SlideShare une entreprise Scribd logo

Hengesbaugh

Télécharger en tant que PPTX, PDF
Onkar Sule
Onkar Sule
TechnologieBusiness
1  sur  23
E-Commerce Latest Developments in Consumer Privacy Brian Hengesbaugh Baker & McKenzie (Chicago office) 312-861-3077 brian.hengesbaugh@bakernet.com www.bakernet.com/ecommerce
E-Commerce “BIG PICTURE” • State Law Developments • Information Security Programs • Privacy Considerations in Developing and Managing a Website Baker & McKenzie -- Global E- Commerce Law
E-Commerce STATE LAW DEVELOPMENTS • Legal Context – GLB, FCRA, HIPAA all minimum standards – States invited to do more, so long as not “inconsistent” – States as laboratories Baker & McKenzie -- Global E- Commerce Law
E-Commerce Post September 11 • Legislative Interest in Privacy – 750+ state privacy bills – 50+ state financial privacy bills – 85+ federal privacy bills Baker & McKenzie -- Global E- Commerce Law
E-Commerce Vermont Regulation • Financial and Health Information • Opt-in for nonaffiliate sharing • Legal challenge by ACLI, AIA, and more – exceeds authority – violates intent of law • Chances of success??? Baker & McKenzie -- Global E- Commerce Law
E-Commerce New Mexico Regulation • Financial and Health Information • Opt-in for nonaffiliate sharing • Any legal challenge? Baker & McKenzie -- Global E- Commerce Law
E-Commerce California, Illinois, New York, and others considering more – Opt-in measures for nonaffiliate sharing – Limits on sharing within affiliated groups (e.g. prior CA bill) – Driving force for federal preemption? – Financial privacy commission and moratorium on new state laws (HR 3068) Baker & McKenzie -- Global E- Commerce Law
E-Commerce California -- Social Security Numbers • Restrictions on: – transmitting SSNs over Internet – printing SSNs on mailed materials • July 1, 2002 implementation, but grandfather for existing practices if: – continuous – notice of right to opt-out – individual does not opt-out Baker & McKenzie -- Global E- Commerce Law
E-Commerce INFORMATION SECURITY PROGRAMS • Final Interagency Guidelines Establishing Standards for Safeguarding Customer Information (February 1, 2001) • FTC Proposed Standards for Safeguarding Customer Information (Comment Period Closed October 9, 2001) Baker & McKenzie -- Global E- Commerce Law
E-Commerce Focus on Process • Due diligence is 90% of battle (checklist) • STEP 1: Conduct comprehensive assessment that examines: – internal and external threats – sensitivity of data – potential damage Baker & McKenzie -- Global E- Commerce Law
E-Commerce Focus on Process (cont.) • STEP 2: Assess sufficiency of existing policies and procedures: – access controls on systems and encryption – physical access restrictions – automatic reviews of system modifications – technological and environmental hazards – Subjective Standard: . . adopt those measures the bank considers appropriate Baker & McKenzie -- Global E- Commerce Law
E-Commerce Focus on Process (cont.) • STEP 3: Take appropriate organizational and administrative actions: – written information security program – involve board of directors – implement a system for regular testing – information security officer – service provider arrangements* Baker & McKenzie -- Global E- Commerce Law
E-Commerce Service Provider Arrangements • Due diligence in selecting SPs • Establish contract to meet “objectives” of Guidelines* • Where appropriate, ongoing monitoring (or review SAS 70 or similar report) Baker & McKenzie -- Global E- Commerce Law
E-Commerce Contract with SPs • Key Issues: – Appropriate measures to meet “objectives” of Guidelines (full compliance not required) (e.g., board of directors) – Overly strict limits on use and disclosure – Scope of “information” covered Baker & McKenzie -- Global E- Commerce Law
E-Commerce WEBSITE PRIVACY ISSUES • Context: entire privacy and consumer protection legal framework PLUS online application of that framework • FTC and State AG dedication to enforcement Baker & McKenzie -- Global E- Commerce Law
E-Commerce Website Privacy Issues • Passive and active collection • Relationships with third parties • Satisfying GLB notice requirements • Jurisdiction Baker & McKenzie -- Global E- Commerce Law
E-Commerce Passive and Active Collection • Passive collections -- cookies, web bugs, IP addresses, clickstream data, etc. – “wooden” obligations to notify under GLB – broader notification obligations under consumer protection statutes (e.g. Michigan AG and New Jersey AG) • Active collections – “unfriendly” GLB language for policy Baker & McKenzie -- Global E- Commerce Law
E-Commerce Relationships with Third Parties • Support Services – Internet Service Providers – Web hosting services – Application Service Providers – Data analysis firms (Toys R Us) – *GLB security guidelines apply* Baker & McKenzie -- Global E- Commerce Law
E-Commerce Relationships with Third Parties (cont.) • Marketing/ Advertisers – 3rd party advertisers (NAI principles) – Framing and co-branded websites – Joint marketers Baker & McKenzie -- Global E- Commerce Law
E-Commerce Satisfying GLB Notice Requirements Electronically – Reasonable expectation of receipt – Customer agrees – Obtains financial product or service electronically – Retention and accessibility Baker & McKenzie -- Global E- Commerce Law
E-Commerce Jurisdiction • Reach of New Mexico and Vermont • Zippo analysis • How do you know who you are dealing with? Baker & McKenzie -- Global E- Commerce Law
E-Commerce General Website Tips • Know what you are collecting • Know what your service providers are doing • Disclose, disclose, disclose • Keep it simple; avoid flowery language • Keep it flexible; avoid the “never” trap • Be mindful of jurisdiction Baker & McKenzie -- Global E- Commerce Law
E-Commerce Keep track of privacy developments at: www.bakernet.com/ecommerce www/bakernet.com/e-law (weekly newsletter) Baker & McKenzie One E-Commerce World. One Firm. Connected. For companies moving with change

