Ch. 2: US Legal Framework Flashcards

Question 1

Q

What are the sources of U.S. law?

Answer

A

Constitutions
Legislation
Regulations and Rules
Case Law
Common Law
Contract Law

Question 2

Q

Is the right to privacy explicit in the U.S. Constitution.

Answer

A

No,

the word “privacy” is not in the U.S. constitution. However, some parts directly affect privacy such as the 4th Amendment which limits government searches. State constitutions may create stronger rights than those found in the U.S. constitution. For example, CA state constitution expressly recognizes a right to privacy.

Question 3

Q

What is legislation?

Answer

A

Laws passed by Congress or state legislatures.

Question 4

Q

What are Regulations and Rules?

Answer

A

Compliance expectations placed on the marketplace by regulatory agencies.

Some laws require regulatory agencies to issue regulations and rules.

Question 5

Q

What is Case Law?

Answer

A

Final decisions made by judges in court cases. When similar issues arise in the future, judges look to past decisions as precedent and decide the case in a manner consistent with past decisions - “stare decisis”

Question 6

Q

What is Common Law?

Answer

A

Legal principles that have developed over time in judicial decisions, often drawing on social customs and expectations.

Question 7

Q

What is a Consent Decree?

Answer

A

A judgment entered by consent of the parties whereby the defendant agrees to sop alleged illegal activity, typically without admitting guilt or wrongdoing. The legal document is approved by the judge and formalizes an agreement reached between a federal or state agency and an adverse party. The document describes the actions the defendant will take, and my be subject to a public comment period.

Question 8

Q

What is Contract Law?

Answer

A

It is a subcategory of Common Law.

Question 9

Q

What are the fundamental requirements for forming a binding contract?

Answer

A

Offer
Acceptance
Consideration

Question 10

Q

What is an Offer?

Answer

A

Proposed language to enter into a bargain. It must be communicated to another person and remain open until it is accepted, rejected, retracted or has expired. A counteroffer ends the original offer.

Question 11

Q

What is Acceptance?

Answer

A

The assent or agreement by the receiver of the offer that the offer was accepted. Acceptance must be communicated to the offeror.

Question 12

Q

What is Consideration?

Answer

A

Is the bargain-for exchange. Legal benefit received by one person and the legal detriment imposed to the other. Consideration usually takes the form of money, property, or services.

Question 13

Q

What is Tort Law?

Answer

A

Are civil wrongs recognized by the law as the grounds for lawsuits. These wrongs result in an injury or harm that constitutes the basis for a claim.

Question 14

Q

What are the 3 general tort categories?

Answer

A

Intentional Torts - wrongs that the defendant knew or should have known would occur through their actions or inactions.
Negligent Torts - wrongs when the defendant’s actions were unreasonably unsafe.
Strict Liability - wrongs that do not depend on the degree of carelessness by the defendant, but are established when a particular action causes damage.

Question 15

Q

What are examples of Privacy Torts?

Answer

A

intrusion upon seclusion, public revelation of private facts, casting a person in a false light, interfering with a person’s right to publicity, failing to provide adequate safeguards for PI

Question 16

Q

What is a Person?

Answer

A

Any entity with legal rights, including an individual or a corporation.

Question 17

Q

What is the meaning of Jurisdiction?

Answer

A

The authority of a court to hear a particular case. The court must have subject matter jurisdiction and personal jurisdiction.

Question 18

Q

What is Preemption?

Answer

A

A superior government’s ability to have its laws supersede those of an inferior government.

Question 19

Q

What is “Private Right of Action”?

Answer

A

The ability of an individual harmed by a violation of law to file a lawsuit against the violator.

Question 20

Q

What is Notice?

Answer

A

Is a description of the organization’s information management practices.

Question 21

Q

What is the purpose of a Notice?

Answer

A

consumer education

2. corporate accountability

Question 22

Q

What does a typical Notice tell an individual?

Answer

A

What information is collected
How the information is used and disclosed
How to exercise any choices about uses or disclosures
Whether the individual can access or update the information

Question 23

Q

What is a Privacy Notice?

