Blog

Show Me the Money: How the CCPA Applies to GLBA-Regulated Entities

This post is authored by Kacey Jennings, a second-year law student at Villanova University’s Charles Widger School of Law. Ms. Jennings is a legal-intern with the XPAN Law Group. At first blush, the language in the most comprehensive piece of data privacy legislation in any US state to date — the California Consumer Privacy Act […]

Privacy in US Elections: When An Absentee Ballot Requires You to Publicly Divulge Information

The much-anticipated mid-term elections are finally upon us. If you have any hesitations about exercising your right to vote, here is your friendly (and forceful) reminder to go vote! If this is a surprise to you that it is Election Day, do your research and still go vote! Ok, now we can move past the […]

Healthcare Industry Needs to Get Back to Basics

Cybersecurity breaches and incidents are starting to feel like Groundhogs Day. Who do we have today? None other than HealthCare.gov, with the Washington Post recently reporting that HealthCare.gov was hacked compromising approximately 75,000 individual’s private information. HealthCare.gov is the system through which individuals can obtain healthcare coverage under the Affordable Care Act. As of 2018, […]

First Step of Data Privacy Compliance: Understanding Your Data

By Antonia Dumas, an Associate at XPAN Law Group. If you have been following our blog, we hope you know (and agree) that that data privacy is a priority. The next question is: what can you do for your company? You have recognized the importance of addressing data privacy issues and having been introduced to […]

Your Motherboard: Did Bloomberg Businessweek Cry Wolf About Tech Giants’ Supply Chains?

This post is authored by Kacey Jennings, a second-year law student at Villanova University’s Charles Widger School of Law. Ms. Jennings is a legal-intern with the XPAN Law Group. China has allegedly used tiny microchips to hack the most valuable publicly traded company in the world. No, this is not a description of a one-star […]

Lessons from the first GDPR Enforcement Notice

Since the European Union’s General Data Protection Regulation (“GDPR”) went into effect in May of this year, and for months prior to “GDPR Day”, the number one question has been how will the various data protection authorities enforce the GDPR? Will the EU use this new regulation as a hammer? Will there really be fines […]

Restricted Transfer or No Restricted Transfer – That is the Question Here

By Carolin Brucker Cabe, an Associate at XPAN Law Group, LLC. ICO’s latest publication gives rise to speculations regarding international transfers under the GDPR and how they might be handled in the future. This comes at a time when the countdown to Brexit draws closer to completion, but is still “up in the air”. The […]

Has the CCPA Started a Domestic Privacy Wave?

This post is authored by Antonia Dumas, JD, an associate with XPAN Law Group. In the wake of the European Union’s General Data Protection Regulations’ arrival, there have been many discussions whether the U.S. will adopt a similar legislation. However, just as in other areas, the U.S. often does things differently. Here, waves of change […]

The FTC Faces New Hurdles After Eleventh Circuit Decision

This post is authored by Kacey Jennings, a second-year law student at Villanova University’s Charles Widger School of Law. Ms. Jennings is a legal-intern with the XPAN Law Group. When I was growing up, you couldn’t ask Alexa to play the newest album from your favorite artist. There was no Spotify or Apple Music in […]

The Shared Responsibility Model: Balancing Liability in a Matrix of Service Providers

As companies continue to develop new and innovative technologies, streamlining and automating operations, there is an increasing reliance on a number of third-party services to provide services and efficiencies. Each of these third-party providers adds (or attempts to add) a unique new *twist* on the old: more functionality, hopefully improved security, and any other add-ons […]