Mitigate Risk in Privacy & Data Security

Stay ahead of privacy and data security developments.

On the frontier of privacy and data security, change happens. One enforcement action, one breach, one lawsuit can reshape the landscape entirely. With evolving and emerging technologies come new risks and responsibilities. Map your strategy with essential news, expert analysis, and practice tools.

FEATURED REPORT

CCPA and EU GDPR: Expert Insight and Practical Guidance

Get actionable guidance and expert insights you can put to work to navigate these complex regulations with confidence.

in focus page

From EU GDPR to CCPA and Beyond – Enforcement Actions Dominate the Landscape

From continued fallout and business ramifications after the passage of EU GDPR, to the looming enactment of the CCPA in California and the potential for other states to enact similar laws, the tumultuous privacy and data security landscape shows no sign of simmering down. As consumers continue to be ever more cautious – and knowledgeable – about their rights and corporate responsibility, when it comes to their personal information, companies and the law firms that advise them are scrambling to understand shifting priorities and avoid costly, reputation-damaging fallout from security breaches, ransomware, and other threats.

What is the EU General Data Protection Regulation?

The General Data Protection Regulation (GDPR) creates a single EU-wide law on data protection intended to increase legal certainty for individuals, businesses, and data protection authorities and to contribute to the success of the EU’s Digital Single Market. Of particular significance is the extraterritorial application of the GDPR, where a non-EU-based business will become subject to the GDPR when it is processing personal data of EU individuals as a result of offering goods or services to such individuals or monitoring their behavior. The GDPR introduces significant new data protection requirements and rights for data subjects, as well as enforcement powers for DPAs, including fines of up to 4% of annual worldwide turnover or 20 million euros, whichever is greater. The GDPR entered into force May 25, 2018.

What is the California Consumer Privacy Act?

The California Consumer Privacy Act (CCPA), signed into law June 28, 2018, creates an array of consumer privacy rights and establishes a private right of action for security breaches and potential statutory damages of between $100 and $750 per consumer, per incident. Businesses subject to the CCPA must comply by Jan. 1, 2020, but the text of the law contains a 12-month “look-back” provision, which requires businesses to respond to consumer requests for personal information collected or sold within the past 12 months.

PRIVACY & DATA SECURITY

Related Resources

 

ARTICLE

Google, Big Tech Fail to Weaken California Data-Privacy Law

California’s sweeping privacy law is on track to take effect in January without major revisions sought by Google Inc. and industry allies. The law limits how Alphabet Inc.’s Google and other companies collect and make money from user data online, threatening a business model that generates billions of dollars in ad revenue.

 

REPORT

Business Adjusts to Data and Privacy Rules

Now that GDPR has become the required framework, data collection and use issues are emerging. This report looks at key sectors where the European regulation is forcing change and how the environment will be transformed by the response of governments, regulators, and businesses.

REPORT

Domestic Privacy Profile – California

Download the California Domestic Privacy Profile to get a detailed view of state laws and regulations by data type and sector. Bloomberg Law’s domestic privacy profiles offer a local practitioner’s perspective on the regulatory climate in each state they cover.

 

Expert analysis, news, and guidance content for privacy and data security on

Bloomberg Law

ARTICLE

How to Address Emerging Privacy Compliance Risks

European regulators wasted no time getting serious about GDPR, which gives EU supervisory authorities the power to issue fines of up to €20 million or 4% of a company’s global gross revenue, whichever is higher. In the first nine months alone, fines had already reached nearly €56 million.

 

REPORT

Domestic Privacy Profile – Florida

Download the Florida Domestic Privacy Profile to get a detailed view of state laws and regulations by data type and sector. Bloomberg Law’s domestic privacy profiles offer a local practitioner’s perspective on the regulatory climate in each state they cover. Alfred J. Saikali, of Shook, Hardy & Bacon LLP, Miami, provided expert review of the Florida Profile and crafted the Risk Environment section.

Q & A

Privacy, Compliance Pose Big Challenges for In-House Counsel

In her dual role as executive director of the Compliance and Governance Oversight Council and privacy lead for Hybrid Cloud, IBM, Heidi Maher has gained considerable insight into the critical issues surrounding data use and the protection of personal information. She shares her thoughts on these and other topics.

 

in focus computer

In Focus Customer Resources

Access to this information requires a subscription to Bloomberg Law. If you are a subscriber, click here to sign in.

General Data Protection Regulation
Get all the critical news, analysis, and practice tools you need to stay ahead of the most wide-reaching enforcement action in the privacy and data security realm. Access in-depth analysis of key issues, GDPR-focused tools and trackers (including the Interpretation & Guidance Tracker and the Complaints & Enforcement Tracker), sample forms and checklists, and our treatises and books.

California Consumer Privacy Act
With the looming January 2020 CCPA enforcement deadline, our In Focus page delivers everything you need to know about this complex state law. Resources include detailed Practical Guidance (such as a California Consumer Privacy Program Implementation Checklist), overviews that cover key aspects of enforcement, practitioner-crafted Insights, and the California State Domestic Privacy Profile – offering a detailed overview of the law and its implications across industries.

Latest Privacy and Data Security News

See It for Yourself.

From EU GDPR to CCPA and beyond, Bloomberg Law provides fully integrated, unlimited access to privacy and data security content.

Coverage includes:

  • Primary and secondary sources, practice tools, news, and analysis of implications for business fueled by unparalleled access to market intelligence.
  • Privacy & Data Security Law News; relevant domestic and international primary source materials; in-depth secondary coverage, including the Privacy & Data Security Portfolio Series; and exclusive Practical Guidance crafted by leading practitioners.
  • Checklists and sample forms to support the day-to-day needs of your practice or organization as well as topically organized State and International Chart Builders.
  • In Focus pages providing analysis of critical issues such as the GDPR, CCPA, Broadband Privacy, and more.
Analysis
Top