Answer

A

Often refers to external communications, issued to consumers, customers, or users.

Question 24

Q

What is a Privacy Policy?

Answer

A

Often refers to internal standards used within the organization.

Question 25

Q

What is Choice?

Answer

A

The ability to specify whether personal information will be collected and/or how it will be used or disclosed.

Question 26

Q

What is an “opt in” choice?

Answer

A

An affirmative indication of choice based on an express act of the person giving the consent.

Question 27

Q

What is an “opt out” choice?

Answer

A

A choice can be implied by the failure of the person to object to the use or disclosure.

Question 28

Q

What is Access?

Answer

A

The ability to view personal information held by an organization.

Question 29

Q

When must Access and Correction be provided?

Answer

A

When the information is used for any type of substantive decision making, such as for credit reports.

Question 30

Q

Which federal agencies engage in regulatory activities concerning privacy in the private sector?

Answer

A

Federal Trade Commission (FTC)
Federal Communications Commission (FCC)
Department of Commerce (DoC)
Department of Health and Human Service (HHS)
Federal Reserve Board (Fed)
Office of Comptroller of the Currency (OCC)
Consumer Financial Protection Bureau (CFPB)

Question 31

Q

What privacy authority does the FTC have?

Answer

A

The general authority to enforce against “unfair and deceptive trade practices,” notably including the power to bring deception enforcement actions where a company has broken a privacy promise.

Question 32

Q

Who enforces privacy at the state level?

Answer

A

State attorney generals

Question 33

Q

How do state attorney generals bring enforcement actions?

Answer

A

Typically, pursuant to state laws prohibiting unfair and deceptive trade practices.

Question 34

Q

Who also plays a valuable role in governing privacy practices within industries?

Answer

A

Self regulatory regimes

Question 35

Q

What questions should be asked to understand any privacy related law, statute, or regulation?

Answer

A

Who is covered by this law?
What types of information (and what uses of information) are covered?
What exactly is required or prohibited?
Who enforces the law?
What happens if I don’t comply?
Why does this law exist?

Question 36

Q

What do the first 2 questions do?

Answer

A

Tell you the scope of the law.

Question 37

Q

What does the third question do?

Answer

A

Tells you what you need to know to comply with the law

Question 38

Q

What does questions 4 and 5 do?

Answer

A

They help you assess the risks associated with noncompliance or less than perfect compliance.

Question 39

Q

What does question 6 do?

Answer

A

Helps you understand the motivation behind the law.

Question 40

Q

What are the 3 Branches of the U.S. Government? & What is the role of each branch?

Answer

A

Executive Branch
Enforces laws
President, Vice President, Cabinet and Federal Agencies

Legislative Branch
Makes laws
Congress (house of representatives and senate)

Judicial Branch
Interprets the law (determines if constitutional)
Federal courts

Question 41

Q

What are SOURCES of law?

Answer

A

U.S. Constitution 
State Constitutions 
Legislation 
Regulations and Rules
Common Law/Case Law 
Contract Law

Question 42

Q

What is the Supreme Law in the United States?

Answer

A

The U.S. Constitution

Question 43

Q

Where is the word “Privacy” mentioned in the U.S. Constitution?

Answer

A

The word Privacy is NOT mentioned in the U.S. Constitution

Question 44

Q

What is legislation?

Answer

A

Laws passed by federal and state legislatures.

Question 45

Q

What is Common or Case Law?

Answer

A

Final decisions by judges in court cases.

Judges look at precedent (past decisions) to decide how to rule in a new case that is consistent with these past decisions.

Laws/Precedents change, as technological and societal values evolve over time

Question 46

Q

What is required to have an enforceable (legally binding) contract?

Answer

A

Offer (terms of the agreement)

Acceptance (by the person to whom the offer was made), and

Consideration (bargained for exchange (e.g., money, property or services)).

Question 47

Q

Does the U.S. Constitution always override the State Constitution?

Answer

A

No, State Constitutions can create stronger rights than those provided by the U.S. Constitution

Question 48

Q

Do Federal Laws always override State Laws?

