The European Union’s General Data Protection Regulation (GDPR) sets a high standard for consent. Consent means offering people genuine choice and control over how their data is used. The GDPR definition of consent is “any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement … Read more
The FTC has announced that Uber Technologies, Inc. has agreed to expand the proposed settlement it reached with the agency last year over charges that the ride-sharing company deceived consumers about its privacy and data security practices. After the announcement of last year’s proposed settlement, the FTC learned that Uber had failed to disclose a significant breach … Read more
On January 8, 2017 the FTC announced its first children’s privacy settlement involving Internet-connected toys. According to the Commission, electronic toy manufacturer VTech Electronics Limited and its U.S. subsidiary have agreed to settle charges that the company violated the Children’s Online Privacy Protection Act (COPPA) by collecting personal information from children without providing direct notice … Read more
The EU General Data Protection Regulation becomes effective in May 2018. It applies to those that (i) offer products/services to EU residents; (ii) monitor the behavior of EU residents; or (iii) handle the personal data of an EU residents. The cornerstone of GDPR is that personal data must be processed lawfully, fairly and in a transparent … Read more