Organizations leveraging email marketing that includes tracking pixels should be paying attention to a new wave of class action lawsuits that may impact their marketing practices. The new class actions are similar to the Meta pixel cases we have seen filed...
RISK
New US Consumer Health Privacy Laws: Essential Do’s and Don’ts
PDF version accessible here.
Unlocking Consumer Health Privacy: The Latest State Regulations
PDF version accessible here.
Decoding Conversions API and Privacy Implications
Authored by: Gianna Jiang, Privacy Engineering ConsultantIn a world driven by technology, where ads seem to follow you around the internet, have you ever wondered how it all works? Buckle up, because we're about to uncover the new secret sauce of targeted advertising...
Managing downstream risks of ‘do not sell’ fulfillment
Authored by: Camille Ley, Senior Privacy Consultant and Lindsay Farbent, Privacy ConsultantIf you are like many businesses that have implemented solutions to honor consumer do not sell/share requests in accordance with U.S. state privacy laws, you have likely placed a...
Implementation Notes: CPRA Draft Regulations and the Impact on Third-Party Agreements
The latest draft of CPRA regulations (released on November 3, 2022) includes new requirements for agreements with service providers, contractors, and third parties that retain, use, or disclose Personal Information (“PI”). The draft regs specify that agreements must:...
HIPAA Breach Notifications 2020: Analysis, Observations and Recommendations
Health Information Security/Privacy professionals should be familiar with the HIPAA Breach Notification Rule, which requires HIPAA covered entities (CEs) and their business associates (BAs) to provide notification to U.S. Department …
Next time you do a Risk Assessment or Analysis, make sure you have Risk Intelligence on board
I was prompted to write this quick post this morning when I read this article. I think it is a good example of what some (actually many, in my experience) …
How can Infosec GRC Deliver Wins in Risk Management?
Information security (infosec) risk management can often seem overwhelming and hard. Organizations can spend considerable resources on infosec programs or solutions, yet they may have challenges in implementing commensurate and demonstrable …