Month: December 2021

Cooley Privacy Talks: UK Privacy Update

This post relates to Cooley’s Privacy Talks series – a webinar program featuring Cooley practitioners discussing practical guidance and best practices around managing data protection-related issues. Sessions range from the European General Data Protection Regulation (GDPR) to the California Consumer Privacy Act (CCPA) – and all the other new data protection frameworks […]

French Data Protection Authority CNIL on a Hunt for Cookies

France’s data protection authority (CNIL) has proved again its determination to continue its enforcement strategy by issuing some 30 new formal notices to comply with its new guidelines on cookies on December 14, 2021. Previously, about 60 organizations were served with formal notices for not allowing website visitors to refuse […]

36-Hour Breach Notification Rule to Go into Effect for Banking Organizations

On November 18, 2021, three US agencies – the Office of the Comptroller of the Currency (OCC), the Federal Reserve Board (FRB) and the Federal Deposit Insurance Corporation (FDIC) – issued a joint rule concerning computer-security incident notifications, which will go into effect on April 1, 2022, with a full […]

‘Inbox Advertising’: Direct Marketing Rules Apply to Ads in Email Inboxes

On November 25, 2021, the Court of Justice of the European Union (CJEU) held in the case C-102/20 that the display of advertising messages in a form similar to an actual email among others in an inbox constitutes an electronic mail for direct marketing purposes. Hence, rules on direct marketing […]