For some time now—in response to the California Online Privacy Protection Act, Canada's Personal Information Protection and Electronic Documents Act, and similar statutes and regulations from other jurisdictions—any company with any web presence to speak of has provided a public-facing privacy policy on its website, explaining what it does with each user's information, how it complies with the relevant laws, what rights users have to access their information, etc. These policies have become much more prominent in 2018, as the EU's General Data Protection Regulation (the "GDPR") became effective and thousands of companies notified their contact lists that their privacy policies had been updated.

To read the full article, please click here.

Published in The Journal of Robotics, Artificial Intelligence & Law (January-February 2019)

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.