Caveat Vendor

    Certain Financial Institutions Can Save Money by Posting Privacy Notices Online, Says the CFPB

    by Mary-Elizabeth M. Hadley on Oct 22, 2014
    Posted in
    • Regulation and Enforcement
    • Privacy and Security
    Earlier this week, the Consumer Financial Protection Bureau (CFPB or Bureau) issued a final rule permitting financial institutions to post privacy notices online – instead of distributing an annual copy by mail – but only if they comply with several important conditions.
    Full story

     


    TCPA Update: Second Circuit Agrees with FCC and Limits Scope of Son-In-Law’s Consent

    by Matt Gibson on Oct 20, 2014
    Posted in
    • Regulation and Enforcement
    • Privacy and Security
    Last week, the Second Circuit agreed with the FCC’s analysis in Nigro v. Mercantile Adjustment Bureau
    Full story

     


    FCC Seeks Public Input: Who Qualifies as a “Called Party” Under TCPA?

    by Matt Gibson on Oct 20, 2014
    Posted in
    • Regulation and Enforcement
    • Privacy and Security
    Last week, the Federal Communications Commission (FCC) released a Public Notice announcing that it was seeking comment on a Petition for Declaratory Ruling that the Consumer Bankers Association (CBA) filed in September.
    Full story

     


    TCPA Update: Eleventh Circuit Rejects District Court’s Attempt to Review the FCC’s Consent Policy for Debt Collection Calls

    by Matt Gibson on Oct 08, 2014
    Posted in
    • Privacy and Security
    • Regulation and Enforcement
    Sometimes weather looks threatening, but the rain never falls. Such is the case with our recent post discussing a cluster of cases addressing whether federal district courts have the authority to consider the validity of the FCC’s debt collection consent policy under its Telephone Customer Protection Act rules.
    Full story

     


    Do Proposed #FDA Pharma Twitter Rules Violate the #FirstAmendment?

    by Devon Winkles on Sep 29, 2014
    Posted in
    • False Advertising
    • Regulation and Enforcement
    How many warnings can one 140-character tweet contain? Well, under the U.S. Food and Drug Administration’s proposed guidance for pharmaceutical promotion on Twitter and other character-limited platforms such as Google Sitelinks, we soon may find out.
    Full story

     


    Complex and Competing Data Privacy Considerations in Apple’s Move to Store Data in China

    by Ananda Martin on Sep 25, 2014
    Posted in
    • Regulation and Enforcement
    • Privacy and Security
    Apple’s announcement in mid-August that, for the first time, it would store user data in mainland China, highlights the growing complexity of preserving data privacy across multiple jurisdictions.
    Full story

     


    A Growing TCPA Storm: Courts Grapple with Jurisdictional Issues in TCPA Litigation

    by Matt Gibson on Sep 24, 2014
    Posted in
    • Regulation and Enforcement
    • Privacy and Security
    There’s a storm brewing, and it centers on a federal district court’s ability to question the validity of the FCC’s rules implementing the Telephone Consumer Protection Act (TCPA) in the context of class actions.
    Full story

     


    FTC Workshop on Big Data: Lots of Questions & a Few Answers

    by Mary-Elizabeth M. Hadley on Sep 18, 2014
    Posted in
    • Regulation and Enforcement
    • Privacy and Security
    This past Monday, September 15th, the Federal Trade Commission (“FTC” or “Commission”) hosted a public workshop entitled “Big Data: A Tool for Inclusion or Exclusion?” at which business and industry representatives, consumer advocates and academics gathered to explore the use of “big data” and its impact on American consumers.
    Full story

     


    Italian Data Privacy Law: The Recent Decision on Google

    by Francesca Petronio and Marilena Hyeraci on Sep 16, 2014
    Posted in
    • Regulation and Enforcement
    • Privacy and Security
    In its decision on the 10th of July 2014 the Italian Data Privacy Authority ruled that Google’s data privacy policy was not fully compliant with the requirements and conditions set forth by Italian data privacy laws and asked the company to implement further specific tools for processing the personal information collected and stored through its different services.
    Full story

     


    Call (and Record) Me, Maybe: Dismissal of Call-Recording Class Action May Signal Reduced Liability for Service Providers

    by Ryan Nier and Elizabeth Dorsi on Jul 24, 2014
    Posted in
    • Privacy and Security
    • Complex Litigation
    One of the formalities of many customer service calls is the prerecorded line now engrained in our heads: “This call may be monitored or recorded for quality assurance purposes.” The purpose underlying the business practice (known as “service-observing”) is obvious: call centers want to be able to monitor and/or record calls to help train their employees. The purpose behind the disclosure, however, is legal: while most states allow telephone calls to be recorded with the consent of one party to the call, twelve states require the consent of all parties.
    Full story