Last week, the Federal Trade Commission granted a petition by Sears Holding Management seeking modification of a 2009 Commission Order. The notable 2009 Order settled allegations that Sears had improperly failed to provide notice regarding data … [Read more] about In Order, FTC Recognizes Lower Notice Requirements for “Consumer-Expected” Data Collection
German DPAs Publish Model GDPR Processing Records – Translations Provided
In just under 100 days, the EU General Data Protection Regulation (GDPR) enters into force. One of the major changes the GDPR introduces is a duty for in-scope controllers and processors to maintain written records of their processing activities. … [Read more] about German DPAs Publish Model GDPR Processing Records – Translations Provided
SEC Adopts Statement and Interpretive Guidance on Public Company Cybersecurity Disclosures
The Securities and Exchange Commission (SEC) issued a press release announcing its unanimous approval of a statement by SEC Chairman Jay Clayton and interpretive guidance (the “2018 Guidance”) to assist public companies in preparing disclosures about … [Read more] about SEC Adopts Statement and Interpretive Guidance on Public Company Cybersecurity Disclosures
100 Days Until GDPR Effective Date – Sharing Our GDPR Experience
In less than 100 days, the General Data Protection Regulation (GDPR) will go into effect. This means that as of May 25, 2018, each national Supervisory Authority will have the authority to apply and enforce the GDPR. The GDPR raises the bar in … [Read more] about 100 Days Until GDPR Effective Date – Sharing Our GDPR Experience
Lenovo Wins Second Motion to Dismiss in Adware Class Action
By Jay Repko A California district court recently dismissed—for the second time—consumer claims that technology giant Lenovo Inc. violated New York’s Deceptive Acts and Practices Statute by selling laptops with preinstalled VisualDiscovery … [Read more] about Lenovo Wins Second Motion to Dismiss in Adware Class Action