Nothing But NetChoice: Federal Court Blocks Enforcement of California Age-Appropriate Design Code
A federal court in the Northern District of California recently granted a preliminary injunction in NetChoice v. Bonta that enjoins enforcement of…
Sean is a member of the firm’s Privacy & Data Security practice group. He counsels clients on legal requirements regarding privacy, data security, and data protection applicable to their businesses. He has experience with a variety of federal, state, and foreign privacy and data security laws and regulations, including biometric privacy laws such as the Illinois Biometric Information Privacy Act (BIPA), the California Consumer Privacy Act of 2018 (CCPA) and California Privacy Rights Act (CPRA), CAN-SPAM, the Colorado Privacy Act (CPA), the EU ePrivacy Directive and General Data Protection Regulation (GDPR), the Fair Credit Reporting Act (FCRA), the Federal Educational Rights and Privacy Act (FERPA), the Gramm-Leach-Bliley Act (GLBA), HIPAA, state data breach notification laws, the Stored Communications Act, the Video Privacy Protection Act (VPPA), the Virginia Consumer Data Protection Act (CDPA), and the Wiretap Act. Sean has significant experience guiding clients through responses to security incidents and data breaches, including responses to regulatory investigations into data breaches, drafting privacy policies and notices, creating and advising on the administration of privacy and security compliance programs, drafting and negotiating privacy and security contracts, and advising on privacy and data security issues in M&A transactions. Sean holds a CIPP/US certification from the International Association of Privacy Professionals (IAPP).
View Full BioA federal court in the Northern District of California recently granted a preliminary injunction in NetChoice v. Bonta that enjoins enforcement of…
Earlier this month the EU Commission adopted an adequacy decision for the EU-U.S. Data Privacy Framework (”DPF”), which replaces the Privacy Shield…
The comprehensive state privacy law trend (and the related trend of enhanced job security for privacy professionals) shows no sign of slowing. Last month the…
An Iowa comprehensive privacy law bill titled An Act Relating to Consumer Data Protection, Providing Civil Penalties, and Including Effective Date Provisions…
The Federal Trade Commission earlier this month undertook an enforcement action against online pharmacy and telehealth provider GoodRx, in the latest example of the agency…
While new comprehensive state privacy laws took most of the headlines this year, security threats and incident response remain key risk factors for privacy…
The California Age-Appropriate Design Code Act (the “Act”) recently became law and includes a number of online privacy-related requirements related to individuals under…
Earlier this month the Court of Justice of the European Union (“CJEU”) issued a decision adopting a surprisingly broad interpretation of the “special categories…
Connecticut recently became the fifth state with a comprehensive consumer privacy law when Governor Ned Lamont signed An Act Concerning Personal Data…
The Utah Consumer Privacy Act (UCPA) is on the verge of becoming law after recently passing both chambers of the Utah legislature…
Last week’s news that the Federal Trade Commission is taking steps to begin rulemaking on consumer privacy and artificial intelligence drew plenty of attention from…
Before the CCPA became enforceable on July 1, 2020, much ink was spilled (or many keys were hit) about the California Office of the Attorney…
Organizations in the United States often ask us how to comply with GDPR. But starting with that question skips a key inquiry: the extent to…
The Virginia Consumer Data Protection Act (CDPA) became law earlier this week when the state’s governor signed a bill recently adopted by the state’s…
In case privacy lawyers did not have enough to keep up with over the holiday season (as we’ve mentioned, there’s already plenty to keep up…
Last week, the California Office of the Attorney General (“OAG”) released another set of proposed modifications to its CCPA regulations, which makes five versions of…
Last week the Court of Justice of the European Union (“CJEU”) issued a decision in Case C-311/18 Data Protection Commissioner v Facebook Ireland Limited…
To help combat the ongoing COVID-19 pandemic, the Department of Health and Human Services (DHHS) and its Office for Civil Rights (OCR) has recently issued…
Businesses’ use of geolocation technology is under significant public scrutiny, as demonstrated by a recent New York Times series spotlighting the practice and the…
Weeks after the FTC fined Facebook $5 billion and the company entered a $100 million settlement with the SEC, Facebook has once again made significant…