
And At the End of the Day, the CCPA Remains Very Much the Same (Guest Blog Post)
by guest blogger Tanya Forsheit I am back to provide a post mortem on what many have portrayed – inaccurately – as a long and successful battle by business interests to gut the CCPA. The legislative session is over and,…

Ninth Circuit Says LinkedIn Wrongly Blocked HiQ’s Scraping Efforts
Fans of scraping cases may rejoice. The Ninth Circuit issued its long-awaited opinion in the hiQ v. LinkedIn case (it was argued in March 2018, so the opinion took about 18 months). It rules in favor of hiQ. hiQ was…
The Circuitous International Travel of Your Data (Guest Blog Post)
by guest blogger Marketa Trimble Most Internet users probably do not know where their online data (aka “cloud data”) reside. Even fewer users likely have any idea of the paths over which their data travel. It is not difficult to picture…
Facebook Defeats Pro Se Consumer Privacy Suit–Hassan v. Facebook
This is a pro se privacy lawsuit by 4 longtime Facebook users (from 2007-09). It covers a lot of the same topics as the dozens of pending privacy class action lawsuits against Facebook. Not surprisingly, as a pro se suit,…
1H 2019 Quick Links, Part 6 (Privacy, E-Commerce, & More)
Privacy * Gullen v. Facebook, Inc., 2019 WL 2486566 (9th Cir. June 14, 2019): No reasonable jury could conclude that Facebook subjected the photo uploaded to the Glenview Patch organizational Facebook page (which is the only photo at issue in this appeal) to…

A Recap of the Senate Judiciary Committee Hearing on Amending the California Consumer Privacy Act (Guest Blog Post)
by guest blogger Tanya Forsheit, Frankfurt Kurnit Klein & Selz PC [Eric’s note: it takes super-human dedication to watch a 12+ hour hearing on CCPA amendments. Though I’m willing to do a lot for blog readers, I didn’t have that level…

Court Declines to Dismiss Data Breach Claims Against Facebook Based on Access Token Incident–Bass v. Facebook
This is a data breach lawsuit against Facebook. Judge Alsup denies Facebook’s motion to dismiss, although he does find that Facebook’s contract disclaimer (likely) neutralizes numerous contract-based claims. Background: Facebook announced a vulnerability that allowed third parties to obtain “access…

Want Companies to Comply with the CCPA? Delay Its Effective Date (Guest Blog Post)
By guest blogger Jeff Kosseff [Jeff Kosseff is an assistant professor in the United States Naval Academy’s Cyber Science Department. The views expressed are only his and do not represent the Naval Academy, Department of Navy, or Department of Defense. …
New Paper Announcement: “Copyright’s Memory Hole”
I’m pleased to announce a new paper, “Copyright’s Memory Hole,” co-authored with Northeastern Law professor Jessica Silbey. The paper is still in draft form, and Jessica and I plan to do a major edit to the paper this summer. So…

Post-Charlottesville Doxxing and Misidentification Creates Legal Risks–Vangheluwe v. GotNews
This is a lawsuit brought by former owners of a car who were incorrectly identified as the driver of the vehicle (and his father, respectively) who ploughed into a crowd of pedestrians in Charlottesville. In the wake of the planned…