Skip to main content
All Posts By

Daniel Rosenzweig

NT Analyzer Navigates Virginia’s New Privacy Law

By and Insights

Virginia recently enacted its own data protection/privacy law and like its European and Californian predecessors, the technical piece is key. Requirements Like the GDPR and CCPA, the Consumer Data Protection Act (“CDPA”), which goes into effect on January 1, 2023, broadly defines “personal data” as “any information that is linked or reasonably linkable to an identified or identifiable natural person.”…

Read More

Solving Apple’s New App Privacy Requirement

By and Insights

Starting December 8, 2020, Apple will require developers to provide extensive, granular information about their app’s privacy practices, such as the type of data collected from users, third party data usage, and specific purpose of collection. Presumably, the failure to disclose this detailed information to Apple will get new apps and updates to existing apps blocked from the app store….

Read More

101 Problems and Schrems Ain’t One

By and Insights

Eureka! After burning the midnight oil, we’ve built an automated scanner to identify and sort the Schrems II risk of data flows for further legal handling. The scanner uses more than 20 different data points derived from network metadata to scan and classify data flows based on mass surveillance risk under the NSA’s so-called “Upstream” and “Downstream” data collection programs….

Read More

From the Development Laboratory: Schrems II and Detection of Cross-Border Data Transfers

By and Insights

The Court of Justice for the European Union (CJEU) recently issued an opinion (Schrems II) that invalidated the US-EU Privacy Shield. This presents the obvious technical question, “which of my data transfers are to the US?” For global companies operating in Europe and for EU-based companies, the answer is probably surprising.  It is almost impossible to operate a global business…

Read More