Recommandé

Data Security and Privacy Landscape 2012 (September 2012)
Data Security and Privacy Landscape 2012 (September 2012)Data Security and Privacy Landscape 2012 (September 2012)
Data Security and Privacy Landscape 2012 (September 2012)Jason Haislmaier
 
Social Media & Legal Risk
Social Media & Legal Risk Social Media & Legal Risk
Social Media & Legal Risk Endcode_org
 
IAB Online Content Regulation: Trends
IAB Online Content Regulation: Trends IAB Online Content Regulation: Trends
IAB Online Content Regulation: Trends Endcode_org
 
Cyber Banking Conference
Cyber Banking Conference Cyber Banking Conference
Cyber Banking Conference Endcode_org
 
Data Protection & Risk Management
Data Protection & Risk Management Data Protection & Risk Management
Data Protection & Risk Management Endcode_org
 
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...Kenneth Riley
 
*Webinar* CCPA: Get Your Business Ready
*Webinar* CCPA: Get Your Business Ready*Webinar* CCPA: Get Your Business Ready
*Webinar* CCPA: Get Your Business ReadyMoEngage Inc.
 
2019 10-23 ccpa survival guide
2019 10-23 ccpa survival guide2019 10-23 ccpa survival guide
2019 10-23 ccpa survival guideTrustArc
 

Recommandé

Data Security and Privacy Landscape 2012 (September 2012)
Data Security and Privacy Landscape 2012 (September 2012)Data Security and Privacy Landscape 2012 (September 2012)
Data Security and Privacy Landscape 2012 (September 2012)Jason Haislmaier
 
Social Media & Legal Risk
Social Media & Legal Risk Social Media & Legal Risk
Social Media & Legal Risk Endcode_org
 
IAB Online Content Regulation: Trends
IAB Online Content Regulation: Trends IAB Online Content Regulation: Trends
IAB Online Content Regulation: Trends Endcode_org
 
Cyber Banking Conference
Cyber Banking Conference Cyber Banking Conference
Cyber Banking Conference Endcode_org
 
Data Protection & Risk Management
Data Protection & Risk Management Data Protection & Risk Management
Data Protection & Risk Management Endcode_org
 
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...Kenneth Riley
 
*Webinar* CCPA: Get Your Business Ready
*Webinar* CCPA: Get Your Business Ready*Webinar* CCPA: Get Your Business Ready
*Webinar* CCPA: Get Your Business ReadyMoEngage Inc.
 
2019 10-23 ccpa survival guide
2019 10-23 ccpa survival guide2019 10-23 ccpa survival guide
2019 10-23 ccpa survival guideTrustArc
 
Presentation ncsl - mobile privacy enforcement 130502 (as presented)
Presentation ncsl - mobile privacy enforcement 130502 (as presented)Presentation ncsl - mobile privacy enforcement 130502 (as presented)
Presentation ncsl - mobile privacy enforcement 130502 (as presented)Jason Haislmaier
 
Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....
Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....
Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....Knobbe Martens - Intellectual Property Law
 
social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..home based
 
Legal ethical issues E commerce
Legal ethical issues E commerceLegal ethical issues E commerce
Legal ethical issues E commerceWisnu Dewobroto
 
legal and ethcal issues of e business
legal and ethcal issues of e businesslegal and ethcal issues of e business
legal and ethcal issues of e businessKdnk Kiriti
 
Ethics in e commerce n it
Ethics in e commerce n itEthics in e commerce n it
Ethics in e commerce n itamitmitkar
 
