Navigating Retention of Data Privacy Compliance Records

Navigating Retention of Data Privacy Compliance Records Data privacy law compliance is in large measure about showing your work. Five years into the swell of new comprehensive data privacy laws, privacy teams are getting used to ensuring their organization’s personal data activities are well documented. This means creating records—often lots of them. And for records…

What is a Data Leak?

Refresh your news feed and you will often see yet another company has become the victim of a data leak. Today, most companies are storing sensitive information electronically, making data leaks a major concern.  Information security is becoming more important than ever. Data Leak vs. Data Breach So, what is a data leak? Data leaks…

More States Jump on the Privacy Bandwagon

Data privacy laws continue to gain momentum among U.S. states. Just this spring, comprehensive consumer privacy bills have been enacted in Indiana, Iowa, Montana, and Tennessee. Florida enacted its Technology Transparency Act in June. Washington has also taken steps toward comprehensive privacy legislation with its My Health My Data Act, although it is more targeted…

Staying One Step Ahead of Cyber Criminals: NYDFS Updating Cybersecurity Regulation for 2023

Since 2017, the New York Department of Financial Services (NYDFS) cybersecurity regulation has established minimum cybersecurity requirements for financial services companies that are licensed or registered by NYDFS. The regulation is set to be updated[1] in 2023 to address the ever-increasing sophistication and scope of cyber threats. NYDFS issued a draft regulation last November, and…

Recent Data Breaches Prompt Big Changes in Australian Privacy Penalties

Recent Data Breaches Prompt Big Changes in Australian Privacy Penalties Two massive data breaches exposing the personal information of millions of Australians rocked the country—one in September and another in October— prompting Australia’s parliament to swiftly respond with dramatic increases to penalties allowable under its Privacy Act. In September, telecom company Optus made public news…

California Strengthens Online Privacy Landscape with Child-Specific Legislation

California recently became the first state to enact legislation governing the profiling and processing of personal information gathered from children online.[1] The California Age-Appropriate Design Code Act (CAADCA) becomes law on July 1, 2024, and builds upon the state’s current privacy legislation.[2] The law applies to any business that provides an online service, product, or feature…

Following the Cookie Trail

BOISE, Idaho — If you are following the various privacy laws being passed around the world, you have certainly heard a lot of chatter about cookies. You may also be annoyed by website banners that pop up whenever you view a website. What are cookies and why are they used? Cookies are small text files…