Stay compliant in your written agreements between controllers and processors of personal data. Many states have passed comprehensive consumer privacy laws, with many more legislatively proposed. All these states thus far require that the controller/processor contract...
While there is no single strategy that applies across all businesses and incidents, there are five fundamental questions every business should ask before communicating about a data security incident. These five questions are intended to minimize both the legal...
Washington's My Health My Data Act became effective on March 31, 2024, for most regulated entities. Understanding the fundamentals of this law is critical as it is expected to have national implications. In fact, it may be one of the most significant U.S. privacy...
Our regulatory enforcement tracker highlights the resolution of recent key enforcement actions undertaken by the Federal Trade Commission (FTC) regarding the regulation and protection of consumer privacy in the United States. Read now » Related Content...
Sheppard Mullin partner Liisa Thomas answers questions on common themes in U.S. privacy laws, whether they differ from other countries, the benefits of general versus sector-specific privacy laws, and how companies can best navigate the privacy landscape. Watch...
Businesses seem to face added data security and privacy obligations by the day. As part of your compliance program, don’t forget to review state laws governing disposal of records containing personal information. Our state law survey on data disposal privacy...
Find guidance in this Q&A practice note on the protection of personal information in government records in California. It answers questions such as whether California protects personal information in DMV records, library records, vital records, real property...
This video from our Modern Approaches to Cybersecurity series features cyber risk expert Pierson Clair discussing business email compromise (BEC) through phishing attacks. BEC is one of the most common ways that threat actors target attorneys. Find out how to limit...
Proper data breach notification is essential. Save time and ensure compliance with this new resource kit including practice notes, templates, checklists, trackers, and state law surveys discussing best practices for planning for and managing a data breach, state...
Stay in touch with legislative trends in artificial intelligence (AI) with this tracker, including state and federal legislation related to the use of AI proposed after January 1, 2024, or proposed in 2023 with activity in 2024. Read now » Related Content...
Check out this overview, by Wilmer Hale‘s attorney experts, of how commercial privacy issues are regulated in the United States, providing privacy professionals with a strong foundation of these issues and a starting point on how to evaluate data privacy...
Set your alert for the newest privacy legislation tracker highlighting key comprehensive privacy bills introduced and/or actively pending at the state level as of January 1, 2024. Reviewed weekly, this tracker’s scope is omnibus privacy legislation governing...
Every day, numerous organizations experience data security incidents of varying scope and complexity. Sometimes the incident can be as straightforward as inadvertently sending an email to the wrong individual. Other times, the incident can be more complicated where...
The Colorado Attorney General has approved and published the Global Privacy Control, the first Universal Opt-Out Mechanism (UOOM) that meets Colorado Privacy Act (CPA) regulations. Check out this client alert for more information and links to law firm client alerts...
Check out this state law survey for jurisdictional guidance on data security requirements generally applicable to private entities that collect or maintain personal information, including data and entities covered, security measures required, and penalties. Read...