logo-small.png
- BLOG -

ON-DEMAND INSIGHTS

Reading the Tea Leaves: What Do GDPR Enforcement Efforts Tell Us?

Reading the Tea Leaves: What Do GDPR Enforcement Efforts Tell Us?

May 10, 2019 at 3:47 PM - compliance,

Despite the global angst preceding the GDRP’s effective date, there’s been seemingly little news about enforcement efforts against noncompliant businesses. But, the reality is that EU regulators have been very busy working behind the scenes. As of February, 2019, nearly 100,000 claims under the GDPR have been lodged with EU national data protection authorities (“DPAs”), many relating to telemarketing and promotional e-mails. Similarly, just over 40,000 data breaches were reported to the DPAs; and 255 investigations into EU cross-border processing activities were initiated, mostly as a result of complaints filed by individuals.

Continue Reading
An Overview of the U.S. State Fundraising Regulations for Tax Exempt Organizations

An Overview of the U.S. State Fundraising Regulations for Tax Exempt Organizations

April 9, 2019 at 3:37 PM - compliance,

In her latest ACC Docket article, Outside GC attorney Lakshmi Sarma Ramani reviews U.S. state fundraising regulations which apply to nonprofit organizations and their corporate partners.

Continue Reading
4 Ways To Ensure HIPAA Compliant Business Associate Agreements

4 Ways To Ensure HIPAA Compliant Business Associate Agreements

December 18, 2018 at 9:10 AM - compliance,

In the wake of an historic, multi-state lawsuit filed against a “Business Associate” earlier this month, it is imperative that companies with business associate agreements (BAA) in place with health care/plan customers review internal data security policies and procedures to ensure they are in compliance with their obligations arising under HIPAA, state privacy laws and the BAAs.

Continue Reading
Update on the EU-U.S. Privacy Shield's Status

Update on the EU-U.S. Privacy Shield's Status

October 31, 2018 at 9:18 AM - compliance,

Outside GC Member Stephan Grynwajc continues to keep a close eye on the fate of the EU-U.S. Privacy Shield data-sharing arrangement. 

Continue Reading
State Regulatory Oversight of Tax-Exempt Organizations

State Regulatory Oversight of Tax-Exempt Organizations

July 25, 2018 at 5:57 PM - compliance,

Tax-exempt organizations must become increasingly aware of the regulatory landscape in which they operate. In this ACC Docket article, Lakshmi Sarma-Ramani, a Member with our Washington D.C.-based team, provides an overview of state oversight areas that carry registration or reporting requirements. 

Continue Reading
The Likely Demise of the EU-U.S. Privacy Shield & Its Impact on U.S. Companies

The Likely Demise of the EU-U.S. Privacy Shield & Its Impact on U.S. Companies

July 5, 2018 at 2:58 PM - compliance,

The future of the EU-U.S. Privacy Shield data-sharing arrangement is shaky at best. On June 12, 2018, a resolution was passed by the European Parliament’s Committee on Civil Liberties, Justice, and Home Affairs (LIBE) calling for the suspension of the Privacy Shield, unless the U.S. demonstrates full compliance with the requirements of the program by September 1, 2018. And today, following the recommendation of the LIBE, Parliament itself voted 303 to 223 (with 29 abstentions) in favor of suspension “unless the U.S. is fully compliant” by September 1st.

The European Parliament took this action in response to a number of recent data breaches affecting Privacy Shield Certified-U.S. companies, causing concern over the effectiveness of the regulatory oversight of the framework, as well as well as over the sufficiency of the Shield’s certification requirements which are designed to protect the personal data of EU residents. If suspended, certified U.S. companies will no longer be able to leverage the benefits afforded to them by the Privacy Shield, forcing them to find new compliance mechanisms by which to transfer data from the EU in order to satisfy the requirements of the GDPR.

Continue Reading

Even If You Are a U.S. Company, Don’t Ignore the GDPR

May 4, 2018 at 3:20 PM - compliance,

Complying with the EU’s New Data Privacy Law

GDPR.-Notebook-with-Notes-General-Data-Protection-Regulation-on-the-table-of-a-businessman-.-898176928_3869x2579On May 25, 2018, the European Union (EU)'s General Data Protection Regulation (GDPR) comes into force, broadening the scope of privacy obligations for companies doing business in or with Europe. The GDPR applies to all businesses that collect and use personal information of EU residents, including organizations located outside the EU.

U.S. companies, including Data Processors in the United States, may be subject to the GDPR if they offer products or services to EU residents or if they monitor the behavior of such residents even if they do not have a physical presence in the EU.

Continue Reading
Deal Accelerators: Put Your Marketing Collateral Compliance on the Fast Track

Deal Accelerators: Put Your Marketing Collateral Compliance on the Fast Track

August 11, 2016 at 12:43 PM - compliance,

A common roadblock faced by business teams is “red flags” relating to the legal compliance of marketing collateral materials. From advertisements to press releases and testimonials, to glossy brochures describing your new products and services, marketing folks are tasked with creating effective messaging to support organizational goals such as new product launches and brand awareness campaigns. However, because of the external nature of these materials, it is important that they comply with a wide variety of laws and regulations (not to mention other best practices) relating to advertising and intellectual property.

Continue Reading

Subscribe to our Blog

Popular Posts

   
Outside GC is an innovative approach to legal services for growing and mature businesses. Companies who engage Outside GC fall into two main categories: (1) those without in-house counsel who need regular, on-going legal support but do not wish to hire a full-time in-house lawyer, and (2) those with in-house counsel who do not wish to add more full-time resources to their existing in-house staff. Contact us to speak to one of our on-demand attorneys.