Deadline To Incorporate New EU Data Transfer SCCs In New Contracts Approaches

By: Faith D. Kasparian, Ann M. O'Rourke &  Ryan J. Perry As we indicated in our prior Alert and recent Webinar on this subject, this summer, the European Commission released eagerly anticipated Standard Contractual Clauses (SCCs) for transfers to third countries (the “New Data Transfer SCCs”). The New Data Transfer SCCs are “model data protection clauses” that businesses can utilize to help ensure that they are in compliance …

Continue reading Deadline To Incorporate New EU Data Transfer SCCs In New Contracts Approaches

CCPA Compliance – Required Updates to Privacy Policies

By: Faith D. Kasparian, Ann M. O'Rourke &  Ryan J. Perry Among the many requirements placed on businesses by the California Consumer Privacy Act (CCPA), businesses must also keep in mind the continuing obligations that the law imposes. To remain in compliance with the CCPA, a business is required to update its privacy policy “at least once every 12 months.” Specifically, the applicable section of …

Continue reading CCPA Compliance – Required Updates to Privacy Policies

European Commission Adopts New Standard Contractual Clauses for Data Transfers

By: Faith D. Kasparian, Ann M. O'Rourke &  Ryan J. Perry On Friday, June 4, 2021, the European Commission released eagerly anticipated Standard Contractual Clauses (SCCs) for transfers to third countries (the “Data Transfer SCCs”). On the same day, the European Commission released another set of Standard Contractual Clauses addressing data sharing between controllers and processors in the absence of a third-country transfer. The …

Continue reading European Commission Adopts New Standard Contractual Clauses for Data Transfers

Virginia Follows California Lead on Data Protection—With Narrower Scope

By: Faith D. Kasparian & Ann M. O'Rourke On March 2, 2021, a new comprehensive data protection law was enacted in Virginia, which will become effective on January 1, 2023.  The scope of the Virginia Consumer Data Protection Act (VCDPA) is narrower in many respects than the California Consumer Privacy Act (CCPA).  Notably, unlike the CCPA, there is no threshold …

Continue reading Virginia Follows California Lead on Data Protection—With Narrower Scope

Transatlantic Data Flows Face Stormy Seas: Privacy Shield Invalidated – Standard Contractual Clauses Viable for Now 

  As many here in the United States slept in the wee hours of this morning, July 16, 2020, the Court of Justice of the European Union (“CJEU”) issued a binding judgment invalidating the European Commission Decision (Commission Decision 2016/1250, the “Privacy Shield Decision”) that authorized the EU-U.S. Privacy Shield arrangement.  For the past four years, this arrangement …

Continue reading Transatlantic Data Flows Face Stormy Seas: Privacy Shield Invalidated – Standard Contractual Clauses Viable for Now 

Event Recap: 10/24 Privacy Event

At Morse and Hewitsons’ privacy event on October 24, a diverse panel dispelled fears associated with an ever-changing patchwork of privacy rules and regulations. The panel, led by Morse Associate Ryan Perry, CIPP/US, shared several strategies on implementing a successful privacy program, but the common refrain among them was the importance of engaging the entire …

Continue reading Event Recap: 10/24 Privacy Event

Privacy & Data Security Video: Written Information Security Programs (WISPs) Under Massachusetts Law

In our third Privacy & Data Security video clip, attorney Sandra Kahn discusses the importance of a company's Written Information Security Program (WISP).  Specifically, Sandy explains the data security regulations that require every company that owns or licenses personal information about Massachusetts residents to develop, implement, and maintain a WISP. Make sure to subscribe to our YouTube channel …

Continue reading Privacy & Data Security Video: Written Information Security Programs (WISPs) Under Massachusetts Law

Privacy & Data Security Video: Privacy in M&A Transactions

In our second Privacy & Data Security video clip, MBBP Attorney Faith Kasparian discusses key privacy and data security issues that companies must consider when participating in an acquisition. Make sure to subscribe to our YouTube channel and to check out our Privacy & Data Security playlist for related videos.

Watch Attorney Howard Zaharoff in New “High-Level Overview of U.S. Privacy/Data Security Landscape” Video

For the next several weeks we will be releasing a series of eight videos of our attorneys discussing key privacy and data security considerations.  In our first video, Howard Zaharoff discuss the privacy and data security landscape, and provides an overview of the complex patchwork of state and federal laws governing privacy and data security in the United States. …

Continue reading Watch Attorney Howard Zaharoff in New “High-Level Overview of U.S. Privacy/Data Security Landscape” Video

2016 Rings in Changes for Employers

With 2016 upon us there are a few important changes to keep in mind, as well as recommendations to get your employment law practices in order. Below is a short list to be aware of. Minimum Wage Goes Up Earned Sick Leave Safe Harbor Ends Sexual Harassment Law Compliance Data Protection Compliance For all the …

Continue reading 2016 Rings in Changes for Employers