Press "Enter" to skip to content

Posts published in “Data Privacy and Security”

Consumer Data Rulemaking Underway at CFPB: Here Are Four Things Your Company Should Know Plus a Webinar

The Consumer Financial Protection Bureau released its Advance Notice of Proposed Rulemaking (ANPR) on Oct. 22, seeking comment on 46 questions in nine categories surrounding consumer access to financial information under section 1033 of the 2010 Dodd-Frank Act (12 U.S.C. § 5533).

California Enacts HIPAA-Conforming Amendments to CCPA; Extends B2B and Employment Exemptions  

Assembly Bill 713 was approved by California Gov. Gavin Newsom on Sept. 25, 2020, at which time its provisions went into effect.  The legislation amends the California Consumer Privacy Act (CCPA) in part by addressing certain issues related to de-identified patient information.

11th Cir. Holds Obtaining Consumer Report for Verification and Eligibility Is a Permissible Purpose

In a case of first impression for the U.S. Court of Appeals for the Eleventh Circuit, the Court joined the Sixth Circuit in holding that obtaining a consumer report to verify a consumer’s identity and eligibility for a service is a “legitimate business need” and therefore a “permissible purpose” under the Fair Credit Reporting Act (FCRA).

Calif. App. Court (4th Dist) Rejects Jurisdictional Challenge in Website Accessibility Case

In an action challenging the accessibility of a website to blind and visually impaired people, the Court of Appeals of the State of California, Fourth Appellate District, recently held that a California court may exercise specific jurisdiction over a Georgia LLC where the LLC purposefully availed itself of the privilege of conducting business in California by sending catalogs and selling over $300,000 worth of goods to California residents.

7th Cir. Holds Putative Class Plaintiff Had Standing On ‘Private’ Rights Claim, But Not ‘Public’ Rights Claim

The U.S. Court of Appeals for the Seventh Circuit recently reversed a trial court’s order remanding a plaintiff’s claims under the Illinois Biometric Information Privacy Act (BIPA) back to state court for lack of subject-matter jurisdiction because she lacked standing under Article III.

9th Cir. Rejects Spokeo ‘Standing’ Objection to Nationwide Privacy Class Settlement

The U.S. Court of Appeals for the Ninth Circuit recently held that the trial court had Article III jurisdiction and did not abuse its discretion in approving a settlement between a social media company and a nationwide class of its users who alleged that the social media company routinely scanned and collected their private information without their consent.