On March 6, Singapore announced that it has become the sixth country to participate in the Cross-Border Privacy Rules System (CBPR) as of February 20, 2018, joining the United States, Mexico, Canada, Japan and the Republic of Korea, and the second … [Read more] about Singapore Joins the APEC CBPR and PRP
Supreme Court Hears Oral Argument in the Microsoft Ireland Case
On Tuesday, February 27th, the U.S. Supreme Court heard oral argument in United States v. Microsoft Corp. on whether a warrant issued under the Stored Communications Act (SCA) can compel the production of data stored outside the United States. Where … [Read more] about Supreme Court Hears Oral Argument in the Microsoft Ireland Case
In Order, FTC Recognizes Lower Notice Requirements for “Consumer-Expected” Data Collection
Last week, the Federal Trade Commission granted a petition by Sears Holding Management seeking modification of a 2009 Commission Order. The notable 2009 Order settled allegations that Sears had improperly failed to provide notice regarding data … [Read more] about In Order, FTC Recognizes Lower Notice Requirements for “Consumer-Expected” Data Collection
German DPAs Publish Model GDPR Processing Records – Translations Provided
In just under 100 days, the EU General Data Protection Regulation (GDPR) enters into force. One of the major changes the GDPR introduces is a duty for in-scope controllers and processors to maintain written records of their processing activities. … [Read more] about German DPAs Publish Model GDPR Processing Records – Translations Provided
SEC Adopts Statement and Interpretive Guidance on Public Company Cybersecurity Disclosures
The Securities and Exchange Commission (SEC) issued a press release announcing its unanimous approval of a statement by SEC Chairman Jay Clayton and interpretive guidance (the “2018 Guidance”) to assist public companies in preparing disclosures about … [Read more] about SEC Adopts Statement and Interpretive Guidance on Public Company Cybersecurity Disclosures