The California Consumer Privacy Act of 2018 (CCPA), codified as Cal. Civ. Code §1798.100 et seq,is California’s current attempt at regulating the collection and use of personal information of California residents. The statute has numerous similarities with the GDPR – the EU General Data Protection Regulation – especially those provisions of the GDPR that define […]
CCPA – California Consumer Privacy Act – A Primer
Social Networking App to pay $5.7 M Fine in COPPA Case
On February 27, 2019, the operators of the video social networking app Musical.ly, now known as Tik Tok agreed to pay a $5.7 million fine to settle allegations by the Federal Trade Commission that the company illegally collected personal information from children.[1]This amount is the largest one ever obtained by the FTC in a children’s […]
GDPR and Blockchain: Can they Coexist?
GDPR and blockchain do not coexist easily. GDPR attempts to ensure that personal data is retained for as short a period as possible, give in- dividuals control over their personal data, and allow easy modifica- tion, correction or erasure at any time at the individual’s request. Blockchain is intended to serve as an immutable ledger, […]
GDPR and Privacy Shield: Different Tools for Different Goals
By Paola Zeni, Francoise Gilbert, Max Calehuff Paola Zeni is the senior director of global privacy at Palo Alto Networks. Francoise Gilbert is a shareholder in Greenberg Traurig LLP where she focuses her practice on US and global data privacy and cybersecurity. gilbertf@gtlaw.com Maxwell Calehuff is an attorney in the Cybersecurity and Privacy Group of […]
The EU General Data Protection Regulation and Its Implications for US Insurance Companies
An article published by Francoise Gilbert in collaboration with the Greenberg Traurig Insurance Department. Summer 2018 Magazine Reprint
All you wanted to know about the GDPR
Extensive presentation by Francoise at a Bay Pay event.
90 days to May 25, 2018 – Does your Business Meet its GDPR Obligations?
The EU General Data Protection Regulations – or GDPR – goes into effect in 90 days, on May 25, 2018. With such a name, it would be easy to conclude that the law governs only the activities of businesses established in the European Union (EU) or European Economic Area (EEA), and that those established elsewhere […]
NIS Directive Adopted in August 2016 – What’s Next
Directive (EU) 2016/1148 of the European Parliament and of the Council of July 6, 2016, Concerning Measures for a High Common Level of Security of Network and Information Systems across the Union Network and Information (“NIS Directive” or “Directive”), entered into force in August 2016, outlines plans for establishing a base level of network and […]
EU-U.S. Privacy Shield Approved and Signed
Since October 2015, when the Court of Justice of the European Union invalidated the Safe Harbor Agreement, numerous US and EU companies have struggled to provide a legal basis to the transfer of personal information across the Atlantic. On July 12, representatives of the European Commission and the U.S. Department of Commerce signed the “EU-US […]
WP29 gives “Thumbs Down” to Draft EU-US Privacy Shield
In a 58-page opinion published on April 13, 2016, the influential European Union Article 29 Working Party (“WP29”), which gathers representatives of the data protection authorities of the 28 EU member states, expressed significant concerns with respect to the terms of the proposed EU-US Privacy Shield that is intended to replace the EU-US Safe Harbor. […]