Categories
TechLaw10

TechLaw10: Eric Sinrod & Jonathan Armstrong on Privacy/Data Protection Enforcement: GDPR vs. CCPA

In this edition of TechLaw10, Jonathan Armstrong, Director—L-EV8, talks to Professor/Attorney Eric Sinrod from his home in California. They discuss enforcing data protection and privacy laws in the US and the EU.

The questions they consider include:

  • Is CCPA in California being enforced?
  • What does CCPA require?
  • Does CCPA have extra-territorial reach?
  • What is causing the rise in CCPA litigation?
  • Which industries are seeing the most cases?
  • What is the average CCPA settlement?
  • Is GDPR in the EU & UK being enforced?
  • Which EU data protection regulators are the most active?
  • How are class actions fair in Europe?
  • How is data protection law changing the world of advertising?

Jonathan and Eric examine the latest statistics on enforcement activity and the future.

Discover L-EV8 as a new training business with Jonathan Armstrong

You can listen to earlier TechLaw10 audio podcasts with Eric and Jonathan at www.techlaw10.com.

You can find out more about Eric here at  Duane Morris LLP and more about Jonathan here at L-EV8 

Connect with the Compliance Podcast Network at:

LinkedIn: https://www.linkedin.com/company/compliance-podcast-network/

Facebook: https://www.facebook.com/compliancepodcastnetwork/

YouTube: https://www.youtube.com/@CompliancePodcastNetwork

Twitter: https://twitter.com/tfoxlaw

Instagram: https://www.instagram.com/voiceofcompliance/

Website: https://compliancepodcastnetwork.net/

Categories
Corruption, Crime and Compliance

Catching Up with California and State Data Privacy Laws

California’s data privacy regulations, primarily embodied in the California Consumer Privacy Act (CCPA) and its extension through the California Privacy Rights Act (CPRA), constitute a pioneering and influential framework. These regulations, effective from 2018 and further strengthened in 2020, set a standard for data protection not only within the state but also across the national and global economy. In this episode of Corruption, Crime and Compliance, Michael Volkov explores the nuances of the CCPA and CPRA, and the evolving data privacy landscape.

You’ll hear Michael talk about:

  • The lack of a federal data privacy law in the United States has led to a complex patchwork of state laws. Businesses are faced with the challenge of navigating these varied regulations, which contributes to compliance complexities.
  • California, through the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), is a leader in data privacy regulation in the United States, with implications for both the national and global economy. The CPRA, enacted in 2020, establishes the California Privacy Protection Agency (CPPA) to enforce the law robustly.
  • The CPRA introduces critical changes, including: 
  • Protection of employee and business-to-business personal information, which is now subject to the same privacy protections as consumer personal information. 
  • Enhanced consumer rights, such as the right to access, delete, and correct their personal information, and the right to opt out of the sale of their personal information.
  • Companies are now obligated to implement reasonable security precautions and undergo annual cybersecurity audits and risk assessments.
  • In addition to California, other states such as Virginia, Colorado, Utah, Iowa, and Connecticut have also enacted data privacy laws that echo the GDPR. Businesses must stay up-to-date on evolving compliance requirements and adapt their systems accordingly.
  • Compliance issues comprise risk assessments, impact assessments, adherence to data breach requirements, and compliance with notification standards. Companies are developing systems based on the most stringent set of laws to guarantee compliance.

 

KEY QUOTES

“We have a patchwork of laws that apply in the United States. Unfortunately, we continue to suffer from the absence of a federal data privacy and breach notification law. Congress has tried for years to broker a deal here, but it has never been able to overcome strong lobbying forces. Whether it’s high tech trial lawyers, law enforcement, or other gadflies, the public continues to suffer.” – Michael Volkov

 

“Many commentators have suggested that California’s data privacy laws and regulations are starting to look closer and closer to the EU’s GDPR regime.” – Michael Volkov

 

“To me, we’re getting into a more strict regulation. We already have, under the California Consumer Privacy Act, a requirement to have on your website: an ‘opt out’ in terms of any information that you may provide to a website, that it can’t be used by the entity for sharing or selling or whatever consumer products purposes. So keep tabs on the California events.” – Michael Volkov

 

