Enforcement

Austrian Supreme Court Refers Schrems Consumer Class Action to ECJ

September 13, 2016 By Daniel Felz

Just under a year ago today, the European Court of Justice (ECJ) issued its Schrems decision, which invalidated Safe Harbor and led to substantial developments in US-EU data-transfer mechanisms. In parallel to the ECJ Safe Harbor litigation, Mr. Schrems has maintained two further legal proceedings in the EU: (1) a challenge in the Irish courts […]

FTC Overrules LabMD Dismissal, Finds Unfair Data Security Practices

August 9, 2016 By Privacy, Cyber & Data Strategy Team

The FTC issued an Opinion and Final Order reversing the previously dismissed charges against LabMD on July 29. FTC Administrative Law Judge (ALJ) D. Michael Chappell had dismissed the case against LabMD on November 13, 2015 based on an insufficient showing of harm, as required to find an act or practice unfair under § 5 […]

German DPAs Will Not Be Able to Challenge Privacy Shield this Year

August 8, 2016 By Daniel Felz

Even before the ECJ’s Schrems decision invalidated Safe Harbor, the European Commission had begun working closely with US negotiators to craft what has become the U.S.-EU Privacy Shield. While EU privacy leaders have noted that Privacy Shield represents important improvements in data protection, some German DPAs have voiced a desire to challenge Privacy Shield in […]

Advocate Health Care Network Agrees to Pay $5.55 Million to Settle Potential HIPAA Penalties

August 5, 2016 By HIPAA Privacy & Security Team

On August 4, 2016, the Office of Civil Rights (“OCR”) announced that Advocate Health Care Network (“Advocate”), Illinois’ largest fully-integrated health care system, has agreed to pay a record-breaking $5.55 million to settle claims of multiple Health Insurance Portability and Accountability Act (“HIPAA”) violations involving electronic protected health information (“ePHI”). The substantial settlement stems from […]