Legislation

California Approves the California Consumer Privacy Act in Response to Consumer Privacy Ballot Initiative

July 2, 2018 By Privacy, Cyber & Data Strategy Team

As discussed in this blog’s June 4, 2018 blog post, a group called Californians for Consumer Privacy gathered enough signatures for a new measure called the Consumer Right to Privacy Act to qualify for the November 2018 ballot. With momentum building for passage of that ballot measure, various stakeholders met with California legislators to devise a bill […]

GDPR Fragmentation May Appear More Significant than Intended

June 26, 2018 By Privacy, Cyber & Data Strategy Team

With the entry into application of the GDPR on May 25, 2018, the EU Member States were expected to have adopted national legislation implementing the regulation. To date, however, only 30% of Member States have effectively passed legislation, which still leaves the legal landscape to be precarious. The GDPR allows for deviations and specifications in […]

Vermont Passes New Data Broker Law

June 14, 2018 By Privacy, Cyber & Data Strategy Team

Under a Vermont law, data brokers that process information regarding Vermont residents are now subject to registration and security requirements beginning January 1, 2019. Included in the new law are three notable components: (1) a broad statutory definition of a “data broker,” (2) an annual registration requirement for data brokers, and (3) reporting on data […]

German DPAs Publish Model GDPR Processing Records – Translations Provided

February 26, 2018 By Daniel Felz

In just under 100 days, the EU General Data Protection Regulation (GDPR) enters into force. One of the major changes the GDPR introduces is a duty for in-scope controllers and processors to maintain written records of their processing activities. Under Article 30 GDPR, companies will need to inventory all “processing activities under [their] responsibility” and […]