Sign Up for Alerts
Sign up to receive receive industry-specific emails from our legal team.
Sign Up for Alerts
We provide tailored, industry-specific legal updates to our clients and other friends of the firm.
Areas of Interest
September 29th, 2022
Brands Review Data Privacy Policies After $1.2 Million Sephora Settlement
Privacy & Data Security Chair Daniel M. Goldberg is quoted in the article, “Brands Review Data Privacy Policies After $1.2 Million Sephora Settlement” published by The Wall Street Journal. The article discusses the how companies are paying more attention to California’s data privacy laws after Sephora was penalized for alleged violations related to its targeted advertising. Daniel is quoted saying, “The biggest losers could be marketers at small-to-midsize businesses who did not realize that the regulations would apply to them. Many companies didn’t realize that the sharing of data could violate CCPA, even when they used tools like Google’s Marketing Platform that let users opt out of some targeted advertising. A separate point of contention for marketers was the fact that the CCPA’s definition of ‘sale’ included sharing consumer information with outside parties regardless of whether money is exchanged. Many companies delayed compliance because they disagree with that definition and don’t want to tell consumers that they sell data.”
The Sephora case also started new conversations about marketers’ use of behavioral data, as well as the Global Privacy Control tool. Daniel said, “California’s decision to require businesses to recognize GPC more than one year ago further complicated the compliance process, because CCPA didn’t initially contain any language related to the tool.”
Read the full article here. (Behind paywall)
Other Quoted
Fifty-Three Regulators Raise Cyber Expectations with Multi-State Breach Settlement
Cybersecurity Law Report quotes Rick Borden in an article reporting multiple financial regulatory agencies fined Bayview Asset Management and its affiliates $20 million for deficient cybersecurity practices. The regulators chastised the mortgage company for failing to cooperate in investigations following a data breach involving 5.8 million customers. Mr. Borden noted, “regulatory bodies are coming to a consensus that increasing the requirements around cyber are reasonable for these regulated entities.” The article discusses multi-state enforcement trends, offering practical pointers. View article (available through trial or paid subscription).
January 22 2025
Pay Attention to the Delete Act (Even If You Don’t Think You’re A Data Broker)
AdExchanger quotes Daniel M. Goldberg in an article on California’s Delete Act, noting data brokers are required to register by January 31. He explains the definition of data broker extends to any company that collects and sells personal data about consumers, which includes companies using third-party data for targeted advertising. Mr Goldberg also anticipates more enforcement in 2025. View Article
January 21 2025
Understanding Interactive Entertainment
Games Industry Law Summit quotes S. Gregory Boyd and Sean F. Kane on two decades shaping video game law. The discussion covers key insights on industry evolution and emerging legal challenges. View Article
December 30 2024
