On July 28, the New Jersey Division of Consumer Affairs issued a reminder to more than 3,000 auto dealerships regarding their obligations under the New Jersey data deletion law, N.J.S.A. § 56:12-18.1. This law, enacted and...more
8/14/2025
/ Automotive Industry ,
Car Dealerships ,
Consumer Privacy Rights ,
Data Deletion ,
Data Management ,
Data Privacy ,
Internet of Things ,
Motor Vehicles ,
New Jersey ,
NIST ,
Office of Consumer Affairs ,
Regulatory Requirements
On April 29, Michigan Attorney General (AG) Dana Nessel filed a lawsuit against Roku, Inc. (Roku), the smart TV and device provider and streaming service, alleging Roku violated the Children’s Online Privacy Protection Act...more
8/6/2025
/ COPPA ,
Data Collection ,
Data Privacy ,
Motion to Dismiss ,
Online Safety for Children ,
Parental Consent ,
Roku ,
Standing ,
State Attorneys General ,
State Privacy Laws ,
Television Programming
On July 1, California Attorney General (AG) Rob Bonta announced a significant proposed settlement with Healthline Media LLC (Healthline) — a prominent website publisher of health information and wellness articles. The...more
7/29/2025
/ Advertising ,
California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Data Privacy ,
Enforcement Actions ,
Opt-Outs ,
Personal Information ,
Settlement ,
Statutory Violations ,
Tracking Systems ,
Web Tracking ,
Websites
The United States is navigating a new era of regulatory oversight and the balance of power between federal and state regulators following the 2024 election cycle. As federal agencies retreat from and/or realign their...more
7/28/2025
/ Advertising ,
Antitrust Violations ,
Artificial Intelligence ,
Consumer Financial Products ,
Corporate Counsel ,
Data Privacy ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
Gaming ,
Life Sciences ,
Machine Learning ,
Marketing ,
Merger Controls ,
Most-Favored Nations ,
New Legislation ,
Regulatory Reform ,
State Attorneys General
Massachusetts Attorney General Andrea Campbell has emerged as a significant figure in the landscape of consumer protection and corporate accountability. Her actions and initiatives have positioned her as a thought leader...more
7/7/2025
/ Algorithms ,
Artificial Intelligence ,
Consumer Financial Protection Bureau (CFPB) ,
Consumer Protection Laws ,
Data Privacy ,
Department of Government Efficiency (DOGE) ,
Employee Rights ,
Enforcement Actions ,
Environmental Policies ,
Fraud Abuse and Waste ,
Government Efficiency ,
Non-Bank Lenders ,
Regulatory Requirements ,
State Attorneys General ,
Suppliers ,
Trump Administration ,
Unfair or Deceptive Trade Practices
On April 29, Michigan Attorney General (AG) Dana Nessel filed a lawsuit against Roku, Inc. (Roku), the smart TV and device provider and streaming service, alleging that Roku collects and monetizes personal data from children...more
6/9/2025
/ COPPA ,
Data Collection ,
Data Privacy ,
Enforcement Actions ,
Internet Streaming ,
Online Safety for Children ,
Personal Data ,
Privacy Concerns ,
Regulatory Violations ,
Roku ,
State Attorneys General ,
VPPA
State attorneys general across the U.S. took bold steps in 2024 to address unlawful activities by corporations in several areas, including privacy and data security, financial transparency, children’s internet safety, and...more
4/15/2025
/ Artificial Intelligence ,
Big Tech ,
Biometric Information ,
Data Privacy ,
Data Security ,
Enforcement Actions ,
Enforcement Priorities ,
Financial Services Industry ,
Online Safety for Children ,
Plastics ,
Popular ,
Privacy Laws ,
Recycling ,
Settlement Agreements ,
State Attorneys General ,
Unfair or Deceptive Trade Practices
Several state attorneys general (AGs) and the Federal Trade Commission (FTC) have begun scrutinizing ancestry tracking company 23andMe following its recent announcement that it has filed for Chapter 11 bankruptcy. As part of...more
4/7/2025
/ 23andMe ,
Bankruptcy Court ,
Biometric Information ,
Chapter 11 ,
Commercial Bankruptcy ,
Consumer Privacy Rights ,
Data Breach ,
Data Privacy ,
Data Protection ,
DNA ,
Federal Trade Commission (FTC) ,
Genetic Materials ,
Popular ,
Privacy Concerns ,
Privacy Laws ,
State Attorneys General ,
State Privacy Laws
Our company experienced a cybersecurity incident. It seemed pretty minor — just a few suspicious emails and an employee’s account being locked. To my dismay, we’re now hearing from our IT team that the issue is more serious....more
On February 4, the Office of the Minnesota Attorney General (AG) released its second Report on Emerging Technology and Its Effect on Youth Well-Being, outlining the effects young Minnesota residents allegedly experience from...more
2/27/2025
/ Artificial Intelligence ,
Consumer Privacy Rights ,
Data Privacy ,
Data Security ,
Emerging Technologies ,
Innovative Technology ,
Machine Learning ,
Minors ,
Online Safety for Children ,
Social Media ,
State Attorneys General
State attorneys general (AGs) continue to play a pivotal role as innovators, shaping the regulatory environment by leveraging their expertise and resources to influence policy and practice. The public-facing nature of AG...more
1/30/2025
/ Advertising ,
Artificial Intelligence ,
Cybersecurity ,
Data Privacy ,
Enforcement Actions ,
Environmental Policies ,
Federal Contractors ,
Healthcare ,
Marketing ,
Pharmaceutical Industry ,
Regulatory Violations ,
State Attorneys General ,
