On August 23rd, Brazil’s data protection authority, the Autoridade Nacional de Proteção de Dados (“ANPD”), released its long-awaited International Data Transfer Regulation.
Continue readingFTC Reaffirms Strict Standards for Data Anonymization
On July 24th, through its Office of Technology Blog, the Federal Trade Commission (FTC), reiterated its hardline stance that hashing does not meet its criteria for anonymization.
Continue readingNew York Enacts the SAFE for Kids Act
The SAFE for Kids Act imposes new responsibilities on “covered operators”, defined as parties who operate or provide an “addictive social media platform.”
Continue readingNew York Enacts the New York Child Data Protection Act (NYCDPA)
This bill is a key step in protecting minors’ data, enforcing strict restrictions and consent requirements on businesses collecting their personal information.
Continue readingCalifornia moves closer to regulations on automated decision making technology
In recent months, the California Privacy Protection Agency (“CPPA”) has taken significant strides towards regulating the use of automated decision-making technology (“ADMT”), marking a pivotal moment in the evolution of privacy protection laws.
Continue readingDOJ Announces New Mergers and Acquisitions Safe Harbor Policy
On October 4, 2023, Deputy Attorney General Lisa Monaco announced the new Mergers & Acquisitions (M&A) Safe Harbor Policy of the Department of Justice (“DOJ”). Under the new policy, acquiring companies that discover and disclose misconduct in a target or recently acquired company may, subject to certain conditions and limitations, enjoy the presumption of a declination to prosecute (that is, a formal statement that the DOJ will not prosecute the company) by the DOJ.
Continue readingFTC to Enact Amendment to Safeguards Rule Regarding Non-Bank Financial Institution Data Breaches
The Federal Trade Commission (FTC) made a significant announcement on October 27, 2023 regarding changes to the Safeguards Rule of the Gramm-Leach-Bliley Act (GLBA). These changes now require non-bank financial institutions to report specific data breaches and security incidents to the agency.
Continue readingThe Corporate Transparency Act – Pay Attention To the Beneficial Owner Behind the Curtain
Congress’s January 1, 2021 passage of the National Defense Authorization Act for Fiscal Year 2021 included passage of the Corporate Transparency Act (“CTA”), and in doing so established reporting requirements for many U.S. businesses with the intent of creating a database of beneficial ownership controlled by the U.S. Department of the Treasury’s Financial Crimes Enforcement Network (“FinCEN”).
Continue reading