Fighting Fire With Fire: Legal And Ethical Issues of Active Defense and Hacking Back
Written by: Sean Cox, Esq. When a company is hacked, an immediate thought is sometimes whether they can hack back. The next question is then, “Can we do that?” Hacking back describes striking back at the cyber criminal by accessing, damaging
Facial Recognition Technology and GDPR Compliance
Written by: Richard Sheinis, Esq. A soccer team in Denmark is using facial recognition technology to stop unruly fans, apparently with the approval of the Danish Data Protection Agency (“DDPA”). The technology is used to scan fans
Country of Georgia Hit by Massive Cyber Attack
Written by: Richard Sheinis, Esq. More than 2,000 websites, including court websites and the national TV station, were knocked out by a massive cyber attack in the country of Georgia. A state sponsored political attack is suspected as many of
Singapore’s Privacy Watchdog Issues Two Fines
Written by: Richard Sheinis, Esq. Singapore’s Personal Data Protection Commission (“PDPC”) has assessed two large fines against companies for data breaches. The telecommunications company, Tingtel, has been fined $25,000 for
U.S. Federal Legislation on Data Privacy Unlikely This Year
Written by: Richard Sheinis, Esq. With the California Consumer Privacy Act (“CCPA”) ready to go into effect in 2020, and other states lined up to follow with similar legislation, there has been a greater push for a federal privacy la
German Data Protection Authorities Releases a New Model to Calculate FDPR Fines
Written by: Richard Sheinis, Esq. German data protection authorities have published a new model for calculating fines under GDPR, which, is likely to lead to higher fines. While this model is strictly being tested in Germany, since GDPR should
The Court of Justice of the European Union Issues a Ruling on Cookie Consent Requirements
Written by: Rich Sheinis, Esq. On October 1, 2019, the CJEU issued a ruling establishing that consent to use cookies cannot be validly obtained through a pre-checked box. In this particular case, an online gaming company, Planet49 GmbH, had
Ecuador Data Breach
Written by: Chase Langhorne, Esq. On September 16th the State Attorney General’s Office of Ecuador released a statement (Spanish) indicating that a privacy breach concerning the personal data of Ecuadorian citizens was being investigated.
The Court of Justice of the European Union Issues a Ruling on the Right to be Forgotten
Written by: Chase Langhorne, Esq. On September 24 the Court of Justice of the European Union (CJEU) issued a landmark ruling on GDPR’s “right to be forgotten.” The case was brought by Google challenging an order, and subsequent
EUROPEAN DATA PROTECTION BOARD ISSUES DRAFT GUIDANCE ON THE PROCESSING OF PERSONAL DATA THROUGH VIDEO DEVICES
Written by: Richard Sheinis, Esq. The European Data Protection Board (“EDPB”) recently issued guidance on the use of video devices to process personal data. The guidelines are in draft form, and were open for public comment through S