One of the country’s first privacy lawyers, Milo Cividanes focuses his practice on assisting companies to develop and implement regulatory, government relations, and litigation strategies to preserve and expand their use of data in connection with 21st century business models. He has repeatedly been acknowledged globally as a leading authority on data protection and as an effective problem solver. Milo co-leads the eCommerce, Privacy, and Cybersecurity Group, which has been recognized as one of the top privacy practices and top advertising practices in the United States.

Keep Calm and Carry OnBrexit is likely to cause years of future uncertainty around data protection, including the legal mechanisms for data transfer to countries outside of the United Kingdom (“U.K.”). In the short term, there will be little to no impact on existing data transfer solutions implemented by companies that rely on the U.K. as an entry point into the European Union (“EU”). In the mid-term, with the scheduled implementation of the EU-U.S. Privacy Shield (“Privacy Shield”) in 2016 and the EU’s General Data Protection Regulation (“GDPR”) in 2018, the U.K. will either continue to be subject to EU laws by extending its membership in the European Economic Area (“EEA”) or it will create its own national data protection legislation. Although companies may have to rethink data transfer agreements, this will be part of a long term process as the future of U.K. data protection continues to unfold.

Short Term—What to Expect in the Next 12 Months 
Continue Reading Keep Calm and Carry On: Data Protection Post Brexit

For now, online retailers can rest assured that they are not liable under California’s Song-Beverly Credit Card Act if they require customers to enter their addresses or phone numbers in order to complete downloadable online purchases.  On February 4, 2013, the California Supreme Court held in Apple Inc. v. Superior Court (Krescent) that the Credit

Just in time for Christmas, the Federal Trade Commission (“FTC”) has unveiled its long-anticipated update to the Children’s Online Privacy Protection Rule (“COPPA Rule”).  The COPPA Rule, which has been in place since 1999, imposes a variety of privacy requirements on “operators” of websites and online services that are “directed to children” under

Carrying out a plan announced earlier this year, the Federal Trade Commission (“FTC”) convened a day-long public workshop on “The Big Picture: Comprehensive Online Data Collection” on December 6, 2012.  The workshop was intended to examine the practices and privacy implications of “comprehensive” data collection about consumers’ online activities.  Data collection capabilities of entities like

The Federal Trade Commission (“FTC”) has released a new set of proposed amendments in its ongoing review of its Children’s Online Privacy Protection Act (“COPPA”) regulations. These amendments would alter key definitions in the COPPA regulations, modifying the FTC’s original proposal from September 2011. If finalized, the FTC’s proposals to date will significantly change who

Yesterday, the FTC convened a day-long public workshop to discuss updating its “Dot Com Disclosures” guidance on presenting online advertising disclosures. The FTC is considering whether it should overhaul this guidance, which dates to 2000, to address current trends such as social media and mobile advertising. The workshop also included a panel devoted to mobile