Data Privacy
Data PrivacyData Privacy
Data PrivacyHome
 
Social and ethical issues in commerce
Social and ethical issues in commerceSocial and ethical issues in commerce
Social and ethical issues in commerceUniversity of Central Punjab
 
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)Symantec
 
Forecast cybersecurity regulation v3
Forecast cybersecurity regulation v3Forecast cybersecurity regulation v3
Forecast cybersecurity regulation v3Joe Orlando
 
Presentation Yun Li
Presentation Yun LiPresentation Yun Li
Presentation Yun LiYunLi
 
Draft data protection regn 2012
Draft data protection regn 2012Draft data protection regn 2012
Draft data protection regn 2012lilianedwards
 
Legal issues uniform commercial code for ecommerce
Legal issues uniform commercial code for ecommerceLegal issues uniform commercial code for ecommerce
Legal issues uniform commercial code for ecommerceMukul kale
 
Legal social ethical
Legal social ethicalLegal social ethical
Legal social ethicalSheetal Verma
 
How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...
How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...
How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...gallowayandcollens
 
Maximizing & Exploiting Big Data in Digital Media....Legally
Maximizing & Exploiting Big Data in Digital Media....LegallyMaximizing & Exploiting Big Data in Digital Media....Legally
Maximizing & Exploiting Big Data in Digital Media....LegallyMediaPost
 
Big data privacy security regulation
Big data privacy security regulation Big data privacy security regulation
Big data privacy security regulationcjw119
 
GDPR for Dummies
GDPR for DummiesGDPR for Dummies
GDPR for DummiesAtif Ghauri
 
Leadership lessons-from-obama
Leadership lessons-from-obamaLeadership lessons-from-obama
Leadership lessons-from-obamaOnkar Sule
 
Life
LifeLife
LifeOnkar Sule
 
Information security
Information securityInformation security
Information securityOnkar Sule
 
Cost mms 10
Cost mms 10Cost mms 10
Cost mms 10Onkar Sule
 

Contenu connexe

Tendances

Presentation ncsl - mobile privacy enforcement 130502 (as presented)
Presentation ncsl - mobile privacy enforcement 130502 (as presented)Presentation ncsl - mobile privacy enforcement 130502 (as presented)
Presentation ncsl - mobile privacy enforcement 130502 (as presented)Jason Haislmaier
 
Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....
Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....
Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....Knobbe Martens - Intellectual Property Law
 
social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..home based
 
Legal ethical issues E commerce
Legal ethical issues E commerceLegal ethical issues E commerce
Legal ethical issues E commerceWisnu Dewobroto
 
legal and ethcal issues of e business
legal and ethcal issues of e businesslegal and ethcal issues of e business
legal and ethcal issues of e businessKdnk Kiriti
 
Ethics in e commerce n it
Ethics in e commerce n itEthics in e commerce n it
Ethics in e commerce n itamitmitkar
 
Data Privacy
Data PrivacyData Privacy
Data PrivacyHome
 
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)Symantec
 
Forecast cybersecurity regulation v3
Forecast cybersecurity regulation v3Forecast cybersecurity regulation v3
Forecast cybersecurity regulation v3Joe Orlando
 
Presentation Yun Li
Presentation Yun LiPresentation Yun Li
Presentation Yun LiYunLi
 
Draft data protection regn 2012
Draft data protection regn 2012Draft data protection regn 2012
Draft data protection regn 2012lilianedwards
 
Legal issues uniform commercial code for ecommerce
Legal issues uniform commercial code for ecommerceLegal issues uniform commercial code for ecommerce
Legal issues uniform commercial code for ecommerceMukul kale
 
Legal social ethical
Legal social ethicalLegal social ethical
Legal social ethicalSheetal Verma
 
How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...
How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...
How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...gallowayandcollens
 
Maximizing & Exploiting Big Data in Digital Media....Legally
Maximizing & Exploiting Big Data in Digital Media....LegallyMaximizing & Exploiting Big Data in Digital Media....Legally
Maximizing & Exploiting Big Data in Digital Media....LegallyMediaPost
 
Big data privacy security regulation
Big data privacy security regulation Big data privacy security regulation
Big data privacy security regulationcjw119
 
GDPR for Dummies
GDPR for DummiesGDPR for Dummies
GDPR for DummiesAtif Ghauri
 

Tendances (18)

Presentation ncsl - mobile privacy enforcement 130502 (as presented)
Presentation ncsl - mobile privacy enforcement 130502 (as presented)Presentation ncsl - mobile privacy enforcement 130502 (as presented)
Presentation ncsl - mobile privacy enforcement 130502 (as presented)
 
Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....
Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....
Knobbe Practice Series- Developments in Data Privacy LawsAcross Various U.S....
 
social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..social, legal and ethical issues of e-commerce..
social, legal and ethical issues of e-commerce..
 
