25, 2018. It is important for employers to understand the new European Union data protection law, as it has imposed new obligations in the collection and processing of personal data. Although consent remains a legitimate ground for processing both sensitive and non-sensitive data, the […]


Chicago Introduces Data Protection Ordinance

The Personal Data Collection and Protection Ordinance recently was introduced to the Chicago City Council and aims to require businesses to adhere to several data collection and sharing regulations. Key provisions include: 1. Opt-in consent to use and share personal information; 2. Security breach notification; 3. Data broker registration; 4. Mobile devices with location services […]


Californias New Privacy Law: Its Almost GDPR in the US

The state of California recently saw new legislation introduced and passed that aims to bring more transparency to the trade in peoples personal data. AB 375, which will go into effect in January 2020, gives consumers the right to ask businesses for the type and categories of personal information being collected. It also requires businesses […]


Data Exposure by Vendor Leads to Two Million Dollar NERC Penalty for Utility

A public filing by the North American Electric Reliability Corporation (NERC) on Feb. 28 reported that an unidentified electric utility agreed to pay a $2.7 million penalty to resolve violations of the Critical Infrastructure Protection (CIP) reliability standards related to the exposure of the sensitive data. The violations of the case stemmed from improper data […]


Pulling Fraud Out of the Shadows: Global Economic Crime and Fraud Survey 2018

The PwCs 2018 Global Economic Crime and Fraud Survey has found that only 49% of global organisations said they had been a victim of fraud and economic crime. In reality, though, too few companies are fully aware of the fraud risks they face. Companies who focus on removing siloes in functions like compliance, ethics, risk […]


An AI That Reads Privacy Policies So That You Dont Have To

A group of academics has proposed a way to make reading and understanding privacy policies a bit easier. An artificial intelligence (AI) called Polisis (privacy policy analysis) has been released by researchers at Switzerlands Federal Institute of Technology at Lausanne (EPFL), the University of Wisconsin and the University of Michigan. The new website and browser […]


Joint Press Statement from Secretary Ross and Commissioner Jourova on the Privacy Shield Review

Officials from across the United States government, the European Commission and the European Union (EU) data protection authorities recently met to conduct the first annual review of the EU-U.S Privacy Shield framework. The review examined commercial and national security-related matters, as well as broader U.S. legal developments. Since its establishment in 2016, more than 2,400 […]




Subscribe to our Publications