On April 17, 2023, the Washington State Legislature passed the “My Health My Data Act” (“WMHMDA” or “Act”). Unlike other modern state privacy laws that purport to regulate any collection of “personal data,” WMHMDA confers privacy protections only upon “Consumer Health Data.” While the Act was promoted as a measure to help protect
Online tracking
Processing Sensitive Personal Information under U.S. State Privacy Laws
It is important to always confirm and understand all the various requirements of laws applicable to the sensitive personal information being processed.
Continue Reading Processing Sensitive Personal Information under U.S. State Privacy Laws
Updated CCPA Regulations Approved
Three months prior to the enforcement date of the California Consumer Privacy Act (CCPA), as amended, the California Office of Administrative Law approved the updated CCPA Regulations (final rulemaking documents will be posted here after processing). These updates take into account the CCPA’s expanded scope following its amendment by the California Privacy Rights…
Is a business required to include an ‘opt out of targeted advertising’ link on its homepage (i.e., a Do Not Share link) if it recognizes opt-out preference signals?
Three modern privacy statutes incorporate the concept that individuals should be able to broadcast a signal from their browser or device that directs an organization to cease providing their personal information to third parties for the purposes of targeted advertising.
The regulations implementing the CCPA, as amended by the CPRA, require organizations to process “opt-out…
March 22 | AdTech and Data Privacy Webinar
Greenberg Traurig Shareholder David A. Zetoony, Co-Chair of the U.S. Data Privacy & Cybersecurity Practice, will present the Thomson Reuters West LegalEdcenter webinar, “AdTech and Data Privacy?” on Wednesday, March 22 at 3:00 pm EDT. AdTech is an important part of marketing and sales, and organizations that use AdTech must…
Cookies and Other Tracking Technologies May Violate HIPAA
Given recent Health and Human Services’ Office for Civil Rights guidance, HIPAA-regulated entities should consider immediately taking the steps discussed in this GT blog post to reduce the risk associated with their use of tracking technologies.
Continue Reading Cookies and Other Tracking Technologies May Violate HIPAA
How may behavioral advertising trackers do websites deploy currently?
A behavioral advertising cookie typically refers to a cookie that is used to track the websites a consumer visits for the purpose of identifying advertisements that may be of particular interest to the consumer and then serving such advertisements to the consumer. Behavioral advertising cookies are sometimes referred to as third-party behavioral advertising cookies, advertising…
What’s more common: opt-in, opt-out, or notice cookie banners?
There is little standardization concerning how cookie banners are deployed. Generally, however, most cookie banners fall within four broad categories:
- Notice-only cookie banners. A notice-only cookie banner discloses to website visitors that the website deploys cookies, but the banner does not give the visitor any direct control concerning the use of cookies. In other words,
‘Do Not Sell’ Links – How common are they really?
A review of the Fortune 500 conducted approximately one year after the CCPA went into effect showed that 21 percent of websites included a “Do Not Sell My Personal Information” link; 78.6 percent of websites did not include a link to opt out of the sale of personal information.[1] Over the past year, that…
How many websites now have cookie banners?
A “cookie banner” refers to a pop-up notice on a website that discusses the site’s use of cookies. There is little standardization concerning how cookie banners are deployed. For example, websites can position them in different places on the screen (e.g., across the top of the screen, across the bottom of the screen, in a…