Legal ethical issues E commerce
Legal ethical issues E commerceLegal ethical issues E commerce
Legal ethical issues E commerce
 
legal and ethcal issues of e business
legal and ethcal issues of e businesslegal and ethcal issues of e business
legal and ethcal issues of e business
 
Ethics in e commerce n it
Ethics in e commerce n itEthics in e commerce n it
Ethics in e commerce n it
 
Data Privacy
Data PrivacyData Privacy
Data Privacy
 
Social and ethical issues in commerce
Social and ethical issues in commerceSocial and ethical issues in commerce
Social and ethical issues in commerce
 
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
Symantec Webinar: Preparing for the California Consumer Privacy Act (CCPA)
 
Forecast cybersecurity regulation v3
Forecast cybersecurity regulation v3Forecast cybersecurity regulation v3
Forecast cybersecurity regulation v3
 
Presentation Yun Li
Presentation Yun LiPresentation Yun Li
Presentation Yun Li
 
Draft data protection regn 2012
Draft data protection regn 2012Draft data protection regn 2012
Draft data protection regn 2012
 
Legal issues uniform commercial code for ecommerce
Legal issues uniform commercial code for ecommerceLegal issues uniform commercial code for ecommerce
Legal issues uniform commercial code for ecommerce
 
Legal social ethical
Legal social ethicalLegal social ethical
Legal social ethical
 
How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...
How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...
How to Make Sure the Kids Will Still Be Listening to The Beatles on Google Pl...
 
Maximizing & Exploiting Big Data in Digital Media....Legally
Maximizing & Exploiting Big Data in Digital Media....LegallyMaximizing & Exploiting Big Data in Digital Media....Legally
Maximizing & Exploiting Big Data in Digital Media....Legally
 
Big data privacy security regulation
Big data privacy security regulation Big data privacy security regulation
Big data privacy security regulation
 
GDPR for Dummies
GDPR for DummiesGDPR for Dummies
GDPR for Dummies
 

En vedette

Leadership lessons-from-obama
Leadership lessons-from-obamaLeadership lessons-from-obama
Leadership lessons-from-obamaOnkar Sule
 
Information security
Information securityInformation security
Information securityOnkar Sule
 
Management of oral and written communication
Management of oral and written communicationManagement of oral and written communication
Management of oral and written communicationOnkar Sule
 
Oral communication
Oral communicationOral communication
Oral communicationOnkar Sule
 
Improving english oral communication skills of pakistani public
Improving english oral communication skills of pakistani publicImproving english oral communication skills of pakistani public
Improving english oral communication skills of pakistani publicSizzling Peridot
 

En vedette (8)

Leadership lessons-from-obama
Leadership lessons-from-obamaLeadership lessons-from-obama
Leadership lessons-from-obama
 
Life
LifeLife
Life
 
Information security
Information securityInformation security
Information security
 
Cost mms 10
Cost mms 10Cost mms 10
Cost mms 10
 
I walden
I waldenI walden
I walden
 
Management of oral and written communication
Management of oral and written communicationManagement of oral and written communication
Management of oral and written communication
 
Oral communication
Oral communicationOral communication
Oral communication
 
Improving english oral communication skills of pakistani public
Improving english oral communication skills of pakistani publicImproving english oral communication skills of pakistani public
Improving english oral communication skills of pakistani public
 

Similaire à Hengesbaugh

FTC Privacy Roundtable Background And Summary
FTC Privacy Roundtable Background And SummaryFTC Privacy Roundtable Background And Summary
FTC Privacy Roundtable Background And SummaryInternet Law Center
 
Legal Framework For E Commerce In Ecowas Africa
Legal Framework For E Commerce In Ecowas AfricaLegal Framework For E Commerce In Ecowas Africa
Legal Framework For E Commerce In Ecowas AfricaDayo Ogunyemi
 
2019-06-11 What New US State Laws Mean For Your Business
2019-06-11 What New US State Laws Mean For Your Business2019-06-11 What New US State Laws Mean For Your Business
2019-06-11 What New US State Laws Mean For Your BusinessTrustArc
 
Technology Law: Regulations on the Internet and Emerging Technologies
Technology Law: Regulations on the Internet and Emerging TechnologiesTechnology Law: Regulations on the Internet and Emerging Technologies
Technology Law: Regulations on the Internet and Emerging TechnologiesInfinity Software Solutions
 
Technology Law: Regulations on the Internet and Emerging Technologies
Technology Law: Regulations on the Internet and Emerging TechnologiesTechnology Law: Regulations on the Internet and Emerging Technologies
Technology Law: Regulations on the Internet and Emerging TechnologiesInfinity Software Solutions
 
Electronic Business
Electronic BusinessElectronic Business
Electronic Businessjoannaeagar
 
Enforcement and Litigation Trends and Developments in Privacy and Data Security
Enforcement and Litigation Trends and Developments in Privacy and Data Security Enforcement and Litigation Trends and Developments in Privacy and Data Security
Enforcement and Litigation Trends and Developments in Privacy and Data Security Richik Sarkar
 
E Marketing Ethical and Legal Issues
E Marketing Ethical and Legal IssuesE Marketing Ethical and Legal Issues
E Marketing Ethical and Legal Issueskarthik indrajit
 
Online Behavioral Advertising (OBA) Legal & Regulatory Compliance
Online Behavioral Advertising (OBA) Legal & Regulatory ComplianceOnline Behavioral Advertising (OBA) Legal & Regulatory Compliance
Online Behavioral Advertising (OBA) Legal & Regulatory ComplianceAdler Law Group
 
Legal regulation ecommerce_2015
Legal regulation ecommerce_2015Legal regulation ecommerce_2015
Legal regulation ecommerce_2015Justyna Skorupska
 
PCI, ADA and COPPA - OH MY! Managing Regulatory Compliance - Magento Imagine ...
PCI, ADA and COPPA - OH MY! Managing Regulatory Compliance - Magento Imagine ...PCI, ADA and COPPA - OH MY! Managing Regulatory Compliance - Magento Imagine ...
PCI, ADA and COPPA - OH MY! Managing Regulatory Compliance - Magento Imagine ...Phillip Jackson
 
Privacy & Security Challenges Faced By Financial Services In The Digital Age
Privacy & Security Challenges Faced By Financial Services In The Digital AgePrivacy & Security Challenges Faced By Financial Services In The Digital Age
Privacy & Security Challenges Faced By Financial Services In The Digital AgeAgile Financial Technologies
 
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...Shawn Tuma
 
Data Privacy Trends in 2021: Compliance with New Regulations
Data Privacy Trends in 2021: Compliance with New RegulationsData Privacy Trends in 2021: Compliance with New Regulations
Data Privacy Trends in 2021: Compliance with New RegulationsPECB
 
Countdown to CCPA: 48 Days Until Your IBM i Data Needs to Be Secured
Countdown to CCPA: 48 Days Until Your IBM i Data Needs to Be SecuredCountdown to CCPA: 48 Days Until Your IBM i Data Needs to Be Secured
Countdown to CCPA: 48 Days Until Your IBM i Data Needs to Be SecuredPrecisely
 
Data breach protection from a DB2 perspective
Data breach protection from a DB2 perspectiveData breach protection from a DB2 perspective
Data breach protection from a DB2 perspectiveCraig Mullins
 

Similaire à Hengesbaugh (20)

E-Commerce Legal Framework In The UAE
E-Commerce Legal Framework In The UAEE-Commerce Legal Framework In The UAE
E-Commerce Legal Framework In The UAE
 
Basema aljaberi tra
Basema aljaberi traBasema aljaberi tra
Basema aljaberi tra
 
FTC Privacy Roundtable Background And Summary
FTC Privacy Roundtable Background And SummaryFTC Privacy Roundtable Background And Summary
FTC Privacy Roundtable Background And Summary
 
Legal Framework For E Commerce In Ecowas Africa
Legal Framework For E Commerce In Ecowas AfricaLegal Framework For E Commerce In Ecowas Africa
Legal Framework For E Commerce In Ecowas Africa
 
2019-06-11 What New US State Laws Mean For Your Business
2019-06-11 What New US State Laws Mean For Your Business2019-06-11 What New US State Laws Mean For Your Business
2019-06-11 What New US State Laws Mean For Your Business
 
Technology Law: Regulations on the Internet and Emerging Technologies
Technology Law: Regulations on the Internet and Emerging TechnologiesTechnology Law: Regulations on the Internet and Emerging Technologies
Technology Law: Regulations on the Internet and Emerging Technologies
 
Technology Law: Regulations on the Internet and Emerging Technologies
Technology Law: Regulations on the Internet and Emerging TechnologiesTechnology Law: Regulations on the Internet and Emerging Technologies
Technology Law: Regulations on the Internet and Emerging Technologies
 
Electronic Business
Electronic BusinessElectronic Business
Electronic Business
 
Enforcement and Litigation Trends and Developments in Privacy and Data Security
Enforcement and Litigation Trends and Developments in Privacy and Data Security Enforcement and Litigation Trends and Developments in Privacy and Data Security
Enforcement and Litigation Trends and Developments in Privacy and Data Security
 
