On April 11, Federal Trade Commission (FTC) Chair Lina Khan spoke about data privacy and security at the International Association of Privacy Professionals (IAPP) Global Privacy Summit 2022 in Washington, D.C. Khan began by acknowledging the expansive role that digitalization…
Under the California Consumer Privacy Act (CCPA), businesses are prevented from discriminating against consumers who act to exercise their rights to safeguard their personal information. However, the CPPA preserves the right of a business to charge different prices or rates…
In today’s regulatory and economic environment, organizations need to keep pace with constantly-shifting cybersecurity and data privacy threats. ADCG has sifted through current best practices to provide the following (non-exhaustive) guidance for Chief Information Security Officers (CISOs), and other compliance…
On March 18, Sri Lanka enacted the Personal Data Protection Act, No. 9 of 2022 (PDPA) and became the first South Asian Country to enact comprehensive data protection legislation. The PDPA is modeled after the EU’s General Data Protection Regulation…
On March 10, the Kingdom of Saudi Arabia’s Saudi Data & Artificial Intelligence Authority (SDAIA) issued a draft version of executive regulations supplementing the nation’s first standalone comprehensive data protection law, The Personal Data Protection Law (PDPL). PDPL was implemented…
Under the provisions of the Federal Trade Commission (FTC) Act (Act), the FTC has the authority to enforce various antitrust and consumer protection laws affecting a majority of industries. In particular, section 5(a) of the Act empowers the FTC to…
On March 3, 2022, the Utah House of Representatives unanimously approved Senate Bill 227, known as the Utah Consumer Privacy Act (UCPA or S.B. 227), after a 28-0 vote by the Utah Senate. The provisions of the UCPA are intended…
On March 2, 2021, Virginia enacted the Virginia Consumer Data Protection Act (VCDPA), becoming the second U.S. state, after California, to enact a comprehensive data privacy law. Although the California Consumer Privacy Act (CCPA) and the VCDPA are at the…
When the European Union (EU) enacted the General Data Protection Regulation (GDPR) on May 2, 2018, the world was introduced to the concept of data minimization. According to Article 5 of the GDPR, data minimization means “personal data shall be…
