CCPA Compliance – Required Updates to Privacy Policies

By: Faith D. Kasparian, Ann M. O'Rourke &  Ryan J. Perry Among the many requirements placed on businesses by the California Consumer Privacy Act (CCPA), businesses must also keep in mind the continuing obligations that the law imposes. To remain in compliance with the CCPA, a business is required to update its privacy policy “at least once every 12 months.” Specifically, the applicable section of …

Continue reading CCPA Compliance – Required Updates to Privacy Policies

European Commission Adopts New Standard Contractual Clauses for Data Transfers

By: Faith D. Kasparian, Ann M. O'Rourke &  Ryan J. Perry On Friday, June 4, 2021, the European Commission released eagerly anticipated Standard Contractual Clauses (SCCs) for transfers to third countries (the “Data Transfer SCCs”). On the same day, the European Commission released another set of Standard Contractual Clauses addressing data sharing between controllers and processors in the absence of a third-country transfer. The …

Continue reading European Commission Adopts New Standard Contractual Clauses for Data Transfers

Virginia Follows California Lead on Data Protection—With Narrower Scope

By: Faith D. Kasparian & Ann M. O'Rourke On March 2, 2021, a new comprehensive data protection law was enacted in Virginia, which will become effective on January 1, 2023.  The scope of the Virginia Consumer Data Protection Act (VCDPA) is narrower in many respects than the California Consumer Privacy Act (CCPA).  Notably, unlike the CCPA, there is no threshold …

Continue reading Virginia Follows California Lead on Data Protection—With Narrower Scope

FTC Issues 6(b) Orders to Social Media and Video Streaming Services

On December 14, 2020, the Federal Trade Commission (FTC) announced that it had issued orders to nine social media and video streaming companies, requiring them to provide a special report on data collection, advertisement, and user engagement practices. By a vote of 4 to 1, the FTC issued the orders to conduct a study, authorized by section 6(b) …

Continue reading FTC Issues 6(b) Orders to Social Media and Video Streaming Services

Transatlantic Data Flows Face Stormy Seas: Privacy Shield Invalidated – Standard Contractual Clauses Viable for Now 

  As many here in the United States slept in the wee hours of this morning, July 16, 2020, the Court of Justice of the European Union (“CJEU”) issued a binding judgment invalidating the European Commission Decision (Commission Decision 2016/1250, the “Privacy Shield Decision”) that authorized the EU-U.S. Privacy Shield arrangement.  For the past four years, this arrangement …

Continue reading Transatlantic Data Flows Face Stormy Seas: Privacy Shield Invalidated – Standard Contractual Clauses Viable for Now 

EU Regulators Crack Down on Taking Cookies from the Cookie Jar: How the EDPB’s Recent Consent Guidelines May Affect Your Business’s Website 

In May of this year, the European Data Protection Board (EDPB) issued guidelines on consent under the General Data Protection Regulation (GDPR). Consistent with European practice (perhaps tradition at this point), the EDPB requires a high threshold to be met for adequate consent to process personal data. As a result of the guidelines, we have …

Continue reading EU Regulators Crack Down on Taking Cookies from the Cookie Jar: How the EDPB’s Recent Consent Guidelines May Affect Your Business’s Website 

Faith Kasparian Speaking on Privacy Roundtable Discussion

On Tuesday, May 12, Morse attorney Faith Kasparian will join Privacy Ref for a privacy rountable discussion. Topics will include the effects of CCPA, matters that have arisen in the context of the coronavirus and the current environment, and various other privacy issues. This livecast will provide an opportunity to ask any other privacy questions …

Continue reading Faith Kasparian Speaking on Privacy Roundtable Discussion

Event Recap: 10/24 Privacy Event

At Morse and Hewitsons’ privacy event on October 24, a diverse panel dispelled fears associated with an ever-changing patchwork of privacy rules and regulations. The panel, led by Morse Associate Ryan Perry, CIPP/US, shared several strategies on implementing a successful privacy program, but the common refrain among them was the importance of engaging the entire …

Continue reading Event Recap: 10/24 Privacy Event

Confronting Privacy Fears: Practical Approaches to Challenges in the U.S. and EU

Morse and Hewitsons invite you to a panel event: Confronting Privacy Fears: Practical Approaches to Challenges in the U.S. and EU on Thursday, October 24 at our Waltham office. Topics will include diverse legal, business, and operational perspectives, both from right here in Massachusetts and from across the pond, and pragmatic advice on how to …

Continue reading Confronting Privacy Fears: Practical Approaches to Challenges in the U.S. and EU

Amanda Schreyer Speaking on MCLE Program: Doing Business Online

Intellectual property attorney Amanda Schreyer will be speaking on the MCLE program Doing Business Online: Anticipating and handling the evolving and unique challenges in the internet age on October 18 at 2pm. The program will analyze the risks and opportunities deriving from an online business presence, including both the protection and risk relating to intellectual property …

Continue reading Amanda Schreyer Speaking on MCLE Program: Doing Business Online