Resources

Michael Volkov on LinkedIn | Twitter

The Volkov Law Group

Categories
10 For 10

10 For 10: Top Compliance Stories For the Week Ending August 5, 2023

Welcome to 10 For 10, the podcast which brings you the week’s Top 10 compliance stories in one podcast each week. Tom Fox, the Voice of Compliance brings to you, the compliance professional, the compliance stories you need to be aware of to end your busy week. Sit back, and in 10 minutes hear about the stories every compliance professional should be aware of from the prior week. Every Saturday, 10 For 10 highlights the most important news, insights, and analysis for the compliance professional, all curated by the Voice of Compliance, Tom Fox. Get your weekly filling of compliance stories with 10 for 10, a podcast produced by the Compliance Podcast Network.

  • Albemarle settles FCPA action. (WSJ)
  • The biggest attorney/client privilege case in years. (FT)
  • SEC tells some Wall Street brokers to get their AML controls in order. (WSJ)
  • CCPA to look at connected cars. (WaPo)
  • Audit firms fight expansion of anti-fraud role. (FT)
  • Former AG Lynch to review NU hazing allegations. (Reuters)
  • Altice co-founder denies corruption.(Reuters)
  • US consultancies struggle in China after raids. (FT)
  • Binance founder draws scrutiny from German regulator. (WSJ)
  • Lead FBI agent talks about Householder case. (Columbus Dispatch)

You can check out the Daily Compliance News for four curated compliance and ethics related stories each day, here.

Connect with Tom 

Instagram

Facebook

YouTube

Twitter

LinkedIn

Categories
Daily Compliance News

Daily Compliance News: August 2, 2023 – The Connected Cars and Data Privacy Edition

Welcome to the Daily Compliance News. Each day, Tom Fox, the Voice of Compliance brings to you compliance-related stories to start your day. Sit back, enjoy a cup of morning coffee, and listen in to the Daily Compliance News. All, from the Compliance Podcast Network. Each day we consider four stories from the business world, compliance, ethics, risk management, leadership, or general interest for the compliance professional.

  • CCPA to look at connected cars. (WaPo)
  • Audit firms fight expansion of anti-fraud role. (FT)
  • Former AG Lynch to review NU hazing allegations. (Reuters)
  • Singapore PM to discuss corruption scandals. (Bloomberg)
Categories
From the Editor's Desk

August and September 2022 in Compliance Week

Welcome to From the Editor’s Desk, a podcast where co-hosts Tom Fox and Kyle Brasseur, EIC at Compliance Week, unpack some of the top stories which have appeared in Compliance Week over the past month, look at top compliance stories upcoming for the next month, talk some sports and generally try to solve the world’s problems.

In this month’s episode, we look back at top stories in CW from August around the first CCPA enforcement action, the PCAOB deal with China on audits of Chinese companies listed on the NYSE, and potential bank fines for ephemeral messaging apps. We previewed some upcoming CW events, including the ESG virtual event, CW 2022 in Europe, which will be held in Scotland, and the virtual 3rd Party Risk conference, scheduled for December.

We conclude with a look at some of the top sports stories, including a look at the Deshaun Watson resolution and debate whether it could have been handled any worse by the NFL and Browns; Tom Brady leaves the Bucs for 10 days during the preseason; and what does this mean for the regular season? Ichiro and what is greatness?

Categories
Compliance Kitchen

CCPA – GDPR Comparison, ETIAS Registration for EU Travel


Stop by for a quick visit on CCPA and GDPR and how to register for your future EU travel, when we can hopefully travel again.

Categories
Life with GDPR

Steven O’Donnell and the CCPA

We take a short interlude from our three-part series with Jonathan Armstrong to visit with Steven O’Donnell, the Head of Product Marketing – Legal Operations at Mitratech. We consider the California Consumer Privacy Act (CCPA) and how companies can more toward complying with the most robust data privacy law in the US. Some of the highlights in this episode include:

  1. What is the CCPA?
  2. How and why does it apply to companies domiciled outside the state of California?
  3. Is it true that if you’re not already making moves, you’re already behind the curve? What can a company so situated do at this point?
  4. What is the role of compliance in responding to the CCPA?
  5. How can CCPA compliance be a business differentiator?
  6. What processes should a company put in place to comply with the CCPA?

For more information on check out the article “How can improved process drive CCPA compliance” on the CCI website by clicking here.