Search

Search form

Joseph J. LazzarottiBlog Posts

See all

  • Amendment to CMIA Regarding Mental Health and Mental Health Apps

    California passed Assembly Bill (AB) 2089, which amends the Confidentiality of Medical Information Act (CMIA) to include mental health application information under the definition of medical information. Under the revisions to CMIA, mental health application information is defined as information related to a consumer’s inferred or diagnosed mental health or substance use disorder, as defined in... Continue Reading
    September 29, 2022
  • Amendment to CMIA Regarding Mental Health and Mental Health Apps

    California passed Assembly Bill (AB) 2089, which amends the Confidentiality of Medical Information Act (CMIA) to include mental health application information under the definition of medical information. Under the revisions to CMIA, mental health application information is defined as information related to a consumer’s inferred or diagnosed mental health or substance use disorder, as defined...
    September 29, 2022
  • California Consumer Privacy Act FAQs: Employment Information

    1. What’s changing? Under the current version of the California Consumer Privacy Act (“CCPA”), an employer’s obligations related to the personal information it collects from employees, applicants, and contractors residing in California (collectively, “Employment Information”) are relatively limited.  Specifically, it needs to (1) provide those individuals a “notice at collection” that discloses the categories of... Continue Reading
    September 27, 2022
  • California Consumer Privacy Act FAQs: Employment Information

    1. What’s changing? Under the current version of the California Consumer Privacy Act (“CCPA”), an employer’s obligations related to the personal information it collects from employees, applicants, and contractors residing in California (collectively, “Employment Information”) are relatively limited.  Specifically, it needs to (1) provide those individuals a “notice at collection” that discloses the categories of...
    September 27, 2022
  • California Adopts Law the Seeks to Protect Children’s Online Privacy

    California’s Governor signed Assembly Bill (AB) 2273, the first of its kind state legislation that requires businesses that provide online services, products, or features likely to be accessed by children to comply with specified standards. Read the full article at Jackson Lewis’ Workplace Privacy, Data Management & Security Report. Continue Reading
    September 15, 2022
  • California Adopts Law the Seeks to Protect Children’s Online Privacy

    California’s Governor signed Assembly Bill (AB) 2273, the first of its kind state legislation that requires businesses that provide online services, products, or features likely to be accessed by children to comply with specified standards. Building on federal protections for children online under the Children’s Online Privacy Protection Act (COPPA), AB 2273 enacts the California...
    September 15, 2022
  • First California Consumer Privacy Act Enforcement Action and Settlement

    August 24, 2022, marked a milestone for the California Consumer Privacy Act (CCPA), the California Attorney General announced the first enforcement and settlement against beauty retailer Sephora. Since July 2022, the California Attorney General’s (AG) office conducted an investigative sweep of online retailers to check compliance with the CCPA and sent out over 100 notices...
    September 7, 2022
  • Employers Get Ready – CCPA Employee and B2B Exemptions End, Expanded Privacy Compliance Begins in 2023

    For the past few years, California’s comprehensive privacy law known as the California Consumer Privacy Act (“CCPA”) included an important partial exemption for employees, applicants, and independent contractors (collectively, “workforce members”). The California Privacy Rights Act, which amended the CCPA, extended the exemption through December 31, 2022. While many expected the exemption would be extended,...
    September 2, 2022
  • New York State Bar Adds Cybersecurity, Privacy, and Data Protection as New CLE Category

    On August 17, 2022, New York announced an amendment to the Continuing Legal Education (CLE) Program Rules, which adds a requirement for attorneys to complete at least one CLE credit hour in Cybersecurity, Privacy, and Data Protection as part of fulfilling their CLE requirements. New York barred attorneys will be required to comply starting July...
    August 25, 2022
  • Recent HIPAA Settlement Offers Lessons on Data Disposal and the Meaning of PHI

    A $300,640 settlement announced yesterday by the Office for Civil Rights (OCR) provides important reminders about HIPAA Privacy Rule and data privacy practices generally: robust data disposal practices are critical and “protected health information” (PHI) is not limited to diagnosis or particularly sensitive information. The OCR’s settlement involved a New England dermatology practice that reported...
    August 24, 2022

Pages