Hintze Law has been recognized as a ranked firm in The Legal 500 2024 US Cyber Law rankings, including for data privacy and data protection. Hintze Law is the only boutique law firm that is ranked in this category for 2024, and we are grateful to our clients for the references and support they provided to make this recognition possible.
Read MoreBy Sam Castic, Clara De Abreu E Souza, and Charlotte Lunday
On June 7, 2024, the New York legislature passed the New York Child Data Protection Act (S.B. S7695B). Governor Hochul Once celebrated its passage in a recent press release and is expected to sign the Act. Once signed, it will go into effect one year later.
Read MoreWe’re pleased to share that Hintze Law and attorneys at the firm have been recognized once again by Chambers & Partners for expertise in a number of Privacy and Data Security areas in the 2024 Chambers USA Guide. These recognitions include Hintze Law’s fourth year being ranked as an Elite Law Firm for Privacy and Data Security – USA Nationwide. One of Hintze Law’s clients that Chambers interviewed shared that "Hintze's team has unique experience that allows them to dig into complex issues and provide practical, actionable advice."
Read MoreBy Mike Hintze and Felicity Slater
With just six days left in the state’s 2024 legislative session, the New York Legislature is considering a health data privacy bill that would dramatically impact companies that handle data related to health or wellness. Companies and other organizations should watch this bill carefully and understand its highly disruptive and costly implications should it pass the legislature and be signed by the governor.
Read MoreHintze Law continuously tracks privacy and security updates around the world to bring you a regular update of the latest developments. Below is a snapshot of updates from the last month.
Read MoreBy Mike Hintze
Last week, the Washington State Office of the Attorney General (OAG) updated its guidance on the Washington My Health My Data Act (MHMDA). Specifically, the OAG added an eighth question and answer addressing whether information about a consumer purchasing non-prescription medication would be considered “consumer health data” subject to the law.
This post explains the shortcomings of this new guidance. And in doing so, it takes a long overdue deep dive into how MHMDA treats personal information related to prescription and over-the-counter medications. It concludes that while this guidance may provide some comfort to entities regulated under MHMDA that process information about the purchase of non-prescription medications like aspirin or vitamins, it is only part of a bigger picture that should be considered along with the statutory text and other factors in determining an appropriately risk-based approach to complaince with this challenging law.
Read MoreBy Destiny Ginn
On April 17, 2024, The European Data Protection Board (‘EDPB’) issued an opinion on whether “consent or pay” models used by large online platform services are valid consent mechanisms under the GDPR. The EDPB stated, “In most cases, it will not be possible for large online platforms to comply with requirements for valid consent if they confront users only with a binary choice between consenting to the processing of personal data for behavioral advertising purposes and paying a fee.” If adopted, this opinion would ultimately change how valid legitimate consent is obtained by large and possibly small businesses.
Read MoreOn April 6th, the Maryland Legislature passed the Maryland Age-Appropriate Design Code (“MD AADC”), sending the bill to Governor Moore’s desk. If signed, the MD AADC would take effect on October 1, 2024, with data protection impact assessments required by April 1, 2026.
Read MoreBy Felicity Slater and Kate Black in partnership with Future of Privacy Forum’s Jordan Wrigley, and Niharika Vattikonda
Washington state's My Health My Data Act and Nevada's Senate Bill 370 took effect 31 March, prompting entities that collect "consumer health data," as broadly defined by these laws, to assess their data collection, use and sharing through a novel lens. A unique requirement born out of these laws requires that entities analyze which elements of their health data collection, use and sharing are "necessary" to provide products or services requested by their consumers.
Read MoreOn March 18, 2024, the Office for Civil Rights (OCR) at the Department of Health and Human Services (HHS) revised its guidance on the "Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates."
Read MoreWe’re excited to announce our four-part privacy CLE series with the Washington State Bar Association! Over the next few weeks, the upcoming sessions will be:
Read MoreBy Jennifer Ruehr, Sam Castic, and Felicity Slater
There has been a recent uptick in class action litigation brought under the California Invasion of Privacy Act (“CIPA”) (Cal. Penal Code §§ 630 et seq). Recent litigation has focused on three sections of CIPA.
Read MoreHintze Law PLLC is pleased to announce that Chambers & Partners has once again recognized Hintze Law in its 2024 Global USA Privacy & Data Security rankings. Hintze’s Health + Biotech Group was also recognized in Chamber’s 2024 Global USA Privacy & Data Security Healthcare.
Read MoreHintze Law PLLC is thrilled to announce that Felicity Slater has joined the firm as part of our growing team of talented AI, privacy, and cybersecurity attorneys. Felicity brings deep experience and knowledge of privacy law, legislation, and policy to the firm.
Read MoreOn January 25, 2024, the Federal Trade Commission’s Office of Technology hosted a Tech Summit on Artificial Intelligence, which offered insights into the evolving landscape of AI. The discussions highlighted the current challenges and future direction of AI regulation, especially concerning consumer protection and privacy.
Read MoreSeattle, January 16, 2024: Hintze Law, PLLC announced today that, effective January 2024, Alex Schlight has been promoted to partner.
Read More
