New England Corporate Counsel Association
Information privacy and security continue to be at the top of legislators’ and regulators’ priority lists. Not only do U.S. companies have to stay current on domestic developments, but recent European developments may also affect how they do business. For instance, the U.S. and EU recently adopted a replacement to the Safe Harbor—the “Privacy Shield”—to permit companies to transfer personal information from the EU to the U.S. Additionally, the EU General Data Protection Regulation (GDPR), scheduled to take effect in May 2018, will extend to more U.S. companies than existing law, and compliance could require significant resources.
On the domestic side, there is continued enforcement of federal and state privacy laws and it can be difficult to have a full view of the landscape. The Federal Trade Commission (FTC) has had a heavy focus on privacy and security, from both enforcement and educational perspectives, and we can expect this focus to continue unabated. To help stay on the right side of the FTC’s enforcement efforts, it is important to understand its priorities. Finally, enforcement actions for HIPAA violations continue in the health information space.
The program will cover: