Blog - Page 9

Legal articles in easy to understand language.

Anonymized and Pseudonymized Data: Are They Subject to Data Subject Requests?

Anonymized and Pseudonymized Data: Are They Subject to Data Subject Requests?

Privacy laws like the GDPR and CCPA/CPRA grant data subjects several rights over their personal data, but what happens when that data is anonymized or pseudonymized? Do data subject rights still apply, and if so, to what extent? The legal implications of these two de-identification methods differ fundamentally. Truly anonymized data...

Data Privacy in M&A Transactions: Due Diligence Risks and Red Flags

Data Privacy in M&A Transactions: Due Diligence Risks and Red Flags

During mergers and acquisitions (M&A), one company joins or purchases another company. In the process, a lot of information is shared, including the personal information of customers or clients, as well as information on employees. This information-sharing process, called due diligence, raises cyber security and privacy risks for personal data. A number...

How to Deny a Data Subject Request (Legally): Lawful Grounds, Template Language, and Documentation

How to Deny a Data Subject Request (Legally): Lawful Grounds, Template Language, and Documentation

Under privacy laws like the GDPR and CCPA/CPRA, data subjects can submit formal requests to exercise their user rights over their personal information. But these laws also allow businesses to deny those requests under specific, lawful circumstances. If someone bombards your business with frivolous requests, tries to extort a payout, or...

Are You Liable for Your Vendor's GDPR Violations? Understanding Joint vs. Independent Controller Risk

Are You Liable for Your Vendor's GDPR Violations? Understanding Joint vs. Independent Controller Risk

If your business operates in the European Union (EU) or handles EU residents' personal data, you're likely familiar with the General Data Protection Regulation (GDPR). This regulation sets strict rules for how personal data must be processed, stored, and transferred. But what happens when you outsource tasks to third-party vendors,...

Auditing Software License Compliance: A Checklist for In-House Counsel

Auditing Software License Compliance: A Checklist for In-House Counsel

In-house counsel plays an important role in setting up regular internal audits of software license compliance to help prevent legal liability. Their responsibilities can include identifying risks, monitoring third-party code use, and ensuring compliance with licensing terms. This article explains what software license compliance audits are and why you need them,...

AI Tools and Licensing: Who Owns the Output?

AI Tools and Licensing: Who Owns the Output?

Intellectual property law is based on the idea of human originality, and ownership of creative works. But the creation of artificial intelligence (AI), and its ability to generate creative works in tandem with humans, has raised a number of questions about how these laws apply. Legal questions have also arisen in...