Follow

Data Privacy Dish Blog

Articles: 1-10 of 100

So, what exactly is a ‘data broker’?

USA - March 5 2021 A data broker is defined under California law as a business that “knowingly collects and sells to third parties the personal information of a…

All this talk about adtech, and I’m confused: Can’t behavioral advertising companies be service providers under the CCPA?

USA - March 3 2021 In order to be considered a service provider under the CCPA, a legal entity must process personal information “on behalf of a business” and be…

Does inadvertent disclosure of personal data require notification under the GDPR?

European Union, USA - March 2 2021 Maybe not. The European Data Protection Board (EDPB) issued draft practical guidance on various types of data breaches to assist companies with…

Unpacking the Virginia Consumer Data Protection Act: How exactly does it stack up against the GDPR?

European Union, USA - March 1 2021 Virginia is poised to be the second state, after California, to pass comprehensive data privacy legislation. The Virginia Consumer Data Protection…

The Million Dollar Question: Is the use of Adtech considered the sale of personal information?

USA - February 26 2021 The California Attorney General was asked to clarify whether the use of “website cookies shared with third parties” constituted the sale of personal…

What exactly does the Virginia Consumer Data Protection Act mean for businesses? Will the Virginia law be more or less onerous than the CCPA?

USA - February 25 2021 Virginia is poised to be the second state, after California, to pass comprehensive data privacy legislation. The Virginia Consumer Data Protection…

No more choices please!! When it comes to cookies, do consumers simply want less choices?

USA - February 24 2021 While there is relatively little publicly available empirical data concerning website visitors’ interactions with cookie banners, the data that does…

A popularity contest in the world of cookies: What is really more popular, notice-only, deemed-consent, opt-in, or opt-out cookie banners?

USA - February 19 2021 Generally, most cookie banners fall within four broad categories: Notice-Only Cookie Banners. A notice-only cookie banner discloses to website…

Do credential stuffing attacks need to be reported under the GDPR?

European Union - February 19 2021 The European Data Protection Board (EDPB) issued draft practical guidance on various types of data breaches to assist companies with identifying…

What exactly am I supposed to do to protect information? Does the CCPA provide a specific security standard?

USA - February 18 2021 No. The regulations implementing the CCPA only require that a business utilize reasonable security in the context of personal information collected…