Answer

A

No, State Legislation may be stricter than national legislation. Federal law only override less strict state laws.

Question 49

Q

Who issues Regulations and Rules?

Answer

A

Regulations and Rules are issued by regulatory agencies (e.g., FTC and FCC) placing compliance expectations on industries

Question 50

Q

What AMENDMENTS to the United States Constitution have been interpreted to provide privacy protection?

Answer

A

3rd Amendment (Soldiers Quartered)
4th Amendment (Search and Seizure)
5th Amendment (Self-Incrimination)
14th Amendment (Due Process)

Question 51

Q

What is Jurisdiction?

Answer

A

The authority of a court to hear a particular case

Question 52

Q

What is the legal definition of “Person?”

Answer

A

Any entity with legal rights including:
Individuals (natural persons)
Corporations (legal person)

Question 53

Q

What is “Preemption?”

Answer

A

A superior government’s ability to have its laws supersede those of an inferior government

Question 54

Q

What is a “Private Right of Action?”

Answer

A

The ability of an individual harmed by a violation of a law to file a lawsuit against the violator

Question 55

Q

What are the roles and responsibilities of the Federal Trade Commission (FTC)?

Answer

A

General Authority to enforce rules against unfair and deceptive trade practices (including the power to bring deception enforcement actions where an organization has broken a privacy promise)
Statutory Responsibility for issues such as children’s online privacy and commercial email marketing.
Instrumental in developing U.S. privacy standards.

Question 56

Q

What are the roles and responsibilities of the Federal Communications Commission (FCC)?

Answer

A

Places significant compliance regulations on and governs the communications industry, such as television, radio, and telemarketing, and more recently, with online marketing developing such laws as the Telemarketing Sales Rule and Controlling the Assault of Non-Solicited Pornography and Marketing Act (CAN-SPAM Act).

Along with the FTC, the FCC also enforces privacy laws.

Question 57

Q

What are the roles and responsibilities of the Department of Commerce (DoC)?

Answer

A

Leading role in federal privacy policy development
Administers the Privacy Shield Framework between the United States and the EU.
The DOC works along with the FTC on the enforcement of privacy and security standards set by organizations, particularly with those having privacy self-regulatory programs.

Question 58

Q

What are the roles and responsibilities of the Department of Health & Human Services (HHS)?

Answer

A

Creates regulations to protect the privacy and security of healthcare information.
Responsible for enforcing HIPAA laws.
The HHS shares rule-making and enforcement power with the FTC for data breaches related to medical records under the Health Information Technology for Economic and Clinical Health (HITECH) Act.

Question 59

Q

What are the roles and responsibilities of the two agencies responsible for regulating the Banking Industry?

Answer

A

Federal Reserve Board
Responsible for enforcing provisions of specific federal financial regulatory mandates, such as the Gramm-Leach-Biley Act (or GLBA).
Consumer Financial Protection Bureau An independent bureau under the Federal Reserve, has rule-making authority for laws related to financial privacy and oversees the relationship between consumers and financial product and service providers

Office of the Comptroller of the Currency (OCC)
Independent bureau of the U.S. Department of Treasury.
Regulates and supervises all national and federal banks and savings institutions, including agencies of foreign banks.
Ensures fair access to financial services and compliance with financial privacy laws and regulations.

Question 60

Q

What are the roles and responsibilities of the State Attorney Generals?

Answer

A

Chief legal advisor to the state government
State’s chief law enforcement officer. They may take enforcement action on a state’s unfair and deceptive practice law, HIPAA, GLBA, the Telemarketing Sales Rule and violations of breach notification laws

Question 61

Q

What are Self- Regulatory Programs?

Answer

A

Organizations monitor privacy through internal privacy practices, frameworks/guidelines, policies and procedures created and monitored by industry groups.
Government agencies, such as the FTC, may be involved in enforcement and adjudication

Question 62

Q

What are Trust Marks?

