by Mike Oliver | Mar 8, 2018 | In the News, Intellectual Property, Patents
In 1991, inspired to help the citizens of Africa, Trevor Baylis created the wind-up radio. With a substantial lack of electricity or batteries, information was hard to spread across the continent and during this time, the AIDS crisis was rampant. By creating a radio that could run off of a crank, Baylis helped deliver the news to hundreds of thousands of people in Africa. Baylis’ U.S. patent for the crank radio issued in June 1999, as
U.S. Pat. No. 5,917,310.
Baylis went on to invent a shoe that could generate electricity as you walked. He also developed products for people with disabilities such as one-handed scissors. He created the Trevor Baylis Foundation which hoped to help inventors protect their work.
Trevor Baylis passed away on March 5, 2018 at age 80. We appreciate his contribution to society.
For more information about patents and intellectual property matters, please contact Pamela K. Riewerts, Esq., partner at Oliver & Grimsley, LLC. Pamela may be reached via email at: pamela@olivergrimsley.com
by Mike Oliver | Nov 14, 2017 | Firm Matters
The greatest compliment we receive are referrals from other lawyers, professionals and clients. Those are the most meaningful recognition in our view. However, a whole industry of “legal awards” has grown up in our profession, and each year it grows in apparent importance to younger lawyers entering the professions, and even more veteran lawyers. So we here again present some of the awards for which we have recently been recognized. For the 5th year in a row, and for all years of our small firm’s existence, we are again honored to receive recognition for 2018 as a US News and World Reports Best Law Firm in many areas, including Tier 1 in Baltimore for Copyright Law and Information Technology Law and a national ranking for Information Technology Law. In addition, we are pleased to report that Michael D. Oliver has been recognized as US News and World Reports Lawyer of the Year (Baltimore) for 2018 in the field of Copyright Law. Mike has previously been named Lawyer of the Year in Baltimore as follows: 2016 – Information Technology Law, 2015 – Trademark Law, 2014 – Copyright Law and 2012 – Trademark Law. The Lawyer of the Year recognition is made for only one lawyer in a specified field and geographic area.
by Mike Oliver | May 26, 2017 | Internet, Technology and Privacy Law, Privacy Law
Many companies have exactly 1 year to get their privacy house in order. On May 25, 2018 the European Union’s General Data Protection Regulation (found here in its entirety, the reg itself without precursors is here: GDPR regulation only) goes into effect. It brings tremendous changes to the previous data protection rules, but in this short post I discuss what I consider to be the “Big 3” issues that the new rule presents, and why even though US privacy law is almost non existent (in the general consumer privacy context), these EU rules will become more and more important even for smaller companies operating solely in the US, due to globalization of data exchange. Ok, the Big 3:
- Huge fines for small errors. The GDPR allows for fines of up to the greater of 20,000,000 Euros, or 4% of annual global turnover. And, there is every indication that the privacy regulators will be very harsh in doling out these fines, even for fairly innocuous errors. That has certainly been the trend in the U.S. for sensitive data like protected health information.
- Information included within the rule is almost everything. The regulation (Article 4, Section (1)) defines “personal data” to mean “any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person” It is clear this definition encompasses far more information than just “identifying” information – for example, an “online identifier” is just about any technology that tracks a user.
- Extra-territorial scope. The regulation (Article 3) extends the reach of the GDPR well beyond the borders of the EU. First, it states that it “applies to the processing of personal data in the context of the activities of an establishment of a controller or a processor in the Union, regardless of whether the processing takes place in the Union or not.” So, any data processed by a controller or processor who is located in the EU is subject to this rule, even if the data subject is not a EU resident. Next, it states “This Regulation applies to the processing of personal data of data subjects who are in the Union by a controller or processor not established in the Union, where the processing activities are related to: (a) the offering of goods or services, irrespective of whether a payment of the data subject is required, to such data subjects in the Union; or (b) the monitoring of their behaviour as far as their behaviour takes place within the Union.” So, regardless of the location of a business, if the business offers goods or services, whether paid or unpaid, the GDPR applies. Finally, “[t]his Regulation applies to the processing of personal data by a controller not established in the Union, but in a place where Member State law applies by virtue of public international law.” The US has not yet adopted public international law that accedes to this rule, but other countries may do so. Operating in those countries would impose the rule on the controller or processor.