Technology Sector
As one of her last acts in office, on December 24, 2024, Oregon Attorney General (AG) Ellen Rosenblum issued guidance for businesses deploying artificial intelligence (AI) technologies. The guidance highlights the risks...more
1/13/2025
/ Artificial Intelligence ,
Bias ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Discrimination ,
Machine Learning ,
Oregon ,
Privacy Laws ,
State Attorneys General ,
State Privacy Laws
“Dear Mary” is Troutman Pepper’s Incidents + Investigations team’s advice column. Here, you will find Mary’s answers to questions about anything and everything cyber-related — data breaches, forensic investigations, how to...more
“Dear Mary” is Troutman Pepper’s Incidents + Investigations team’s advice column. Here, you will find Mary’s answers to questions about anything and everything cyber-related — data breaches, forensic investigations, how to...more
Each of the 50 states has its own definition of what constitutes a reportable data breach. For some, it requires “unauthorized access” to personal information. For others, it requires “unauthorized acquisition.” And then,...more
7/25/2024
/ Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Data Theft ,
Identity Theft ,
Personal Data ,
Personally Identifiable Information ,
Unauthorized Access
In an unusual move, attorneys general (AG) from 30 states and the District of Columbia filed a bipartisan amicus brief in the Ninth Circuit supporting efforts to revive a proposed class action against payment processor...more
7/25/2024
/ Amicus Briefs ,
Class Action ,
Data Collection ,
Data Privacy ,
Data Protection ,
Financial Services Industry ,
Internet Retailers ,
Payment Processors ,
Personal Jurisdiction ,
Personally Identifiable Information ,
Shopify ,
State Attorneys General ,
Unfair Competition Law (UCL)
In 2024, the landscape of state attorneys general (AGs) is poised for significant change, with numerous elections and regulatory actions reshaping priorities and enforcement strategies. This dynamic environment reflects the...more
7/23/2024
/ Advertising ,
Algorithms ,
Artificial Intelligence ,
California Consumer Privacy Act (CCPA) ,
Data Privacy ,
Department of Health and Human Services (HHS) ,
Energy Policy ,
Environmental Policies ,
Environmental Protection Agency (EPA) ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
Healthcare ,
Machine Learning ,
Marketing ,
Personal Data ,
Pharmaceutical Industry ,
Proposed Rules ,
Regulatory Agenda ,
Regulatory Authority ,
Social Media ,
State Attorneys General ,
State Privacy Laws
‘Dear Mary,’ is Troutman Pepper’s Incidents + Investigations team’s advice column. Here, you will find Mary’s answers to questions about anything and everything cyber-related – data breaches, forensic investigations, how to...more
‘Dear Mary,’ is Troutman Pepper’s Incidents + Investigations team’s advice column. Here, you will find Mary’s answers to questions about anything and everything cyber-related – data breaches, forensic investigations, how to...more
Troutman Pepper's latest white paper explores the heightened focus on artificial intelligence (AI) by various state attorneys general (AGs), particularly in relation to data privacy laws, consumer protection statutes, and...more
5/21/2024
/ Advisory Opinions ,
Algorithms ,
Anti-Discrimination Policies ,
Artificial Intelligence ,
Data Privacy ,
Investment ,
Investment Firms ,
Machine Learning ,
Private Equity ,
Private Equity Firms ,
Risk Management ,
State Attorneys General
On May 8, attorneys general (AG) from 14 states and the District of Columbia sent a letter to Congressional leadership opposing provisions of the recently proposed federal American Privacy Rights Act (APRA). In addition to...more
In a recent speech at Oxford University, U.S. Deputy Attorney General (AG) Lisa Monaco announced that the U.S. Department of Justice (DOJ) will now seek stiffer penalties for crimes involving, and aided by, artificial...more
On October 23, an amended complaint was filed by the Connecticut Office of the Attorney General (AG), alleging that Stone Academy, a nursing school, and its owners, Joseph Bierbaum and Mark Scheinberg, used millions of...more
11/7/2023
/ Connecticut ,
Consumer Protection Laws ,
Data Privacy ,
Educational Institutions ,
Enforcement Actions ,
Health and Safety ,
Public Health ,
Regulatory Oversight ,
State Attorneys General ,
Students ,
Tuition
On October 17, 52 state and territorial attorneys general, in addition to state money transmission regulators, entered into settlements amounting to more than $20 million with ACI Worldwide (ACI), to resolve claims involving...more
10/20/2023
/ Data Breach ,
Data Privacy ,
Data Security ,
Financial Institutions ,
Financial Services Industry ,
Insufficient Funds ,
Money Transmitter ,
Mortgages ,
Payment Processors ,
Settlement ,
State Attorneys General ,
State Regulators ,
Third Party Payments ,
Unauthorized Transactions
Rutters, a prominent grocery chain in Pennsylvania with 80 locations statewide, settled a data breach investigation with Attorney General (AG) Michelle Henry’s office by agreeing to pay $1 million and to implement certain...more
10/19/2023
/ Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Grocery Stores ,
Pennsylvania ,
Personal Information ,
Regulatory Oversight ,
State Data Breach Notification Statutes ,
State Data Privacy Laws