Rocket Matter

SEPTEMBER 3, 2024

Although the healthcare industry has the most issues with security threats, according to a 2023 report from IBM , 27% of law firms have been affected. If you don’t want to become a statistic, take a hard look at your security protocols and compliance. Do you know where all of your client data is and how it is used?

Compliance 52

Compliance Law firm Law Law 52

CloudNine

JANUARY 10, 2024

By Rick Clark and Jacob Hesse 2023 was an eventful year in the world of legal technology, with new technology emerging to address both traditional and new challenges legal teams face when collecting, processing, and reviewing data for litigation, investigations, or public access requests.

Compliance 104

Compliance Machine learning Litigator Litigation 104

Technology Law Dispatch

JULY 28, 2023

The Information Commissioner’s Office (ICO) has published a report on reprimands issued in the second quarter of the year, from April to June 2023. Review and update data protection policies, procedures, and guidance, emphasizing the detection and reporting of personal data breaches.

Data protection 52

Data protection Compliance Law Law 52

Inside Privacy

MAY 30, 2023

On April 4, 2023, the European Commission announced that the EU and Japan had successfully completed the first periodic review of the Japan-EU mutual adequacy arrangement , adopted in 2019. The amendments include, among other things, strengthened data security obligations (e.g., Powers of the PPC. Contact points for EU individuals.

Data protection 61

Data protection Mediator Compliance 61

Debevoise Data Blog

FEBRUARY 6, 2023

On February 1, 2023, the Colorado Attorney General (“COAG”) held a public hearing as part of its rulemaking process for the Colorado Privacy Act (“ColoPA”). Here in Part 2 of our 2023 U.S. Companies subject to ColoPA should review their practices to ensure compliance before ColoPA’s July 1, 2023 effective date.

Hearing 52

Hearing Data protection Law Law 52

Inside Privacy

OCTOBER 17, 2023

On 3 October 2023, the UK Information Commissioner’s Office (“ ICO ”) finalized its Employment practices and data protection − Monitoring workers guidance (“ Guidance ”) to account for new types of work, including work from home, and the use of more sophisticated technologies for monitoring.

Data protection 65

Data protection Time-tracking Case management Compliance 65

Richmond Journal of Law and Technology

MAY 2, 2023

8] Among the mentioned countries, Egypt, Nigeria, South Africa, Ghana, and Morocco seem to be suitable markets for entry, as they have established specific laws or regulations to protect consumers, especially in online transactions. [9] companies to take proactive measures to protect their data and adhere to foreign laws.

Data protection 52

Data protection Compliance Due diligence Law 52

Debevoise Data Blog

DECEMBER 16, 2021

The Virginia Consumer Data Protection Act (“VCDPA”) and amendments to the California Consumer Privacy Act (“CCPA”)—enshrined in the California Privacy Rights Act (“CPRA”)—take effect on January 1, 2023. In addition, the Colorado Privacy Act (“ColoPA”) takes effect on July 1, 2023.

Data protection 40

Data protection Compliance Law Law 40

Legal IT Group

FEBRUARY 23, 2023

Introduction In our previous articles , we have already drawn your attention to the Brazilian data protection legislation which is quite similar to the General Data Protection Regulation (GDPR). Also, the ANPD has shared a new form which should be used for sending security incident reports by a data controller.

Data protection 52

Data protection Compliance e-filing Law 52

Ikigai Law

FEBRUARY 9, 2023

Budget for tech – the Amrit Kaal version In tandem with the previous year’s budget, the 2023-24 version too has a deep focus on technology. From data to fintech to startups to foreign investment to emerging tech – this budget has something for everyone. The need for a graded approach for compliances was also discussed.

Due diligence 52

Due diligence Data protection Hearing Compliance 52

Debevoise Data Blog

MARCH 8, 2023

On 23 February 2023, the UK ICO hosted its latest privacy forum in a series aimed at helping product designers and managers incorporate “privacy by design” or “data protection by design and by default” principles into their work. A framework of “design, test, repeat, reiterate” can help ensure compliance from the start.

Data protection 52

Data protection Compliance Lawyer Law 52

new tech law blog

MARCH 10, 2023

“Dark patterns” used by online platform providers have been controversial for some time, but recently there has been a growing buzz about them, in particular due to actions undertaken by EU and national data protection and consumer protection authorities. What are “dark patterns”?