Answer

A

Images or logos of third party seal and certification programs that are displayed on websites to indicate that a business is a member of a professional organization or to show that it has adopted the guidelines of a program and passed a security and privacy test.
Designed to give customers confidence that they can safely engage in e-commerce transactions.

Examples include TrustArc, Norton, the Better Business Bureau, and EU-U.S. Privacy Shield

Question 63

Q

What is Criminal Liability?

Answer

A

Court proceedings for criminal prosecution
Initiated by: Government
Burden of Proof: Beyond a Reasonable Doubt
Remedy: Fines, restitution, incarceration or death
Sources of Law: Constitutions, laws and regulations

Question 64

Q

What is Civil Liability?

Answer

A

Disputes between individuals or organizations
Plaintiff (Private Party or Government) sues a Defendant to address a wrong
Burden of Proof: Preponderance of evidence
Remedy: Monetary Compensation or Injunctions

Answer 65

A

Adjudication by an agency
Initiated by Agency (e.g., FTC) 
Burden of Proof: Burden of Persuasion
Remedy: Actions and Fines
Sources of Law: Statutes that create agency governance

Answer 66

A

An Agreement between the Government Agency and offending party requiring the offending party to do a specific actions and/or pay a fine.

Answer 67

A

Tort
Contract
Common law

Answer 68

A

A tort is a civil wrong recognized by law as having the grounds for lawsuits.
The primary goal for the lawsuit is to provide relief for damages incurred and deter others from committing the same wrongs.

Answer 69

A

Intentional
Defendant knew or should have known that their action or inaction would cause harm

Negligent
Absence of failure to exercise proper or ordinary care. Defendant’s actions are unreasonably careless or unsafe.

Strict Liability
Defendant has legal responsibility for damages or injury even if they are not negligent or at fault (e.g. product liability)

Answer 70

A

Breach of Warranty
Failure of a seller to fulfill the terms of a promise, claim or representation

Misrepresentation
False statements about a particular product or service

Defamation
Untruth about another that will harm the reputation of the person or organization defamed by libel (written defamation) or slander (oral defamation)

Statutory Actions

Answer 71

A

Department of Homeland Security::
E-Verify Program
Rules for air traveler records (TSA)
Immigration and other border issues (Immigration and Customs Enforcement)
State Department::
Negotiates internationally with other countries on privacy issues and in multinational groups
Office for Civil Rights (HHS)::
Role in enforcing HIPAA rules
Department of Transportation::
Transportation Companies
Drones (FAA)
Internet-connected cars (National Highway Traffic Safety Administration)
Internal Revenue Service::
Privacy rules concerning tax records
Office of Management and Budget::
Interpretation of the Privacy Act of 1974
Guidance to federal agencies and their contractors

Answer 72

A

State Attorney Generals
enforce laws/statutes and
unfair and deceptive practices (e.g., inadequate data protection and security capabilities)

Answer 73

A

Cooperation between enforcement agencies, organizations and governments in more than one country/jurisdiction

OECD (Organization for Economic Cooperation and Development) - in 2007, adopted recommendations on cross-border cooperation in enforcement of laws protecting privacy

GPEN (Global Privacy Enforcement Network) – created in response to OECD recommendations. Aims to promote cross-border information sharing as well as investigation and enforcement cooperation among privacy authorities around the world.

APEC (Asia Pacific Economic Cooperation) CPEA (Cross Border Privacy Enforcement Arrangement) – share information and evidence in cross-border investigations and enforcement actions in the Asia-Pacific region.

Answer 74

A

the Bill of Rights.

