The federal Stored Communications Act (SCA) protects the privacy of personal emails and social media accounts that employees may access with company-owned devices. It provides for both civil and potentially criminal penalties for violations.
Articles Discussing Privacy And Surveillance In The Workplace.
We get Privacy for work — Episode 12: Managing Competing Priorities: Data Breach Notification Laws and Trade Secrets
In the event of the disclosure of business trade secrets, organizations are often so overwhelmed that they overlook potential data breach notification requirements. The potential exposure of trade secrets is increasingly becoming intertwined with the release of legally protected personal information, and it is incumbent on organizations to thoroughly respond to incidents.
Medical Debt in Credit Reports: What Employers Need to Know Amid Legal Shifts
With health care costs rising, recent legal developments have altered how medical debt shows up on credit reports that employers conduct on job applicants and employees. Employers may want to stay abreast of the changing legal landscape and exercise caution in how they use information about medical debt in making
Time for HR Professionals and In-House Employment Counsel to Add HR Data Privacy Risk Assessments to Their Repertoire
Time for HR Professionals and In-House Employment Counsel to Add HR Data Privacy Risk Assessments to Their Repertoire
Effective January 1, 2026, employers subject to the California Consumer Privacy Act (as amended by the California Privacy Rights Act) (CCPA) will be required to conduct a privacy risk assessment before engaging
We get Privacy for work — Episode 11: Beyond the Checkbox: Engaging Your Workforce in Privacy and Data Security Training
Oftentimes, organizations view training simply as another obligation; however, tailored and hands-on privacy and cybersecurity training are essential to safeguard data and ensure operations run smoothly in the event of a breach.
We Get Privacy for Work — Episode 8: The Surge in Data Breach Lawsuits: Trends and Tactics
Class action lawsuits in response to data breaches have skyrocketed as plaintiffs look to take advantage of courts’ perceived leniency regarding standing.
We get Privacy for work — Episode 7: What is a WISP and Why Your Organization Must Have One
Written Information Security Programs, commonly referred to as WISPs, are critical plans to have in place – not only to efficiently and effectively respond to ransomware attacks and data breaches when they occur – but to maintain compliant privacy practices for your organization.
We get Privacy for work – Episode 6: The Potential Privacy Risks Inherent to Mergers and Acquisitions
To say mergers and acquisitions present significant risk is an understatement; however, additional vulnerabilities are being exposed as bad actors threaten to exploit privacy and data security leaks during the transition.
We get Privacy for work: The Privacy Pitfalls of a Remote Workforce
Remote work has given employers and employees pathbreaking flexibility, but it has also raised a host of data and employee privacy concerns.
Managing the Managers: Governance Risks and Considerations for Employee Monitoring Platforms
In today’s hybrid and remote work environment, organizations are increasingly turning to digital employee management platforms that promise productivity insights, compliance enforcement, and even behavioral analytics. These tools—offered by a growing number of vendors—can monitor everything from application usage and website visits to keystrokes, idle time, and screen recordings. Some
We get Privacy for work: The Increasing Importance of Data Mapping
Knowing what data your organization is collecting and from whom is critical to effectively respond to cybersecurity data breaches and prepare for future incidents.
We get Privacy for work: Defining Reasonable Safeguards
Many federal and state laws require companies to have reasonable safeguards in the event of a data breach, but do not clarify what those protections actually are.
Firings at the US Privacy and Civil Liberties Oversight Board and Potential Impact on Transatlantic Data Transfers
President Trump recently fired the three democrats on the Privacy and Civil Liberties Oversight Board (PCLOB). Since these firings bring the Board to a sub-quorum level, they have the potential to significantly disrupt transatlantic transfers of employee and other personal data from the EU to the US under the EU-US
Tech Tools + Privacy Considerations
“It’s this constant sense of governance — risk and compliance processes that should take place whenever you’re dealing with these technologies. If there was one goal I would recommend for next year, that would be more collaboration between the stakeholders [IT, legal, HR, the business area deploying the tech] when rolling out these kinds of tools.”
FAQs for Schools and Persons Affected By the PowerSchool Data Breach
A massive data breach hit one of the country’s largest education software providers. According to EducationWeek, PowerSchool provides school software