Data protection 52

Data protection Compliance Law Law 52

Legal IT Group

NOVEMBER 10, 2023

First of all, the data can be transferred based on the adequacy decision or subject to appropriate safeguards. Among these safeguards, in particular, are binding corporate rules, standard data protection clauses, code of conduct, and certification mechanism. What about the US? In such cases, appropriate safeguards are used.

Data protection 52

Data protection Compliance Law Law 52

Legal IT Group

JANUARY 22, 2024

With this regard, it is essential to know about the privacy legislation of this country since, nowadays, most internet businesses process the personal data of their clients, and they should do it in compliance with data protection laws. What to expect in 2024? The “personal information” definition is amended.

Data protection 52

Data protection Compliance Litigator Litigation 52

Inside Privacy

APRIL 5, 2023

On March 24, 2023, the Austrian Supervisory Authority (“Austrian SA”) held that a credit referencing agency (“Agency”) breached the GDPR by unlawfully processing personal data obtained from a third party in order to process it to conduct credit assessments.

Data protection 57

Data protection Compliance Court Law 57

Debevoise Data Blog

NOVEMBER 29, 2023

Member States will be required to designate AI oversight authorities to ensure compliance with the new regulations. While some countries have indicated that they intend to allocate responsibility to their existing data protection authorities, others (such as Spain ) will create specific AI-focused agencies.

Compliance 52

Compliance Data protection e-records Law 52

Inside Privacy

MAY 23, 2023

On 11 May 2023, members of the European Parliament’s internal market (IMCO) and civil liberties (LIBE) committees agreed their final text on the EU’s proposed AI Act. European lawmakers hope to adopt the final AI Act before the end of 2023, ahead of the European Parliament elections in 2024.

Data protection 57

Data protection Compliance Law Law 57

Inside Privacy

FEBRUARY 24, 2023

On February 24, 2023, the Cyberspace Administration of China (“ CAC ”) released the final version of the Measures on the Standard Contract for the Cross-border Transfer of Personal Information (“ Measures ”) (only available in Chinese here ), including a template contract (“ Standard Contract ”) accompanying the Measures.

Compliance 52

Compliance Data protection Time-tracking Law 52

Legal IT Group

MAY 3, 2023

In 2023 the real technological “boom” happened — products based on artificial intelligence flooded the market. Regardless of the proven practical benefits of AI in different fields, its use has some risks for users’ privacy and data protection. 25 GDPR (data protection by design and by default). Violation of Art.

Data protection 52

Data protection Compliance Law Law 52

Eric Goldman

OCTOBER 16, 2023

Substantial State Interest As usual, the court credits the state’s interest in protecting children’s privacy and physical/psychological well-being. The AADC requires businesses to write data protection impact assessments of new offerings and provide those reports to the government. Bonta , 2023 U.S. LEXIS 165500 (N.D.

Court 110

Court Failure-to-appear Data protection Judge 110

Ikigai Law

AUGUST 7, 2023

Reporting entities must follow several compliance and reporting obligations under the anti-money laundering law. Main Course : Deep dive stories on card network portability, and impact of the data protection bill on fintechs. The data law is nearly here! The data law doesn’t tell processors what to do.

Data protection 52

Data protection Law Law e-records 52

Debevoise Data Blog

MARCH 4, 2021

state with a comprehensive privacy law, with Governor Ralph Northam’s signing of the Virginia Consumer Data Protection Act (“VCDPA”) on March 2, 2021. law in the direction of its overseas cousin, the European Union’s General Data Protection Regulation (“GDPR”). The VCDPA will take effect on January 1, 2023.

Data protection 52

Data protection Law Law Compliance 52

Rocket Matter

DECEMBER 17, 2024

million active attorneys in the United States as of 2023. Prioritize Compliance and Security Innovation should never come at the expense of compliance and security. Our platform is specifically designed to support legal practices and is equipped with the latest security features that prioritize data protection and compliance.

Law firm 52

Law firm Law Law Legal CRM 52

Debevoise Data Blog

APRIL 29, 2022

The UCPA, effective on December 31, 2023, is largely consistent with other comprehensive state privacy laws, but includes several key differences. While the UCPA appears to be business-friendlier than its predecessors, companies will need to consider the Utah law as they work to comply with state privacy laws coming into effect in 2023.