E Marketing Ethical and Legal Issues
E Marketing Ethical and Legal IssuesE Marketing Ethical and Legal Issues
E Marketing Ethical and Legal Issues
 
Online Behavioral Advertising (OBA) Legal & Regulatory Compliance
Online Behavioral Advertising (OBA) Legal & Regulatory ComplianceOnline Behavioral Advertising (OBA) Legal & Regulatory Compliance
Online Behavioral Advertising (OBA) Legal & Regulatory Compliance
 
Legal regulation ecommerce_2015
Legal regulation ecommerce_2015Legal regulation ecommerce_2015
Legal regulation ecommerce_2015
 
Pbm thomas eggar_kimwalker
Pbm thomas eggar_kimwalkerPbm thomas eggar_kimwalker
Pbm thomas eggar_kimwalker
 
PCI, ADA and COPPA - OH MY! Managing Regulatory Compliance - Magento Imagine ...
PCI, ADA and COPPA - OH MY! Managing Regulatory Compliance - Magento Imagine ...PCI, ADA and COPPA - OH MY! Managing Regulatory Compliance - Magento Imagine ...
PCI, ADA and COPPA - OH MY! Managing Regulatory Compliance - Magento Imagine ...
 
Privacy & Security Challenges Faced By Financial Services In The Digital Age
Privacy & Security Challenges Faced By Financial Services In The Digital AgePrivacy & Security Challenges Faced By Financial Services In The Digital Age
Privacy & Security Challenges Faced By Financial Services In The Digital Age
 
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...
Cybersecurity Legal and Compliance Issues Business & IT Leaders Must Know -- ...
 
Ekyc.xyz
Ekyc.xyzEkyc.xyz
Ekyc.xyz
 
Data Privacy Trends in 2021: Compliance with New Regulations
Data Privacy Trends in 2021: Compliance with New RegulationsData Privacy Trends in 2021: Compliance with New Regulations
Data Privacy Trends in 2021: Compliance with New Regulations
 
Countdown to CCPA: 48 Days Until Your IBM i Data Needs to Be Secured
Countdown to CCPA: 48 Days Until Your IBM i Data Needs to Be SecuredCountdown to CCPA: 48 Days Until Your IBM i Data Needs to Be Secured
Countdown to CCPA: 48 Days Until Your IBM i Data Needs to Be Secured
 
Data breach protection from a DB2 perspective
Data breach protection from a DB2 perspectiveData breach protection from a DB2 perspective
Data breach protection from a DB2 perspective
 

Plus de Onkar Sule

Understanding e commerce
Understanding e commerceUnderstanding e commerce
Understanding e commerceOnkar Sule
 
Nordin malaysia
Nordin malaysiaNordin malaysia
Nordin malaysiaOnkar Sule
 
Maloney slides
Maloney slidesMaloney slides
Maloney slidesOnkar Sule
 
Introduction to ecommerce
Introduction to ecommerceIntroduction to ecommerce
Introduction to ecommerceOnkar Sule
 
E commerce052503
E commerce052503E commerce052503
E commerce052503Onkar Sule
 
Ecommerce overview
Ecommerce overviewEcommerce overview
Ecommerce overviewOnkar Sule
 
E commerce (1)
E commerce (1)E commerce (1)
E commerce (1)Onkar Sule
 
Am chamtaipei sept2004
Am chamtaipei sept2004Am chamtaipei sept2004
Am chamtaipei sept2004Onkar Sule
 
A realistic look at e commerce
A realistic look at e commerceA realistic look at e commerce
A realistic look at e commerceOnkar Sule
 

Plus de Onkar Sule (20)

Understanding e commerce
Understanding e commerceUnderstanding e commerce
Understanding e commerce
 
Tisc99keynote
Tisc99keynoteTisc99keynote
Tisc99keynote
 
Part i
Part iPart i
Part i
 
Overview
OverviewOverview
Overview
 
Nordin malaysia
Nordin malaysiaNordin malaysia
Nordin malaysia
 
Maloney slides
Maloney slidesMaloney slides
Maloney slides
 
I walden
I waldenI walden
I walden
 
Introduction to ecommerce
Introduction to ecommerceIntroduction to ecommerce
Introduction to ecommerce
 
E commerce052503
E commerce052503E commerce052503
E commerce052503
 
Ecommerce2
Ecommerce2Ecommerce2
Ecommerce2
 
E commerce
E commerceE commerce
E commerce
 
Ecommerce overview
Ecommerce overviewEcommerce overview
Ecommerce overview
 
Ecommerce (2)
Ecommerce (2)Ecommerce (2)
Ecommerce (2)
 
