The United Kingdom’s National Cyber Security Centre (NCSC) recently released its 2022 Annual Review, which reports on the state of cyber security threats in the country. As the UK’s technical authority for cyber security, the NCSC releases an annual … [Read more] about UK’s National Cyber Security Centre Releases 2022 Annual Review
On October 31, 2022, the Federal Trade Commission (FTC) announced it has taken action against education technology provider Chegg Inc. (“Chegg”) for its “careless” cybersecurity practices that exposed sensitive personal information of millions of its … [Read more] about FTC Takes Action Against Ed Tech Provider for Failure to Secure Student’s Personal Information
Today, October 29, 2022, the California Privacy Protection Agency (“CPPA”) Board approved modifications to the Proposed Regulations under the California Privacy Rights Act (“CPRA”). The modifications will largely be based on the Modified Proposed … [Read more] about California Privacy Protection Agency Approves Modifications to CPRA Regulations
On October 18, 2022, in Popa v. Harriet Carter Gifts Inc. et al., Case Number 21-2203, the Third Circuit denied rehearing on its ruling that allows a class action alleging wiretapping claims based on the use of session replay software to proceed. The … [Read more] about Website Analytics (Session Replay) Litigation is Not Dead
On October 24, 2022, the Federal Trade Commission (“FTC”) announced a proposed consent order against both Drizly LLC, an online marketplace for alcohol delivery, and its CEO over the company’s alleged security failures that led to a data breach in … [Read more] about Recent FTC Order Has Implications for Executive Liability and Corporate Data Minimization Practices