Privacy Law Commons^™

Personal Data And Vaccination Hesitancy: Covid-19’S Lessons For Public Health Federalism, Charles D. Curran

Catholic University Law Review

During the COVID-19 vaccination campaign, the federal government adopted a more centralized approach to the collection of public health data. Although the states previously had controlled the storage of vaccination information, the federal government’s Operation Warp Speed plan required the reporting of recipients’ personal information on the grounds that it was needed to monitor the safety of novel vaccines and ensure correct administration of their multi-dose regimens.

Over the course of the pandemic response, this more centralized federal approach to data collection added a new dimension to pre-existing vaccination hesitancy. Requirements that recipients furnish individual information deterred vaccination among undocumented …

National Security And Federalizing Data Privacy Infrastructure For Ai Governance, Margaret Hu, Eliott Behar, Davi Ottenheimer

Fordham Law Review

This Essay contends that data infrastructure, when implemented on a national scale, can transform the way we conceptualize artificial intelligence (AI) governance. AI governance is often viewed as necessary for a wide range of strategic goals, including national security. It is widely understood that allowing AI and generative AI to remain self-regulated by the U.S. AI industry poses significant national security risks. Data infrastructure and AI oversight can assist in multiple goals, including: maintaining data privacy and data integrity; increasing cybersecurity; and guarding against information warfare threats. This Essay concludes that conceptualizing data infrastructure as a form of critical infrastructure …

The Lack Of Responsibility Of Higher Educaiton Institutions In Addressing Phishing Emails And Data Breaches, Muxuan (Muriel) Wang

Duke Law & Technology Review

Higher education institutions (HEIs) are highly susceptible to cyberattacks, particularly those facilitated through phishing, due to the substantial volume of confidential student and staff data and valuable research information they hold. Despite federal legislations focusing on bolstering cybersecurity for critical institutions handling medical and financial data, HEIs have not received similar attention. This Note examines the minimal obligations imposed on HEIs by existing federal and state statutes concerning data breaches, the absence of requirements for HEIs to educate employees and students about phishing attacks, and potential strategies to improve student protection against data breaches.

My Body, Whose Choice? A Case For A Fundamental Right To Bodily Autonomy, Miri Trauner

Brooklyn Law Review

In 2022, the US Supreme Court decided Dobbs v. Jackson Women’s Health Organization, which overturned Roe v. Wade and the fundamental right to abortion it had established nearly fifty years prior. The Court’s decision threw into uncertainty the future of not only reproductive rights in this country, but also many other individual rights. At the same time as the decision, the world was still reeling from a global pandemic, and the development of COVID-19 vaccines had spurred widespread controversy over the constitutionality of vaccine mandates. Both advocates for abortion access and opponents to vaccine mandates shared a common cry: “my …

The Data Heist: Protecting Consumers And Their Information Through Opt-In Consent, John A. Hudson

Arkansas Law Review

This Comment will: (1) compare and contrast the data privacy laws in the United States and the European Union; (2) demonstrate the significant risk American consumers are subject to under the United States’ current laws and regulations; and (3) address the protections provided by the European Union’s explicit opt-in consent requirement that would ensure safer conditions for American consumers.

Privacy Matters: Data Breach Litigation In Japan, Andrew M. Pardieck

Washington International Law Journal

In 1890, when Brandeis and Warren wrote The Right to Privacy, Japan did not have a word for privacy. Today, it is closely guarded in Japan: the European Data Protection Board has found privacy protections in Japan “equivalent” to those in the EU. This research explores the evolution of privacy law in Japan, focusing on data breach and the legal rights and obligations associated with it. The writing is broken up into two parts: This article discusses private enforcement of privacy norms, as it is the courts that first established and continue to define privacy rights in Japan. A separate …

Redefining The Injury-In-Fact: Treating Personally Identifying Information As Bailed Property, Austin Headrick

Georgia Law Review

There is a long-existing circuit split among federal courts of appeals as to whether an individual has standing under Article III of the United States Constitution when their personally identifying information (PII) is stolen from an entity to which they entrusted it such as a hospital or bank. Federal courts disagree as to whether an individual whose PII has been stolen—without more—has suffered an injury-in-fact, a necessary element of standing. The disagreement between the courts centers on whether the injury-in-fact has already occurred at the time the PII is stolen or whether the injury occurs once the PII has been …

Data Is What Data Does: Regulating Based On Harm And Risk Instead Of Sensitive Data, Daniel J. Solove

Northwestern University Law Review

Heightened protection for sensitive data is becoming quite trendy in privacy laws around the world. Originating in European Union (EU) data protection law and included in the EU’s General Data Protection Regulation, sensitive data singles out certain categories of personal data for extra protection. Commonly recognized special categories of sensitive data include racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health, sexual orientation and sex life, and biometric and genetic data.

Although heightened protection for sensitive data appropriately recognizes that not all situations involving personal data should be protected uniformly, the sensitive data approach is …

Privacy Purgatory: Why The United States Needs A Comprehensive Federal Data Privacy Law, Emily Stackhouse Taetzsch

Journal of Legislation

No abstract provided.

