Topic Archives: Privacy

FDA Announces New Efforts to Combat Cybersecurity Threats in Medical Devices

FDA is tackling cybersecurity threats head-on and expects industry to do the same.  Earlier this month, FDA commissioner Scott Gottlieb, M.D., announced a series of developments designed to keep pace with evolving cybersecurity threats to medical devices.  Industry should take note, as these developments detail the agency’s current expectations for companies preparing to combat future ...›

Internet of Things
October 22, 2018Internet of Things, Privacy

Digital Single Market Update: Technology Standardization in the EU

ICT standardization is a key part of the European Union’s package of measures designed to improve Europe’s competitiveness and productivity. As part of the EU’s Digital Single Market (DSM) initiative, the European Commission has been working on common ICT standards that would ensure the interoperability of digital technologies, services, and devices. The Commission has laid ...›

New California IoT Law Requires Security for Connected Devices

When Governor Jerry Brown signed Assembly Bill 1906 and Senate Bill 327 into law on Friday, California took major strides toward regulating the Internet of Things, the network of internet-connected devices that includes everything from televisions and cars, to refrigerators, fitness trackers, and baby monitors.[1]  As of January 1, 2020, “reasonable security feature[s]” must be ...›

June 19, 2018FTC, Privacy

Don’t Forget to Hit “Delete”

FTC Blog Post Clarifies COPPA Information Deletion Requirement

Most companies are familiar with the Children’s Online Privacy Protection Act (COPPA) and its requirement to obtain parental consent before collecting personal information online from children under 13.  Yet COPPA also includes an information deletion requirement of which companies may be unaware.  On May 31, 2018, the Federal Trade Commission (FTC) published a blog post ...›

June 13, 2018Drug & Medical Device, Privacy

A New Era in FTC Data Security Oversight?

The U.S. Court of Appeals for the Eleventh Circuit has issued a ruling that may drastically change the nature of the relief that the Federal Trade Commission (“FTC”) seeks to impose on companies it alleges to have had inadequate data security measures in place. Specifically, on June 6, 2018, the Court issued a long-awaited decision ...›

May 21, 2018Consumer Products, Privacy

California May Pass Its Own GDPR

While companies are focusing on compliance with the EU’s General Data Protection Regulation requirements, Californians will be given the option to impose a sweeping, GDPR-like privacy regime that also deserves attention. On May 3, 2018, proponents of the California Consumer Privacy Act announced they had collected the signatures needed to qualify the act for the ...›

Digital Toy Product Company Ducks Data Breach Class Action

For the second time, an Illinois federal judge powered down a proposed class action against VTech Electronics following a 2015 data breach of its internet-connected digital learning toys. The data breach also triggered separate allegations by the Federal Trade Commission (FTC) that VTech violated federal children’s privacy laws. Both developments illustrate the increasing exposure that ...›

Time Is Money: Time Spent Resolving Issues Arising from Data Breaches Enough to Plead Standing and Damages

Another court has allowed individuals to move past the preliminary stages of litigation by finding that “lost time” and the “time value of money” are injuries. Building on its prior rulings allowing data breach cases to jump over standing hurdles, on April 11, 2018, in Dieffenbach v. Barnes & Noble, Inc., No. 17-2408 (7th Cir. 2018), ...›