Header graphic for print
HL Chronicle of Data Protection Privacy & Information Security News & Trends

Tag Archives: privacy policy

Posted in International/EU Privacy

Russian Data Protection Authority Publishes Privacy Policy Guidance

On 31 July, the Russian data protection authority, Roskomnadzor, issued guidance for data operators on the drafting of privacy policies to comply with Russian data protection law. Russia’s 2006 privacy law – Federal Law No. 152-FZ of 27 July 2006 “On Personal Data” – requires, among other things, that Russian data operators must adopt a privacy policy that describes how they process personal data. This notice requirement is similar to the approach in Europe. Furthermore, data operators shall publish such a policy online when personal data is collected online or otherwise provide unrestricted access to the policy when personal data is collected offline. The guidance – although non-binding and recommendatory in nature – emphasizes the regulator’s compliance expectations and should therefore be taken into account by organizations acting as data operators in Russia.

Posted in Consumer Privacy

Hogan Lovells at IAPP Global Privacy Summit 2015!

Hogan Lovells’ leading Privacy and Information ‎Management practice will actively participate at this week’s IAPP Global Privacy Summit 2015. Enclosed is a listing of events in which our lawyers will be featured.

Posted in International/EU Privacy

French Consumer Protection Panel Flags Unfair Privacy Practices

Like the United States, France has a broadly-worded consumer protection statute prohibiting unfair clauses in consumer contracts (the French term is “clauses abusives”). What constitutes an “unfair” clause is in some cases fixed by regulation. But in many cases, the term is left to the interpretation of the courts and France’s consumer protection agency, the DGCCRF. France created an advisory panel to issue guidance on what constitutes an unfair clause in various circumstances. On December 3, 2014, the panel published a lengthy opinion identifying 46 clauses in social media terms of use and privacy policies that the panel considers unfair.

Posted in Consumer Privacy

New California Law to Require Additional Web Privacy Policy Disclosures

On August 26, the California legislature passed AB 370, which would require commercial websites and other online services such as mobile apps to include language in their privacy policies disclosing whether the service uses third-party vendors to track users across a network of other websites or online services, and how the users can opt out of such tracking using a centralized “do not track” signal or other mechanism. If signed by the governor, as expected, this bill would apply de facto to most websites and mobile apps by virtue of their accessibility in California, and would require revision of many privacy policies as a result.

Posted in Consumer Privacy

FTC Announces First Flash Cookie Enforcement and Settlement with Child Social Network

The Federal Trade Commission yesterday announced settlements with two online companies for deceptively collecting personal information from consumers, including its first enforcement action against the use of “Flash cookies” and an enforcement action against a social network that collected children’s information without parental consent. As a result, businesses whose websites (or vendors) utilize Flash cookies, HTML5, or ETags to track user browsing should reexamine their privacy disclosures.