The Need For Corporate Guardrails In U.S. Industrial Policy, Lenore Palladino

Seattle University Law Review

U.S. politicians are actively “marketcrafting”: the passage of the Bipartisan Infrastructure Law, the CHIPS and Science Act, and the Inflation Reduction Act collectively mark a new moment of robust industrial policy. However, these policies are necessarily layered on top of decades of shareholder primacy in corporate governance, in which corporate and financial leaders have prioritized using corporate profits to increase the wealth of shareholders. The Administration and Congress have an opportunity to use industrial policy to encourage a broader reorientation of U.S. businesses away from extractive shareholder primacy and toward innovation and productivity. This Article examines discrete opportunities within the …

The Trade Origins Of Privacy Law, Anupam Chander

Indiana Law Journal

The desire for trade propelled the growth of data privacy law across the world. Countries with strong privacy laws sought to ensure that their citizens’ privacy would not be compromised when their data traveled to other countries. Even before this vaunted Brussels Effect pushed privacy law across the world through the enticement of trade with the European Union, Brussels had to erect privacy law within the Union itself. And as the Union itself expanded, privacy law was a critical condition for accession.

But this coupling of privacy and trade leaves a puzzle: how did the U.S. avoid a comprehensive privacy …

Table Of Contents, Seattle University Law Review

Seattle University Law Review

Table of Contents

Public Primacy In Corporate Law, Dorothy S. Lund

Seattle University Law Review

This Article explores the malleability of agency theory by showing that it could be used to justify a “public primacy” standard for corporate law that would direct fiduciaries to promote the value of the corporation for the benefit of the public. Employing agency theory to describe the relationship between corporate management and the broader public sheds light on aspects of firm behavior, as well as the nature of state contracting with corporations. It also provides a lodestar for a possible future evolution of corporate law and governance: minimize the agency costs created by the divergence of interests between management and …

Shareholder Primacy Versus Shareholder Accountability, William W. Bratton

Seattle University Law Review

When corporations inflict injuries in the course of business, shareholders wielding environmental, social, and governance (“ESG”) principles can, and now sometimes do, intervene to correct the matter. In the emerging fact pattern, corporate social accountability expands out of its historic collectivized frame to become an internal subject matter—a corporate governance topic. As a result, shareholder accountability surfaces as a policy question for the first time. The Big Three index fund managers, BlackRock, Vanguard, and State Street, responded to the accountability question with ESG activism. In so doing, they defected against corporate legal theory’s central tenet, shareholder primacy. Shareholder primacy builds …

Stakeholder Governance As Governance By Stakeholders, Brett Mcdonnell

Seattle University Law Review

Much debate within corporate governance today centers on the proper role of corporate stakeholders, such as employees, customers, creditors, suppliers, and local communities. Scholars and reformers advocate for greater attention to stakeholder interests under a variety of banners, including ESG, sustainability, corporate social responsibility, and stakeholder governance. So far, that advocacy focuses almost entirely on arguing for an expanded understanding of corporate purpose. It argues that corporate governance should be for various stakeholders, not shareholders alone.

This Article examines and approves of that broadened understanding of corporate purpose. However, it argues that we should understand stakeholder governance as extending well …

Corporate Law In The Global South: Heterodox Stakeholderism, Mariana Pargendler

Seattle University Law Review

How do the corporate laws of Global South jurisdictions differ from their Global North counterparts? Prevailing stereotypes depict the corporate laws of developing countries as either antiquated or plagued by problems of enforcement and misfit despite formal convergence. This Article offers a different view by showing how Global South jurisdictions have pioneered heterodox stakeholder approaches in corporate law, such as the erosion of limited liability for purposes of stakeholder protection in Brazil and India, the adoption of mandatory corporate social responsibility in Indonesia and India, and the large-scale program of Black corporate ownership and empowerment in South Africa, among many …

A Different Approach To Agency Theory And Implications For Esg, Jonathan Bonham, Amoray Riggs-Cragun

Seattle University Law Review

In conventional agency theory, the agent is modeled as exerting unobservable “effort” that influences the distribution over outcomes the principal cares about. Recent papers instead allow the agent to choose the entire distribution, an assumption that better describes the extensive and flexible control that CEOs have over firm outcomes. Under this assumption, the optimal contract rewards the agent directly for outcomes the principal cares about, rather than for what those outcomes reveal about the agent’s effort. This article briefly summarizes this new agency model and discusses its implications for contracting on ESG activities.

The Limits Of Corporate Governance, Cathy Hwang, Emily Winston

Seattle University Law Review

What is the purpose of the corporation? For decades, the answer was clear: to put shareholders’ interests first. In many cases, this theory of shareholder primacy also became synonymous with the imperative to maximize shareholder wealth. In the world where shareholder primacy was a north star, courts, scholars, and policymakers had relatively little to fight about: most debates were minor skirmishes about exactly how to maximize shareholder wealth.

Part I of this Essay discusses the shortcomings of shareholder primacy and stakeholder governance, arguing that neither of these modes of governance provides an adequate framework for incentivizing corporations to do good. …

Table Of Contents, Seattle University Law Review

Seattle University Law Review

Table of Contents

A History Of Corporate Law Federalism In The Twentieth Century, William W. Bratton

Seattle University Law Review

This Article describes the emergence of corporate law federalism across a long twentieth century. The period begins with New Jersey’s successful initiation of charter competition in 1888 and ends with the enactment of the Sarbanes-Oxley Act in 2002. The federalism in question describes the interrelation of state and federal regulation of corporate internal affairs. This Article takes a positive approach, pursuing no normative bottom line. It makes six observations: (1) the federalism describes a division of subject matter, with internal affairs regulated by the states and securities issuance and trading regulated by the federal government; (2) the federalism is an …