Answer 75

A

Collection
Use
Disclosure
Destruction

Answer 76

A

Administrative
Technical
Physical

Answer 77

A

Proactive
Privacy as default
Privacy embedded into design
Full functionality 
End to end security 
Transparency 
User centric

Answer 78

A

Rights of individuals
Information control
Lifecycle
Management

Answer 79

A

Customers/employees
Third parties
Laws
In house

Answer 80

A

Comprehensive
Sectorial
Co-regulatory
No protection

Answer 81

A

Eu data protection directive of 1995

Answer 82

A

Legislative Branch
Executive Branch
Judicial Branch

Answer 83

A

a. Congress (House and Senate)

b. Congress confirms presidential appointees, can override vetos

Answer 84

A

a. President, VP, Cabinet, federal agencies

b. President appoints federal judges, can veto laws passed by Congress

Answer 85

A

a. Federal Courts

b. Determines whether the laws are constitutional

Answer 86

A

Constitutions
Legislation
Regulations and Rules
Case Law
Common Law
Contract Law

Answer 87

A

No, the word “privacy” is not in the U.S. constitution. However, some parts directly affect privacy such as the 4th Amendment which limits government searches. State constitutions may create stronger rights than those found in the U.S. constitution. For example, CA state constitution expressly recognizes a right to privacy.

Answer 88

A

Laws passed by Congress or state legislatures.

Answer 89

A

Compliance expectations placed on the marketplace by regulatory agencies. Some laws require regulatory agencies to issue regulations and rules.

Answer 90

A

Final decisions made by judges in court cases. When similar issues arise in the future, judges look to past decisions as precedent and decide the case in a manner consistent with past decisions - “stare decisis”

Answer 91

A

Legal principles that have developed over time in judicial decisions, often drawing on social customs and expectations.

Answer 92

A

A judgment entered by consent of the parties whereby the defendant agrees to sop alleged illegal activity, typically without admitting guilt or wrongdoing. The legal document is approved by the judge and formalizes an agreement reached between a federal or state agency and an adverse party. The document describes the actions the defendant will take, and my be subject to a public comment period.

Answer 93

A

It is a subcategory of Common Law.

Answer 94

A

Offer
Acceptance
Consideration

Answer 95

A

Proposed language to enter into a bargain. It must be communicated to another person and remain open until it is accepted, rejected, retracted or has expired. A counteroffer ends the original offer.

Answer 96

A

The assent or agreement by the receiver of the offer that the offer was accepted. Acceptance must be communicated to the offeror.

Answer 97

A

Is the bargain-for exchange. Legal benefit received by one person and the legal detriment imposed to the other. Consideration usually takes the form of money, property, or services.

Answer 98

A

Are civil wrongs recognized by the law as the grounds for lawsuits. These wrongs result in an injury or harm that constitutes the basis for a claim.

Answer 99

A

Intentional Torts - wrongs that the defendant knew or should have known would occur through their actions or inactions.
Negligent Torts - wrongs when the defendant’s actions were unreasonably unsafe.
Strict Liability - wrongs that do not depend on the degree of carelessness by the defendant, but are established when a particular action causes damage.

Answer 100

A

intrusion upon seclusion, public revelation of private facts, casting a person in a false light, interfering with a person’s right to publicity, failing to provide adequate safeguards for PI

Answer 101

A

Any entity with legal rights, including an individual or a corporation.

Answer 102

A

The authority of a court to hear a particular case. The court must have subject matter jurisdiction and personal jurisdiction.

Answer 103

A

A superior government’s ability to have its laws supersede those of an inferior government.

Answer 104

A

The ability of an individual harmed by a violation of law to file a lawsuit against the violator.

Answer 105

A

Is a description of the organization’s information management practices.

Answer 106

A

consumer education

2. corporate accountability

Answer 107

A

What information is collected
How the information is used and disclosed
How to exercise any choices about uses or disclosures
Whether the individual can access or update the information

Answer 108

A

Often refers to external communications, issued to consumers, customers, or users.

Answer 109

A

Often refers to internal standards used within the organization.

Answer 110

A

The ability to specify whether personal information will be collected and/or how it will be used or disclosed.

Answer 111

A

An affirmative indication of choice based on an express act of the person giving the consent.

Answer 112

A

A choice can be implied by the failure of the person to object to the use or disclosure.

Answer 113

A

The ability to view personal information held by an organization.

Answer 114

A

When the information is used for any type of substantive decision making, such as for credit reports.

