PRIVACY Archives

Managing downstream risks of ‘do not sell’ fulfillment

Jun 29, 2023 | GENERAL, PRIVACY, REGULATORY COMPLIANCE

Authored by: Camille Ley, Senior Privacy Consultant and Lindsay Farbent, Privacy ConsultantIf you are like many businesses that have implemented solutions to honor consumer do not sell/share requests in accordance with U.S. state privacy laws, you have likely placed a...

Key Steps for Meeting U.S. State PIA Obligations

May 24, 2023 | PRIVACY

Under expanding U.S. state privacy laws, businesses must be prepared to assess the protection of certain personal information and individuals’ privacy rights prior to initiating planned data processing activities. While similar impact assessments may be familiar if...

Implementation Notes: CPRA Draft Regulations and the Impact on Third-Party Agreements

Nov 11, 2022 | CCPA, PRIVACY

The latest draft of CPRA regulations (released on November 3, 2022) includes new requirements for agreements with service providers, contractors, and third parties that retain, use, or disclose Personal Information (“PI”). The draft regs specify that agreements must:...

EU Personal Data Transfers 2021: Planning for a Year of Increased Scrutiny

Jan 28, 2021 | GDPR, PRIVACY

By Dan Goldstein, Co-Founder, Tueoris, LLC and Daniela Fábián Masoch, Founder FABIAN PRIVACY LEGAL dan.goldstein@tueoris.com / www.tueoris.com daniela.fabian@privacylegal.ch / www.privacylegal.ch As 2021 begins, ex-EU transfers of personal data continue to …

GDPR Code of Conduct : Current State and Considerations for Next Steps

Jan 26, 2021 | GDPR, PRIVACY

Since the EU General Data Protection Regulations (“GDPR”) came into effect in 2018, there has been much discussion, but little action, with regard to Article 40 Codes of Conduct (”Codes”) …

Privacy Shield: Weighing the Risks and Benefits of Withdrawal Versus Recertification

Nov 19, 2020 | GDPR, PRIVACY

Co-written by Monica Meiterman-Rodriguez, Privacy Consultant, and Dan Goldstein, Co-founder and Partner of Tueoris. In the wake of the Schrems II decision, invalidating the EU-US Privacy Shield as a mechanism …

Next time you do a Risk Assessment or Analysis, make sure you have Risk Intelligence on board

Nov 19, 2020 | INFORMATION RISK, PRIVACY, REGULATORY COMPLIANCE, RISK ASSESSMENT, SECURITY

I was prompted to write this quick post this morning when I read this article. I think it is a good example of what some (actually many, in my experience) …

SCCs under Scrutiny: Transfer Strategies for US Companies Contracting with EU Service Providers

Aug 17, 2020 | GDPR, PRIVACY, REGULATORY COMPLIANCE

For many US-based multinational organizations, EU-approved Standard Contractual Clauses (“SCCs”) have long represented a relatively straightforward solution for the compliant transfer of personal data of EU residents to the organizations’ …

How to Prepare for SCC Scrutiny in a Post Schrems II World

Jul 20, 2020 | PRIVACY

Written by Dan Goldstein, Partner and Co-Founder of Tueoris, LLC In the aftermath of the EU Court of Justice’s Schrems II decision, multinational organizations in the US and around the …

PRIVACY

Managing downstream risks of ‘do not sell’ fulfillment

Key Steps for Meeting U.S. State PIA Obligations

Implementation Notes: CPRA Draft Regulations and the Impact on Third-Party Agreements

Next time you do a Risk Assessment or Analysis, make sure you have Risk Intelligence on board

Reach out to us

Office

Call Us