Federal Employment Law Articles

HR - Privacy & Surveillance

Articles Discussing Privacy And Surveillance In The Workplace.

For Law Firms

Get your firm featured on ELINFONET

We feature your alerts & events and send the clicks straight to your site.

Become an affiliate

We Get Privacy — Episode 18: Preparing for the CCPA’s New Risk Assessment Rules

Jackson Lewis P.C.·

CCPA requirements are turning employers’ everyday data activity into potential compliance exposure. In this episode, Jackson Lewis Privacy, AI and Cybersecurity co-leaders Joe Lazzarotti and Damon Silver discuss the CCPA-defined “high-risk” activities that may trigger risk assessment obligations and offer practical guidance for building a workable assessment process, coordinating with vendors and documenting decisions in ways that supports compliance.

FTC Begins Enforcement of the TAKE IT DOWN Act: New Risks and Tools for Businesses

Ogletree Deakins·

On May 19, 2026, the Federal Trade Commission (FTC) began enforcement of the Tools to Address Known Exploitation by Immobilizing Technological Deepfakes on Websites and Networks Act (TAKE IT DOWN Act), which requires certain covered platforms to remove nonconsensual intimate photos or videos shared

Drafting a GDPR -compliant Data Processing Agreement

Jackson Lewis P.C.·

Service providers often receive or access a customer’s personal information when performing contracted services. In the employment context, service providers may include payroll processors, Human Resource Information System (HRIS) or Applicant Tracking System (ATS) platforms, outsourced IT support,

Laptops at the Ballpark: Concerns for Employers Managing Remote Workers

Ogletree Deakins·

Baseball is often referred to as “America’s pastime,” but for some baseball fans, it may double as worktime. While employers have long known that workers occasionally play hooky to attend afternoon ballgames, viral videos and photos now show employees openly using laptops in the stands, raising lega

Moving Beyond Checkbox Diligence with SOC Reports

Jackson Lewis P.C.·

Escalating vendor cyber risk, tighter regulatory expectations and fast-moving AI-driven threats increasingly make checkbox diligence insufficient. In this episode, 360 Advanced’s Director of Compliance Strategy, Eric Ratcliffe, joins co-hosts Damon Silver and Joe Lazzarotti to discuss system and org

New Surveillance Tools in Retail Stores Pose Legal Risks

Ogletree Deakins·

As the rate of retail thefts has increased in recent years, retailers have turned to more sophisticated technologies to prevent crime. The newer surveillance tools may implicate privacy laws, depending on the state and the circumstances.

The Hidden Legal Minefield: Compliance Concerns with AI Smart Glasses, Part 4: Data Security, Breach Notification, and Third-Party AI Processing Risks

Jackson Lewis P.C.·

As we have discussed in prior posts, AI-enabled smart glasses are rapidly evolving from niche wearables into powerful tools with broad workplace appeal — but their innovative capabilities bring equally significant legal and privacy concerns. In this Part 4, we consider the potentially vast amount of

The Hidden Legal Minefield: Compliance Concerns with AI Smart Glasses, Part 3 –Privacy, Surveillance, and Labor Law Violations

Jackson Lewis P.C.·

As we have discussed in prior posts, AI-enabled smart glasses are rapidly evolving from niche wearables into powerful tools with broad workplace appeal — but their innovative capabilities bring equally significant legal and privacy concerns. In Part 1, we addressed compliance issues that arise when

We Get Privacy for Work — Episode 13: Demystifying Data Mining

Jackson Lewis P.C.·

When an organization’s data systems are compromised, they face the daunting challenge of sorting through mountains of sensitive data under intense regulatory pressure. In this episode of We Get Privacy for Work, hosts Joe Lazzarotti and Damon Silver are joined by Matt Morocco, Director and Cyber Pra

Think Before You Click: Employers Could Violate Federal Law by Reading Employee Emails

Ogletree Deakins·

The federal Stored Communications Act (SCA) protects the privacy of personal emails and social media accounts that employees may access with company-owned devices. It provides for both civil and potentially criminal penalties for violations.

We get Privacy for work — Episode 12: Managing Competing Priorities: Data Breach Notification Laws and Trade Secrets

Jackson Lewis P.C.·

In the event of the disclosure of business trade secrets, organizations are often so overwhelmed that they overlook potential data breach notification requirements. The potential exposure of trade secrets is increasingly becoming intertwined with the release of legally protected personal information

Medical Debt in Credit Reports: What Employers Need to Know Amid Legal Shifts

Ogletree Deakins·

With health care costs rising, recent legal developments have altered how medical debt shows up on credit reports that employers conduct on job applicants and employees. Employers may want to stay abreast of the changing legal landscape and exercise caution in how they use information about medical

Time for HR Professionals and In-House Employment Counsel to Add HR Data Privacy Risk Assessments to Their Repertoire

Littler·

Time for HR Professionals and In-House Employment Counsel to Add HR Data Privacy Risk Assessments to Their Repertoire Effective January 1, 2026, employers subject to the California Consumer Privacy Act (as amended by the California Privacy Rights Act) (CCPA) will be required to conduct a privacy ris

We get Privacy for work — Episode 11: Beyond the Checkbox: Engaging Your Workforce in Privacy and Data Security Training

Jackson Lewis P.C.·

Oftentimes, organizations view training simply as another obligation; however, tailored and hands-on privacy and cybersecurity training are essential to safeguard data and ensure operations run smoothly in the event of a breach.

We Get Privacy for Work — Episode 10: Employee Monitoring Tools: Too Good to Be True?

Jackson Lewis P.C.·

Lured by the promise of better productivity and compliance with company policies, employee monitoring tools are gaining a lot of traction among employers. On this episode of We get Privacy for work, we discuss the important privacy and legal implications that organizations must consider before imple

We Get Privacy for Work — Episode 8: The Surge in Data Breach Lawsuits: Trends and Tactics

Jackson Lewis P.C.·

Class action lawsuits in response to data breaches have skyrocketed as plaintiffs look to take advantage of courts’ perceived leniency regarding standing.

We get Privacy for work — Episode 7: What is a WISP and Why Your Organization Must Have One

Jackson Lewis P.C.·

Written Information Security Programs, commonly referred to as WISPs, are critical plans to have in place – not only to efficiently and effectively respond to ransomware attacks and data breaches when they occur – but to maintain compliant privacy practices for your organization.

We get Privacy for work – Episode 6: The Potential Privacy Risks Inherent to Mergers and Acquisitions

Jackson Lewis P.C.·

To say mergers and acquisitions present significant risk is an understatement; however, additional vulnerabilities are being exposed as bad actors threaten to exploit privacy and data security leaks during the transition.

We get Privacy for work: The Privacy Pitfalls of a Remote Workforce

Jackson Lewis P.C.·

Remote work has given employers and employees pathbreaking flexibility, but it has also raised a host of data and employee privacy concerns.

We get Privacy for work: The Increasing Importance of Data Mapping

Jackson Lewis P.C.·

Knowing what data your organization is collecting and from whom is critical to effectively respond to cybersecurity data breaches and prepare for future incidents.