E commerce (1)
E commerce (1)E commerce (1)
E commerce (1)
 
Ecommerce (1)
Ecommerce (1)Ecommerce (1)
Ecommerce (1)
 
Ec elim purch
Ec elim purchEc elim purch
Ec elim purch
 
Conklin
ConklinConklin
Conklin
 
Conklin
ConklinConklin
Conklin
 
Am chamtaipei sept2004
Am chamtaipei sept2004Am chamtaipei sept2004
Am chamtaipei sept2004
 
A realistic look at e commerce
A realistic look at e commerceA realistic look at e commerce
A realistic look at e commerce
 

Dernier

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsRoshan Dwivedi
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking MenDelhi Call girls
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Servicegiselly40
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Paola De la Torre
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking MenDelhi Call girls
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024Rafal Los
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024The Digital Insurer
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Allon Mureinik
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...apidays
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityPrincipled Technologies
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsEnterprise Knowledge
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxKatpro Technologies
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonetsnaman860154
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Drew Madelung
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Scriptwesley chun
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsMaria Levchenko
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationSafe Software
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonAnna Loughnan Colquhoun
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreternaman860154
 

Dernier (20)

Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live StreamsTop 5 Benefits OF Using Muvi Live Paywall For Live Streams
Top 5 Benefits OF Using Muvi Live Paywall For Live Streams
 
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men08448380779 Call Girls In Greater Kailash - I Women Seeking Men
08448380779 Call Girls In Greater Kailash - I Women Seeking Men
 
CNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of ServiceCNv6 Instructor Chapter 6 Quality of Service
CNv6 Instructor Chapter 6 Quality of Service
 
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
 
08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men08448380779 Call Girls In Friends Colony Women Seeking Men
08448380779 Call Girls In Friends Colony Women Seeking Men
 
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
 
Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024Axa Assurance Maroc - Insurer Innovation Award 2024
Axa Assurance Maroc - Insurer Innovation Award 2024
 
Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)Injustice - Developers Among Us (SciFiDevCon 2024)
Injustice - Developers Among Us (SciFiDevCon 2024)
 
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law DevelopmentsTrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
TrustArc Webinar - Stay Ahead of US State Data Privacy Law Developments
 
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
Apidays Singapore 2024 - Building Digital Trust in a Digital Economy by Veron...
 
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivityBoost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
 
IAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI SolutionsIAC 2024 - IA Fast Track to Search Focused AI Solutions
IAC 2024 - IA Fast Track to Search Focused AI Solutions
 
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptxFactors to Consider When Choosing Accounts Payable Services Providers.pptx
Factors to Consider When Choosing Accounts Payable Services Providers.pptx
 
How to convert PDF to text with Nanonets
How to convert PDF to text with NanonetsHow to convert PDF to text with Nanonets
How to convert PDF to text with Nanonets
 
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
Strategies for Unlocking Knowledge Management in Microsoft 365 in the Copilot...
 
Automating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps ScriptAutomating Google Workspace (GWS) & more with Apps Script
Automating Google Workspace (GWS) & more with Apps Script
 
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed textsHandwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
 
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time AutomationFrom Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
 
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt RobisonData Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
 
Presentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreterPresentation on how to chat with PDF using ChatGPT code interpreter
Presentation on how to chat with PDF using ChatGPT code interpreter
 

