Category: Privacy

Healthcare Privacy US Laws

Washington’s My Health My Data

A quick read of Washington’s My Health My Data Backdrop: Enacted in reaction to the US Supreme Court’s decision overturning a federal right to abortion. Guarantees Washington residents some of the broadest health information privacy protections in the nation. Tl;dr: The law prohibits covered entities from collecting or selling health data that can be tied […]

Privacy Session Replay Tracking Tech US Laws

US Courts on Emerging Privacy Tech- Session Replay, Pixels, Chatbots – Series 1

Chat Wiretapping Case Case 1 In the first, the plaintiff alleged the messages were first routed through the third-party’s server to “analyze and collect customer support-agent interactions in real-time” and that the third-party’s parent (a well-known social media company) identified “user interests” by monitoring a collection of offsite user activity and generated revenue by selling […]

FTC Privacy US Laws

FTC Guidance in the Avast Case: Selling and Collecting Data Deceptively!

– The #FTC found that Avast anonymization measures were insufficient to prevent re-identification. Even when contracts contained prohibitions on re-identification, the language allowed customers to join their first-party data to the data purchased from Avast. – FTC has confirmed that anonymized has a concrete technical definition consistent with the de-identified and anonymized data exemptions in state & […]

California Privacy US Laws

Doordash fined under CCPA and CalOPPA

Summary: California Attorney General Rob Bonta announced a settlement with DoorDash, resolving allegations that the company violated the California Consumer Privacy Act (CCPA) and the California Online Privacy Protection Act (CalOPPA). The investigation by the California Department of Justice found that DoorDash sold its California customers’ personal information without providing notice or an opportunity to opt out of […]

FTC Privacy US Laws

Rite Aid, FTC & AI Facial Recognition Tech

Quick Summary: Rite Aid banned from using AI facial recognition technology(FRT) for 5 years under a proposed settlement of Federal Trade Commission charges. FTC’s Allegation: The FTC alleged that Rite Aid failed to implement reasonable procedures and prevent harm to consumers with “reckless” use of facial recognition technology which “disproportionately impacted people of color.” Proposed Order […]

ADMT California Privacy

California announces draft regulations on Automated Decision-Making Tech

California Privacy Protection Agency announced draft regulations around automated decision-making technologies (ADMT). A quick summary below- When will you be covered? Businesses using ADMT in the following ways will be covered- New Consumer Protection on the Use of ADMT For the above uses of ADMT, the draft regulations would provide consumers with the following protections: […]

California Healthcare Privacy

Does CMIA (Confidentiality of Medical Information Act) apply to you?

What is CMIA: The Confidentiality of Medical Information Act (CMIA) is a California law that protects the confidentiality of individually identifiable medical information obtained by healthcare providers, health insurers, and their contractors. Who does it apply to? Medical Information under CMIA: Medical information is defined as: “any individually identifiable information, in electronic or physical form, in […]

California Privacy

Papa John’s sued under US Privacy Laws for spying on website mouse clicks & keystrokes

Brief Snapshot: Papa John’s is being sued by a customer – not for its pizza but for allegedly breaking the US Wiretap Act and CIPA by snooping on how he browsed the pie-slinger’s website. Regulations Involved: Wiretap Law, California Invasion of Privacy Act (CIPA) Jurisdiction: Federal District Court, Southern California Issue: The proposed class-action suit […]

California Privacy

The AADC (Age-Appropriate Design Code Act)

Both chambers of the legislature in California just passed the Age-Appropriate Design Code Act (AADC) unanimously. Here’s a brief snapshot- Applicability: It applies to any business that provides an online service, product, or feature likely to be accessed by children. Definition of a Child: The Act defines a child as a consumer under 18 years of […]

Privacy

The Video Privacy Protection Act of 1988 (VPPA)

Why it was enacted: The Video Privacy Protection Act of 1988 (VPPA) was passed in response to the disclosure and publication of then-Supreme Court nominee Robert Bork’s video rental records. Although the records revealed that Judge Bork watched innocuous films, the disclosure was considered a gross invasion of his privacy. Highlights: Private right of action […]

Back To Top