- Published Articles
- In the Press
- Press Releases
Sign Up for Alerts
Sign up to receive receive industry-specific emails from our legal team.
Sign Up for Alerts
We provide tailored, industry-specific legal updates to our clients and other friends of the firm.
Areas of Interest
July 15th, 2014
California Issues Guidance for Compliance with Recent Updates to CalOPPA
Last month, the California Attorney General's Office released guidelines for businesses (the "Guidelines") on how to comply with recent updates to the California Online Privacy Protection Act ("CalOPPA"). We previously reported on these updates, which include a requirement that operators of commercial websites or online services disclose in their privacy policies: (1) how they respond to "Do Not Track" signals, and (2) whether third parties may collect personally identifiable information ("PII") about consumers who use the site or online service.
The Guidelines, "Making Your Privacy Practice Public," recommend that companies create transparent privacy policies that are readable (meaning "no technical or legal jargon") and that include clear descriptions of the company's data collection, data sharing, and tracking practices. The Guidelines also recommend privacy policies clearly describe what choices consumers have regarding the collection, use, and dissemination of their PII.
In the Guidelines, the Attorney General's Office also recommends that company privacy policies clearly label the section of the policy that includes information about the way the company responds to "Do Not Track" signals on its online service. More specifically, the Guidelines suggest companies use a header such as "How We Respond to Do Not Track Signals," "Online Tracking," or "California Do Not Track Disclosures."
In addition to the above key recommendations and others, the Guidelines also recommend companies explain uses of PII beyond the uses necessary for fulfilling the basic functionality of the online service, provide links to the privacy policies of third parties with whom the website operator shares PII, and describe how long the company will retain PII.
We encourage operators of websites, apps, and other online services that collect, share or otherwise use PII from consumers, on a national level and/or from California residents, to review the Guidelines and update their privacy policies to comply with these suggestions.
For more information on this guidance or any other privacy issues, please contact Greg Boyd at (212) 826 5581 or firstname.lastname@example.org, Claudine Wilson at (212) 705 4842 or email@example.com, or any other member of the Frankfurt Kurnit Technology, Digital Media and Privacy Group
Other Technology Law Alerts
FTC Settles First-Ever Action Against Individual “Influencers”
September 18 2017
No Harm, No Foul: Court Dismisses Biometric Data Privacy Class Action Against NBA 2K Games
Biometric data — from, e.g., retina, face and fingerprint scans — plays a big role in the current wave of new technology services. For example, biometrics provide security features for financial and healthcare products. But companies using or thinking of using biometric data have to comply with myriad privacy and data security laws and regulations, or face potential enforcement action and litigation.
February 16 2017
ZeniMax v. Oculus: Lessons from a $500 Million VR Case Verdict
The Oculus Rift has been one of the most anticipated technology developments in modern video game history. Now — as a result of avoidable mistakes — it is also a teaching case for lawyers advising clients in the interactive entertainment space. Here's a rundown of the case and the traps the developers fell into.
February 9 2017