SCOTUS Remands Google Case to the Ninth Circuit for Spokeo Standing Analysis

The United States Supreme Court on March 20, 2019 remanded an $8.5 million settlement in a class action against Google to the Ninth Circuit so that the lower court could evaluate standing under the Supreme Court’s 2016 Spokeo v. Robins decision. In the case, Frank v. Gaos, plaintiffs challenged

Mental world of human concept.Destination Unknown: The Perilous Future of Blockchain and Artificial Intelligence Technologies Under the California Consumer Privacy Act of 2018

This article originally appeared in the UCLA Law Review.


On August 22, 2018, the California Attorney General Xavier Becerra wrote a letter to both the California State Senate and Assembly.1 The letter stated that A.B. 375, the California Consumer Privacy Act of 2018 (hereinafter Act) imposed “unworkable

HIPAA Small Breach Notifications Due March 1

March 1, 2019 is the date by which HIPAA covered entities must notify the U.S. Department of Health and Human Services Office for Civil Rights (OCR) of “small” breaches of unsecured protected health information that were discovered in calendar-year 2018. A small breach involves fewer than 500 individuals.

HIPAA Notification

Leveraging Your GDPR Compliance Investment for CCPA

You diligently spent time analyzing your General Data Protection Regulation (GDPR) compliance requirements, built your roadmap, and executed it. You now learn that a new law, the California Consumer Privacy Act (CCPA), will go into effect in less than a year—and there are similar state privacy

Recent Developments in Cybersecurity….What You Don’t Know Will Hurt You

Criminal masterminds are constantly re-envisioning their weapon of choice. International cyberattacks perpetuated through the use of leaked nation-state cyber tools, shaped many security discussions in 2018, but a new year consistently brings forth new challenges and lessons to learn. With the recent implementation of the European Union’s General Data Protection


Washington State CapitolWashington State Fails to Enact Privacy Act

Despite support from the technology industry and almost unanimous support in the state Senate, the Washington Privacy Act (SB 5367) appears to dead after it failed to pass the Washington House before the April 17 deadline for the current legislative session. The bill—assumed by many to be a

Residential Neighborhood DetourThe DETOUR Act: Behavioral Economics Meets Online Privacy Legislation

Senators Warner, D-Va., and Fischer, R-Neb., introduced the “Deceptive Experiences to Online Users Reduction,” or DETOUR Act, on April 9, 2019. The bill covers “large online operators” (those with more than 100 million authenticated users), and addresses three main issues:

  1. Behavioral or psychological experiments on users;
  2. User interfaces (UIs) that

Woman trying to read confusing online content in a laptop at homeExempt or Not Exempt? California Consumer Privacy Act and the Gramm-Leach-Bliley Act

For the last 18 years, most financial services businesses could sum up their privacy practices with just four letters: G-L-B-A, also known as Title V of the Gramm-Leach-Bliley Act, Public Law 106-102, and its implementing regulations (“GLBA”). With the compliance date for California’s sweeping new privacy law quickly approaching,

Building an Effective Privacy Program, Plus a Privacy Officer Roundtable

Join the Health Care Compliance Association, April 7-10, in Boston for the single most comprehensive healthcare compliance conference. The program is designed for compliance professionals from a variety of healthcare backgrounds, including compliance officers, billing and coding professionals, auditors, nurses, risk managers, ethics officers, privacy officers, health information professionals. Healthcare

Hexagon Cyber security technology concept , Shield With Keyhole icon , personal data , vector illustrationChecking out of Hotel California: The California Consumer Privacy Act, and Looming Federal Legislation

Chris Ott will be presenting “Checking out of Hotel California: The California Consumer Privacy Act, and Looming Federal Legislation” at the Consumer Bankers Association (CBA) LIVE 2019, April 1-3, 2019 at the Gaylord National in Washington, D.C. This conference marks the 10th year of retail banking’s premier event, and celebrates