Answer 115

A

Federal Trade Commission (FTC)
Federal Communications Commission (FCC)
Department of Commerce (DoC)
Department of Health and Human Service (HHS)
Federal Reserve Board (Fed)
Office of Comptroller of the Currency (OCC)
Consumer Financial Protection Bureau (CFPB)

Answer 116

A

The general authority to enforce against “unfair and deceptive trade practices,” notably including the power to bring deception enforcement actions where a company has broken a privacy promise.

Answer 117

A

State attorney generals

Answer 118

A

Typically, pursuant to state laws prohibiting unfair and deceptive trade practices.

Answer 119

A

Self regulatory regimes

Answer 120

A

Who is covered by this law?
What types of information (and what uses of information) are covered?
What exactly is required or prohibited?
Who enforces the law?
What happens if I don’t comply?
Why does this law exist?

Answer 121

A

Tell you the scope of the law.

Answer 122

A

Tells you what you need to know to comply with the law

Answer 123

A

They help you assess the risks associated with noncompliance or less than perfect compliance.

Answer 124

A

Helps you understand the motivation behind the law.

Answer 125

A

i. Legislative
ii. Executive
iii. Judicial

Answer 126

A

The legislative branch has the power to create new laws.

i. Congress (House of Representatives and the Senate)
ii. Confirms presidential appointees / can override vetos

Answer 127

A

1) The bill must pass both house and senate, then goes to the white house.
2) If the President signs the bill it becomes law, if not the President exercises their veto powers and goes back to the house.
3) The House must have a 2/3 majority to overturn a veto.

Answer 128

A

The executive branch carries out and enforces existing laws

i. President, VP, Cabinet, Federal Agencies
ii. Appoint federal judges / can veto laws passed by congress

Answer 129

A

The judicial branch interprets the meaning of laws

i. Federal Courts
ii. Determines whether laws are constitutional

Answer 130

A

i. Constitutions – Supreme law of the land. All other laws must be consistent. (Unconstitutional laws are declared invalid by courts). Amendments are difficult.
ii. Legislation – Laws passed by congress or state
iii. Regulations and rules – Compliance expectations set my regulatory agencies (“Administrative Law”)
iv. Case law – Final decisions made by judges in court cases and looked to as precedent
v. Common law – Legal principles that have been developed over time in judicial decisions – often drawing on social customs and expectations
vi. Contract law – A subcategory of common law (e.g., The Uniform Commercial Code (UCC) exists in all 50 states.)

Answer 131

A

Jurisdiction is the power that a court has to render legal judgments.

Jurisdiction may be limited by subject matter or geographic applicability.

Answer 132

A

A person is a human or non-human entity that:

1) can sue and be sued,
2) can own property, and
3) can take part in contracts.

Answer 133

A

A law that stems from a higher authority takes precedence over laws that stem from lower authorities.

Answer 134

A

Laws with a private right of action grant legal persons the ability to bring cases to court.

Answer 135

A

Summary: Implemented the EU-US Privacy Shield before it was struck down

Detail: Leading role in federal privacy policy development. Administers the Privacy Shield Framework between the US and EU. The DoC works along with the FTC on the enforcement of privacy and security standards set by organizations, particular with those having privacy self-regulatory programs.

Answer 136

A

The Department of the Treasury manages Federal finances by collecting taxes and paying bills and by managing currency, government accounts and public debt. The Department of the Treasury also enforces finance and tax laws.

Answer 137

A

The IRS is a bureau of the Department of the Treasury and one of the world’s most efficient tax administrators. In fiscal year 2020, the IRS collected almost $3.5 trillion in revenue and processed more than 240 million tax returns.

Answer 138

A

The Department of the Treasury is responsible for the money, printing, destroying old unusable money. The IRS collects all tax revenue for the Federal Government.

Answer 139

A

The Taxpayer Bill of Rights (TBOR) is a cornerstone document that highlights the 10 fundamental rights taxpayers have when dealing with the Internal Revenue Service (IRS).

Brainscape's Knowledge GenomeTM

Ch. 2: US Legal Framework Flashcards

Brainscape's Knowledge Genome^TM