Recent Posts

In our recent blog post on the Article 29 Working Party’s draft guidance on the GDPR’s breach notification requirements, we explored some of the questions answered – as well as left unanswered – by the WP29. In this post, we take a look at perhaps the most daunting element of the GDPR’s breach notification regime:...

Read More →

Breaking Down Biometric Data

Nov 16, 2017 by Jon Frankel and Jill Guidera Brown

As businesses use biometrics – such as fingerprint, iris, and face scans – in financial transactions, for security and authentication, and in connection with social media, they have been compelled to learn about biometric privacy laws, especially the Illinois Biometric Information Privacy Act (“BIPA”). Indeed, BIPA has become the new darling of creative class action lawyers,...

Read More →

GDPR & Data Breach: Takeaways from the WP29 Guidance

Nov 13, 2017 by Catherine Essig and Jason Wool

Most companies handling personal data of EU residents know that the General Data Protection Regulation (“GDPR”) will impose mandatory data breach notification requirements, but the Regulation leaves several fundamental questions unanswered. The Article 29 Working Party (WP29) has issued draft guidelines on data breach reporting under the GDPR that help answer some of these questions....

Read More →

We’re getting bombarded with emails touting firms that are listed as a Best Law Firm by US News & World Report. We’re not sending one, because, who really needs more emails? But, in case you were wondering, we’re listed too. It’s just that when we kick a field goal, we don’t believe in doing a...

Read More →

Responding to Foreign Requests for Data Through the MLAT Process

Oct 25, 2017 by Carrie Cordero and Aaron Altschuler

What happens when a foreign law enforcement agency seeks information from a U.S.-based communications service provider in order to obtain evidence in an investigation? U.S.-based companies often must consider whether and how to respond to requests from foreign law enforcement agencies. This includes communications providers as well as companies that provide a range of services...

Read More →

The author Rita Mae Brown once observed, “If it weren’t for the last minute, nothing would get done.” If you operate a website that includes user-generated content and you haven’t registered a DMCA agent with the Copyright Office’s new electronic system, that last minute is quickly approaching. You can find more information about how to...

Read More →