Law 52

Law Law Data protection Attorney 52

Debevoise Data Blog

SEPTEMBER 14, 2022

A large number of the examples focused on compliance with the CCPA’s requirements for “sales” of personal information, including the obligation that businesses honor consumers’ use of a Global Privacy Control (“GPC”) opt-out signals.

Analytics 52

Analytics Compliance Failure-to-appear Attorney 52

Inside Privacy

FEBRUARY 1, 2024

Note that the data localization prohibition in this Regulation applies to individual EU Member States’ laws; it does not preclude the EU from implementing data localization requirements. This regulation is directly applicable in all EU Member States since May 28, 2019.

Intellectual Property 72

Intellectual Property State law Court Compliance 72

Debevoise Data Blog

MAY 23, 2022

Most of its provisions are operative on July 1, 2023, while some provisions take effect later. Here, we highlight key aspects of the CTPA with a focus on the provisions that companies should consider in their compliance preparations. Consumers may appoint an authorized agent to exercise their right to opt-out of data processing.

Law 40

Law Law Compliance Attorney 40

MatterSuite

OCTOBER 27, 2023

billion by 2023, growing at a compound annual growth rate (CAGR) of around 10% from 2018. Data Security and Privacy Compliance Data Encryption: Legal tech solutions employ robust data encryption methods to safeguard sensitive client data, communications, and documents from unauthorized access.

Legal tech 52

Legal tech Legal tech e-discovery Machine learning 52

Debevoise Data Blog

JANUARY 9, 2023

For example, the Data Protection Authority in Hungary recently fined a bank close to €700,000 for using AI voice analytics in its call centers. The investigation cited a lack of consent or other legal basis for using AI voice analytics, inadequate security safeguards, and a failure to notify affected data subjects of their rights.

Analytics 52

Analytics Compliance Litigator Litigation 52

Debevoise Data Blog

MAY 31, 2023

A single incident—even a relatively minor one—may require notification to dozens of data protection, cyber, law enforcement, and sectoral regulators around the world, in addition to insurers, customers, and counterparties. To make matters worse, businesses cannot simply hire their way out of this morass.

e-filing 52

e-filing Data protection Compliance Law 52

Legal IT Group

FEBRUARY 21, 2023

Therefore, the Transparency and Consent Framework Canada was created to help all parties in the digital advertising chain comply with Canadian data protection legislation when processing online users’ personal data.

Data protection 52

Data protection Compliance Law Law 52

Inside Privacy

JANUARY 22, 2024

In December 2023, the Dutch SA fined a credit card company €150,000 for failure to perform a proper data protection impact assessment (“DPIA”) in accordance with Art. 35 GDPR for its “identification and verification process”. The DPO was also not sufficiently involved in the assessment.

Data protection 81

Data protection Compliance 81

Inside Privacy

MARCH 14, 2023

Following a report, the French supervisory authority (“CNIL”) audited two organizations carrying out medical research in early 2022 to check their compliance with these requirements. Despite being found in breach of the French data protection rules, none of the audited organizations were fined.

Data protection 65

Data protection Compliance 65

Debevoise Data Blog

OCTOBER 18, 2021

At the state level, California has banned law enforcement from installing, activating, or using biometric surveillance with body cameras until 2023. c) Texas Texas’s biometric privacy law also imposes similar requirements to BIPA, but allows more avenues for compliance.

Law 52

Law Law Court Time-tracking 52

Ikigai Law

AUGUST 3, 2023

Our summary of the Digital Personal Data Protection Bill, 2023 The Digital Personal Data Protection Bill, 2023 ( 2023 Bill ) was tabled in Parliament on 3 August 2023. It is the fifth – and likely final – iteration of India’s efforts to formulate a personal data protection law.

Data protection 52

Data protection Compliance e-filing Hearing 52

Debevoise Data Blog

APRIL 28, 2023

UK ICO updates guidance to clarify requirements for fairness in AI What happened : The UK ICO has updated its existing Guidance on AI and data protection following requests from industry to clarify requirements for fairness in AI. Norwegian Data Protection Authority fines medical device company c.$240,000

Data protection 52

Data protection Compliance e-filing Software 52

Debevoise Data Blog

FEBRUARY 20, 2023

When calculating the fine, the CNIL cited the large scale of the data processing and the high proportion of minors (38% were between 13 and 17) as aggravating factors. The fines follow non-compliance notices CNIL served to 60 organisations that did not allow users to refuse cookies as easily as to accept them.

Data protection 52

Data protection Compliance e-records Court 52