Issues Remain to Be Resolved as Congress Considers Comprehensive Privacy Protections in 2020 As 2020 begins, Congress continues on a path toward providing consumers with greater protections for their data, lawmakers have exhibited a rare willingness to work toward consensus on the issue. January 28, 2020Melise Blakeslee EDPB Issues New Guidelines on Intersection of Online Services and Processing The European Data Protection Board (EDPB) has issued new guidelines about the intersection between online services and processing based on the necessity of performance of a contract. April 24, 2019Paula Bruening Dutch DPA Announces Framework for Determining GDPR Fines The Dutch Data Protection Authority has announced a new policy for determining the fines to be imposed for violations of the General Data Protection Regulation (GDPR) and its national implementing act. The policy reaffirms the importance given by the GDPR to the Principle of Accountability. April 8, 2019Paula Bruening GDPR, Data Ethics and Implications of Cambridge Analytica Achieved Compliance joined regulators, policymakers and privacy practitioners gathered in Washington on March 27-28 for the International Association of Privacy Professionals’ (IAPP) Annual Summit. April 16, 2018Paula Bruening Article 29 Working Party Opinion on Legitimate Interests “Legitimate business interest” is one of several legal bases to process data articulated by the EU’s General Data Protection Regulation (GDPR) – and probably the least understood. March 19, 2018Paula Bruening Article 29 Working Party Guidance on Consent Consumer consent to the collection and processing of their information has been a cornerstone of data protection practices. The General Data Protection Regulation lists it as one of several ways companies can establish a legal basis to process data. March 19, 2018Paula Bruening Article 29 Working Party Opinion on Accountability Companies that must meet requirements of the EU’s General Data Protection Regulation face new compliance challenges. The regulation’s provisions on accountability represent a new approach to data protection and management. March 19, 2018Paula Bruening The EU’s General Data Protection Regulation: How It Changes the Game for Privacy and Steps Companies Can Take Now to Prepare Achieved Compliance Solutions makes compliance with the imminent EU General Data Protection Regulation (GDPR) possible for companies regardless of size or revenue. December 11, 2017Melise Blakeslee State Attorneys General $5.5 Million Fine Signals the Critical Importance of Data Security On August 9, 2017, Nationwide Mutual Insurance Co. (“Nationwide”) settled with attorneys general from 32 states for $5.5 million, in a case involving a 2012 data breach that exposed the personal information of over 1.2 million individuals. September 27, 2017Paula Bruening