Most small businesses do not need a lawyer every day—but there are identifiable moments where legal guidance becomes appropriate. This post explains how to recognize those moments and what changes when a business moves from reactive decisions to proactive ones.
What is ISO 27018?
ISO 27018, also known as ISO/IEC 27018:2019, is an international standard that provides guidelines and best practices for protecting personally identifiable information (PII) in public cloud computing environments. Specifically, ISO 27018 focuses on cloud service providers (CSPs) and their responsibilities when handling PII and other personal data of individuals. Here are key points to understand … Continue reading What is ISO 27018?
A General Statement on Privacy
Gerken Law attorneys are bound by the Texas Disciplinary Rules of Professional Conduct, which include a duty of confidentiality and attorney-client privilege. As an organization in the United States, however, we must also comply with the various applicable regulations across the United States and around the world that govern the collection and processing of personal … Continue reading A General Statement on Privacy
What is Differential Privacy?
Differential privacy is a framework for enhancing the privacy of individuals' sensitive data while still allowing useful information to be extracted from that data for various analytical purposes. It's a mathematical approach to data privacy that aims to strike a balance between data utility and individual privacy protection, particularly in situations where data needs to … Continue reading What is Differential Privacy?
What is the Financial Privacy Rule?
The Financial Privacy Rule typically refers to a regulation established under the Gramm-Leach-Bliley Act (GLBA), a U.S. federal law enacted in 1999. The GLBA's Financial Privacy Rule is officially known as the "Privacy of Consumer Financial Information Rule" and is implemented and enforced by several U.S. regulatory agencies, including the Federal Trade Commission (FTC), the … Continue reading What is the Financial Privacy Rule?
Lawsuit Brought by Vermont AG Against Clearview AI
Vermont Attorney General TJ Donovan has filed a lawsuit against Clearview AI, a controversial facial recognition company, alleging violations of consumer protection laws and data broker regulations. Donovan is seeking a court order to stop the company from collecting Vermonters' photos and facial recognition data, including that of children. He emphasized the importance of protecting … Continue reading Lawsuit Brought by Vermont AG Against Clearview AI
CERN Sacks Facebook’s Workplace
According to cnbc.com, the European Organization for Nuclear Research, CERN, has decided to drop Facebook’s communications tool, Workplace. Already unpopular due to mistrust of its developer in regards to data privacy, Workplace became even less desirable when Facebook gave CERN the option to pay for the communications tool or downgrade to a free version. As … Continue reading CERN Sacks Facebook’s Workplace
CCPA “Service Provider” Definition Threatens Insurance Defense
InsuranceNewsNet.com has reported that insurance defense firms are concerned that the California Consumer Privacy Act (CCPA) prohibits them from sharing claimants’ personal information with experts and consultants necessary to defend the insured. A law firm representing an insurance carrier who does business in California may be subject to the act by way of its definition … Continue reading CCPA “Service Provider” Definition Threatens Insurance Defense
What are Data Passports?
Each data carries with it a form of encryption prohibiting use without verification. Furthermore, access may be revoked so that originators can secure data against previously verified use. Even if the data travels outside of an encrypted system, it is protected. To provide a general understanding of what "data passports" could refer to in that … Continue reading What are Data Passports?