There are many other significant issues raised by the GDPR. For example, in the EU one of the 6 core principles is data subject control and access. Article 12, Section 3 states “.The controller shall provide information on action taken on a request under Articles 15 to 22 to the data subject without undue delay and in any event within one month of receipt of the request.” A company must ask itself – can it do that? And not if just one data subject asked, but if (thousands? hundreds of thousands?). Clearly, any “big data” holder will not be able to meet this standard using humans – they will need an automated system to be able to meet the standards. And see my 1st big issue above – failure to meet this requirement is going to result in a fine for sure. The questions will be how big, and that will likely depend on what effort went into at least trying to meet this standard. Another example: the GDPR is crystal clear that consent to use personal data cannot be obtained through an ambiguous “privacy policy” or buried in terms of service. The opt in requirement must be plain, unambiguous and intelligible to the data subject. So, disclosures of how a company tracks a data subject in a privacy policy are not sufficient consent.
There is a separate issue about whether the EU could enforce the GDPR against a US based entity in the EU, or whether it would have to try and come to the US and file such claim; and there is also a separate question of whether a US court would enforce a foreign law against a US based business without an enabling treaty or other enabling statute. However, a company that operates solely in the US would probably have to play ball with the EU authorities if they ever wanted to be able to actually do direct business in the EU. Most large companies have already made that decision. Smaller companies that are wholly located in the US will have to consider whether they would want to take the risk of GDPR enforcement, and whether they want to ever expand direct services into the EU.
One year seems like a long time, but the GDPR has been known for some time (it was adopted in 2016), and now the time is short and companies that might be subject to it really need to be well on their way of making an assessment of what data they are collecting, how they are using it, what efforts they have made to obtain consent to that use, and how they will meet the 6 principles in a timely fashion.
For more information, contact Mike Oliver.
by Mike Oliver | May 1, 2017 | Firm Matters
We again want to thank and express our sincere gratitude to all of our clients, referring sources and the many friends and family that have helped us along the way.
It was 4 years ago today that we started our firm. A lot has happened in those four years – we started just Kim and Mike, and have brought on three lawyers and three staff (and we are still looking for another lawyer) as part of our work family. Our trademark practice has grown exponentially. We have successfully applied and had issued many patents including patents that have overcome the harsh Alice Corp Supreme Court case. We have helped many clients buy and sell businesses – in an estimated total of over $100 million dollars across all deals. We have also done some pro bono publico cases where we feel our talents can assist those in need, though we want to do more in the future.
We feel very lucky to have the clients and practice we have and are very grateful to everyone who has helped us. We hope that we can be a continuing part of your success in business in the years to come.
Very truly yours, the team at Oliver & Grimsley, LLC
by Mike Oliver | Apr 21, 2017 | Client Spotlight
Oliver & Grimsley is proud to again sponsor Firm client the Brigance Brigade‘s Foundation 5.7K Championship Race and 1.57 Mile Family Run/Walk on Sunday, April 30th honoring former Baltimore Ravens player O.J. Brigance and his 10 year battle with ALS! This year we are sponsoring the newest event – a Corn Hole Tournament.
In addition, our very own Tina Neuman will be joining in on the fun, both running in the event and assisting in the corn hole competition.
You can hear all about in the 98 rock Justin, Scott and Spiegel show interview of Chanda Brigance – make sure to pay close attention at about the 3 minute mark!
If you’re interested in registering for the race or walk, see this link: https://www.brigancebrigade.org/brigance-brigade-foundation-5.7k