After more than two years of negotiations, on July 12, 2016, the European Commission formally adopted the EU-U.S. Privacy Shield framework as a valid mechanism for transfers of personal data from the EU to the U.S.

With the UK's Brexit referendum dominating the news out of Europe over the past week, it may have been easy to miss a key development in the continuing Privacy Shield negotiations.

The Data Protection Authority of Hamburg, Germany has made good on its promise to audit cross-Atlantic data transfers in the wake of the October 2015 Safe Harbor decision.

The Resolution recommends that the European Commission continue to negotiate the terms of the Privacy Shield with U.S. officials to address certain "deficiencies."

Financial services industry companies were involved in 18% of the over 300 data security incidents we helped manage in 2015, and reported in our 2016 BakerHostetler Data Security Incident Response Report...

On April 13, 2016, the Article 29 Working Party (WP29), an influential group of European data protection authorities, issued a non-binding opinion that criticized certain elements...

To say that mobile device usage has reached a tipping point would be an understatement. There are now more mobile devices than people in the world, a staggering 7.9 billion mobile devices for 7.4 billion people on Earth.

According to a 2015 report on threats to the financial services sector, 41% of financial services organizations polled had experienced a data breach or failed a compliance audit in the previous year...

In the weeks since the October 6, 2015, Court of Justice of the European Union decision ("CJEU Decision") that invalidated the EU-U.S. Safe Harbor framework, companies have been faced with the quandary of establishing legal alternatives for transferring personal data from Europe to the U.S.

The FTC has increasingly focused its attention on the online lead generation industry by bringing enforcement actions against payday loan lead generators...

The law would also require businesses to notify affected Connecticut residents and the Connecticut attorney general within 90 days of discovery of a breach.

Over the course of 2014, the Department of Justice ("DOJ") and the Securities and Exchange Commission ("SEC") have continued their aggressive enforcement of the Foreign Corrupt Practices Act ("FCPA").

With over 1 billion mobile smartphones in circulation, 2014 marked the first year that mobile Internet usage surpassed desktop use in the U.S.

The FTC’s settlement with Google marks its third such case over unauthorized in-app charges by children.

The long-brewing behind-the-scenes tensions of privacy, big data, and mobile finally came to a head last week in the public relations disaster known as #Ubergate.