This blog post discusses harmonized standards, common specifications, and certificates in the EU’s Artificial Intelligence Act. We also discuss the role of the authorities responsible for appointing conformity assessment bodies and how the latter must perform their activities.
Privacy Tabletops: The Secret Weapon You Didn’t Know You Needed
Move over, cybersecurity tabletops – there’s a new sheriff in town. While you’ve been busy simulating ransomware attacks, privacy professionals have been cooking up their own version of “what-if” scenarios. And trust me, it’s not just another boring compliance exercise.
Video Privacy Protection Act Claims – Maybe Not a Slam Dunk After All
With Cyber Monday 2024 in the rear-view mirror, we are looking at one of the hot topics in data-privacy and cybersecurity litigation: the Video Privacy Protection Act.
Recent years have seen an uptick in lawsuits asserting violations of the VPPA
Developments in Data Protection Law – New EDPB Guidelines and Opinions
The European Data Protection Board (EDPB) has recently (re)positioned itself on several controversial topics and published three new guidelines and opinions. Although not legally binding, they do have a significant influence on proceedings before the supervisory authorities and courts. This
Dec. 3 WEBINAR | Data Privacy in the Age of Digital Transformation
GT Shareholder Ian C. Ballon will speak during the “Data Privacy in the Age of Digital Transformation” webinar Dec. 3, 2024. This virtual event will offer an in-depth exploration of key global data privacy regulations, including GDPR, CCPA, and other
TR v Land Hessen – DPA not obliged to fine under the GDPR
By Shan Nanayakkara
In TR v Land Hessen (C‑768/21) the European Court of Justice (“ECJ”) found that following a personal data breach, a supervisory authority is under no obligation to exercise its corrective powers, specifically the power to impose an
Are You Ready for The Latest U.S. State Consumer Privacy Laws?
Nineteen states have followed the lead of California and passed consumer privacy laws. Three went into effect this year and eight will become effective in 2025. The remainder become effective in 2026. Charts at the end of this post track
Tips for Vacation Rental, Property Mgmt. Businesses Facing Vendor Cybersecurity Risk
No organization can eliminate data breach risks altogether, regardless of industry, size, or even if the organization has taken significant steps to safeguard their systems and train employees to avoid phishing attacks. Perhaps the most significant reason these risks remain:
Litigation Under Wiretap Law and What Website Owners Need to Know
Massachusetts’ highest court recently issued an opinion that delves into the complex intersection of privacy law and modern technology. The case centers around whether the collection and transmission of users’ web browsing activities to third parties without their consent constitutes
Employees Are People Too — And Not Just in California
I recently had the pleasure of speaking with the Atlantic County Bar Association. Here are some of the key takeaways from my presentation:
Employees are “consumers” under the California Consumer Privacy Act. It requires:
- Privacy notice (employee and applicant) is