Header graphic for print

HL Chronicle of Data Protection

Privacy & Information Security News & Trends

Posted in News & Events

All-Day Workshop: Privacy and Cybersecurity KnowledgeShare (Agenda & Speakers Announced)

Join us on Thursday 19 September for the Hogan Lovells Privacy and Cybersecurity KnowledgeShare in London.

We will share our latest thinking on the key privacy and cybersecurity issues faced by those with data protection responsibilities within organisations. Our all-day event will cover a lot of ground through incisive quick-fire presentations, Q&A panels and hands-on workshops.

We are particularly excited to announce that we will be joined by guest speakers:

  • James Dipple-Johnston; Deputy Commissioner (Operations) at the UK Information Commissioner’s Office
  • Jannine Aston; Director, Privacy Policy & Compliance, INTL at Verizon
  • Lien Ceulemans; Vice President and Associate General Counsel, Global Privacy at Salesforce

Continue Reading

Posted in Consumer Privacy

Reminder that the FTC is Providing an Opportunity to Comment on COPPA Rule by October 23

The Federal Trade Commission (“FTC”) is requesting public comments on the Children’s Online Privacy Protection Rule (“COPPA Rule”). In particular, the FTC is seeking feedback on the effectiveness of its 2013 amendments to the COPPA Rule and on whether additional changes are needed. Comments are due October 23, 2019. The FTC will also be hosting a COPPA workshop on October 7, 2019. Continue Reading

Posted in News & Events

Privacy and Cybersecurity September 2019 Events

Please join us for our September events.

September 11
Data and Privacy in the Autonomous Car
Tim Tobin will speak on the webinar, “Data and Privacy in the Autonomous Car, What New Questions Might We Face?” presented by the Privacy + Security Forum. To register, please click here.
Location: Webinar

 

September 13
Medical Technology Executive Forum
Paul Otto will speak on cybersecurity & patient safety at the Medical Device Manufacturers Association’s 12th Annual Medical Technology Executive Forum.
Location: Palo Alto, California

 

September 16
Association of Independent Research Institutes Annual Meeting
Melissa Bianchi and Bret Cohen will discuss how AIRI institutes can best comply with the requirements and challenges presented by the GDPR as well as HIPAA, and other regulations during the panel, “The New Alphabet Soup of IT Compliance: GDPR, HIPAA and Other Regulations,” at the AIRI 2019 Annual Meeting.
Location: Washington, D.C.

 

Continue Reading

Posted in Cybersecurity & Data Breaches

New York Enacts New Data Security Laws

On July 25, New York Governor Andrew Cuomo signed into law a pair of bills establishing new requirements for businesses that process certain personal information related to New York residents. The changes include expanding the scope of information covered by New York’s data breach notification law; defining breaches to include incidents involving unauthorized access to covered information, even where the information is not acquired; and requiring consumer reporting agencies who suffer breaches of social security numbers to offer up to 5 years of identity theft services. Businesses maintaining the private information of New York residents also will now be required to proactively develop “reasonable safeguards” within their organization as part of a new “reasonable security requirement.” Continue Reading

Posted in International/EU Privacy

The ICO Updates Its Data Sharing Code of Practice

On 9 July 2019 the UK data protection authority (ICO) updated its Data Sharing Code of Practice (first published in 2011) (Code). On the same day, the ICO also announced its intention to fine Marriott International just over £99m for infringements of the General Data Protection Regulation (GDPR), highlighting the importance of due diligence in the context of data sharing.

The Code, made under section 121 of the UK’s Data Protection Act (DPA), is publicly available for consultation until 9 September 2019. Once finalised, the Code will become a statutory code of practice under the DPA. Non-compliance with the code will likely be considered non-compliance with data protection laws. Continue Reading

Posted in News & Events

Privacy and Cybersecurity August 2019 Events

Please join us for our August events.

August 2
Cybersecurity Policies and Strategies Forum
Shee Shee Jin will discuss data analytics and data sharing on a panel covering “Big Data” and will present a session on “HIPAA Regulatory Trends” at the South Carolina Primary Health Care Association’s inaugural Cybersecurity Policies and Strategies Forum.
Location: Greenville, South Carolina

 

August 20
International Data Transfers
Eduardo Ustaran will speak on a DataGuidance webinar on international data transfers.
Location: Webinar

 

Posted in News & Events

Now Available: IoT Webinar Series — Cyberthreats in the Internet of Things

Nathan Salminen

Allison Holt Ryan

Paul Otto

 

 

 

 

 

 

On July 16, 2019, Nathan Salminen, Allison Holt, and Paul Otto from the Hogan Lovells Privacy and Cybersecurity and Litigation teams presented a webinar, “Cyberthreats in the Internet of Things” where they explored some techniques that can be used to exploit potential vulnerabilities in connected devices and how those types of events impact organizations from a regulatory and litigation perspective. Continue Reading

Posted in International/EU Privacy

New French Guidelines on Cookies and Trackers

On 19 July the French Data Protection Authority (the “CNIL”) published new guidelines on cookies and trackers. These replace the existing Recommendation No. 2013-378 of 5 December 2013, are intended to be in line with relevant GDPR provisions and have been produced in anticipation of the future ePrivacy Regulation. The guidelines will be supplemented, at a later stage, with sectoral recommendations setting out practical methods for obtaining consent. These sectoral recommendations will be included in a final version of the guidelines on cookies and trackers open for public consultation, which will then be subject to final adoption by the CNIL (expected early 2020). Continue Reading

Posted in Consumer Privacy

Ill-Suited: Private Rights of Action and Privacy Claims

The U.S. Chamber of Commerce Institute for Legal Reform has published “Ill-Suited: Private Rights of Action and Privacy Claims,” a white paper authored by Hogan Lovells’ Mark W. Brennan, Alicia Paller, Melissa Bianchi, Adam Cooke, and Joseph Cavanaugh explaining why private litigation is a poor enforcement tool for privacy laws. As detailed in the paper, when it comes to privacy interests, “harms” are largely inchoate and intangible, and the wrongdoers are often unknown or unidentifiable. Even where class members may have suffered a concrete injury, the data indicates that they are unlikely to receive material compensatory or injunctive relief through private litigation. Meanwhile, plaintiffs’ counsel often walks away with millions of dollars, court dockets are unduly cluttered, and companies are forced to expend resources on baseless litigation. Continue Reading

Posted in News & Events

All-Day Workshop: Privacy and Cybersecurity KnowledgeShare

Join us on Thursday 19 September for the Hogan Lovells Privacy and Cybersecurity KnowledgeShare in London.

We will share our latest thinking on the key privacy and cybersecurity issues faced by those with data protection responsibilities within organisations. Our all-day event will cover a lot of ground through incisive quick-fire presentations, Q&A panels and hands-on workshops. Continue Reading