Hengesbaugh

  • 1. E-Commerce Latest Developments in Consumer Privacy Brian Hengesbaugh Baker & McKenzie (Chicago office) 312-861-3077 brian.hengesbaugh@bakernet.com www.bakernet.com/ecommerce
  • 2. E-Commerce “BIG PICTURE” • State Law Developments • Information Security Programs • Privacy Considerations in Developing and Managing a Website Baker & McKenzie -- Global E- Commerce Law
  • 3. E-Commerce STATE LAW DEVELOPMENTS • Legal Context – GLB, FCRA, HIPAA all minimum standards – States invited to do more, so long as not “inconsistent” – States as laboratories Baker & McKenzie -- Global E- Commerce Law
  • 4. E-Commerce Post September 11 • Legislative Interest in Privacy – 750+ state privacy bills – 50+ state financial privacy bills – 85+ federal privacy bills Baker & McKenzie -- Global E- Commerce Law
  • 5. E-Commerce Vermont Regulation • Financial and Health Information • Opt-in for nonaffiliate sharing • Legal challenge by ACLI, AIA, and more – exceeds authority – violates intent of law • Chances of success??? Baker & McKenzie -- Global E- Commerce Law
  • 6. E-Commerce New Mexico Regulation • Financial and Health Information • Opt-in for nonaffiliate sharing • Any legal challenge? Baker & McKenzie -- Global E- Commerce Law
  • 7. E-Commerce California, Illinois, New York, and others considering more – Opt-in measures for nonaffiliate sharing – Limits on sharing within affiliated groups (e.g. prior CA bill) – Driving force for federal preemption? – Financial privacy commission and moratorium on new state laws (HR 3068) Baker & McKenzie -- Global E- Commerce Law
  • 8. E-Commerce California -- Social Security Numbers • Restrictions on: – transmitting SSNs over Internet – printing SSNs on mailed materials • July 1, 2002 implementation, but grandfather for existing practices if: – continuous – notice of right to opt-out – individual does not opt-out Baker & McKenzie -- Global E- Commerce Law
  • 9. E-Commerce INFORMATION SECURITY PROGRAMS • Final Interagency Guidelines Establishing Standards for Safeguarding Customer Information (February 1, 2001) • FTC Proposed Standards for Safeguarding Customer Information (Comment Period Closed October 9, 2001) Baker & McKenzie -- Global E- Commerce Law
  • 10. E-Commerce Focus on Process • Due diligence is 90% of battle (checklist) • STEP 1: Conduct comprehensive assessment that examines: – internal and external threats – sensitivity of data – potential damage Baker & McKenzie -- Global E- Commerce Law
  • 11. E-Commerce Focus on Process (cont.) • STEP 2: Assess sufficiency of existing policies and procedures: – access controls on systems and encryption – physical access restrictions – automatic reviews of system modifications – technological and environmental hazards – Subjective Standard: . . adopt those measures the bank considers appropriate Baker & McKenzie -- Global E- Commerce Law
  • 12. E-Commerce Focus on Process (cont.) • STEP 3: Take appropriate organizational and administrative actions: – written information security program – involve board of directors – implement a system for regular testing – information security officer – service provider arrangements* Baker & McKenzie -- Global E- Commerce Law
  • 13. E-Commerce Service Provider Arrangements • Due diligence in selecting SPs • Establish contract to meet “objectives” of Guidelines* • Where appropriate, ongoing monitoring (or review SAS 70 or similar report) Baker & McKenzie -- Global E- Commerce Law
  • 14. E-Commerce Contract with SPs • Key Issues: – Appropriate measures to meet “objectives” of Guidelines (full compliance not required) (e.g., board of directors) – Overly strict limits on use and disclosure – Scope of “information” covered Baker & McKenzie -- Global E- Commerce Law
  • 15. E-Commerce WEBSITE PRIVACY ISSUES • Context: entire privacy and consumer protection legal framework PLUS online application of that framework • FTC and State AG dedication to enforcement Baker & McKenzie -- Global E- Commerce Law
  • 16. E-Commerce Website Privacy Issues • Passive and active collection • Relationships with third parties • Satisfying GLB notice requirements • Jurisdiction Baker & McKenzie -- Global E- Commerce Law
  • 17. E-Commerce Passive and Active Collection • Passive collections -- cookies, web bugs, IP addresses, clickstream data, etc. – “wooden” obligations to notify under GLB – broader notification obligations under consumer protection statutes (e.g. Michigan AG and New Jersey AG) • Active collections – “unfriendly” GLB language for policy Baker & McKenzie -- Global E- Commerce Law
  • 18. E-Commerce Relationships with Third Parties • Support Services – Internet Service Providers – Web hosting services – Application Service Providers – Data analysis firms (Toys R Us) – *GLB security guidelines apply* Baker & McKenzie -- Global E- Commerce Law
  • 19. E-Commerce Relationships with Third Parties (cont.) • Marketing/ Advertisers – 3rd party advertisers (NAI principles) – Framing and co-branded websites – Joint marketers Baker & McKenzie -- Global E- Commerce Law
  • 20. E-Commerce Satisfying GLB Notice Requirements Electronically – Reasonable expectation of receipt – Customer agrees – Obtains financial product or service electronically – Retention and accessibility Baker & McKenzie -- Global E- Commerce Law
  • 21. E-Commerce Jurisdiction • Reach of New Mexico and Vermont • Zippo analysis • How do you know who you are dealing with? Baker & McKenzie -- Global E- Commerce Law
  • 22. E-Commerce General Website Tips • Know what you are collecting • Know what your service providers are doing • Disclose, disclose, disclose • Keep it simple; avoid flowery language • Keep it flexible; avoid the “never” trap • Be mindful of jurisdiction Baker & McKenzie -- Global E- Commerce Law
  • 23. E-Commerce Keep track of privacy developments at: www.bakernet.com/ecommerce www/bakernet.com/e-law (weekly newsletter) Baker & McKenzie One E-Commerce World. One Firm. Connected. For companies moving with change