In a Press Release issued April 11, 2025, the U.S. Department of Justice (“DOJ”) indicated that it would prioritize “facilitating compliance” over civil enforcement actions for the first 90 days of its new US-China data...more
4/15/2025
/ China ,
Cybersecurity Information Sharing Act (CISA) ,
Data Privacy ,
Data Security ,
Department of Justice (DOJ) ,
Enforcement Actions ,
Enforcement Priorities ,
Final Rules ,
International Data Transfers ,
National Security ,
New Guidance ,
Personal Data ,
Sensitive Personal Information
Within its first few days, the new administration revoked the 2023 Executive Order on Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence (the “Old AI Executive Order”) – which had been intended to...more
2/11/2025
/ Agents ,
Artificial Intelligence ,
Biden Administration ,
Cybersecurity ,
Data Privacy ,
Data Security ,
Executive Orders ,
Privacy Laws ,
Regulatory Requirements ,
Risk Management ,
Risk Mitigation ,
Technology Sector
Are you ready to begin adding AI Agents to your human teams? You will soon be getting requests to do so. While business teams will be wowed by what AI Agents and their subagents can do, the artificial intelligence regulatory...more
The U.S. Department of Justice (“DOJ”) published its final rule (“Final Rule”) on January 8, 2025, that will prohibit or restrict transfer of certain data of U.S. persons to countries of concern, including to China. The Final...more
1/15/2025
/ China ,
Compliance ,
Cybersecurity Information Sharing Act (CISA) ,
Data Privacy ,
Data Protection ,
Department of Justice (DOJ) ,
Executive Orders ,
Final Rules ,
International Data Transfers ,
International Emergency Economic Powers Act (IEEPA) ,
National Security ,
Personal Data ,
Privacy Laws ,
Regulatory Requirements ,
Sensitive Personal Information
The U.S. Department of Justice (“DOJ”) released a Notice of Proposed Rulemaking (“Proposed Rule”) on October 21 that would prohibit or restrict the transfer of certain data of U.S. persons to China and other countries of...more
Companies may face class action lawsuits as early as July 2023 based on Washington’s new privacy law. Governor Jay Inslee recently signed House Bill 1155, the WA My Health, My Data Act (“MHMDA” or “the Act”), giving companies...more
5/24/2023
/ Biometric Information ,
Biometric Information Privacy Act ,
California Consumer Privacy Act (CCPA) ,
Class Action ,
Compliance Dates ,
Covered Entities ,
Data Collection ,
Data-Sharing ,
Enforcement ,
Gender Identity ,
Geolocation ,
Governor Inslee ,
GPS ,
Health Insurance Portability and Accountability Act (HIPAA) ,
New Legislation ,
PHI ,
Reproductive Healthcare Issues ,
State Privacy Laws
This spring, Utah legislators gave parents new legal tools to control use of social media by children and teens, including introducing a private right of action with statutory damages.To comply, social media companies will...more
2022 has been a whirlwind year for cybersecurity, data, and privacy counsel who are navigating an expanding regulatory landscape and unique sets of legal requirements from numerous jurisdictions. This trend is likely to...more
With the holiday season upon us and online goods and services flying off the virtual shelves, companies should not lose sight of the increased risk of phishing and cyberattacks. Society’s reliance on online commerce means...more
Californians voted to enact the California Privacy Rights Act (“CPRA”) almost one year ago. Last week, Governor Gavin Newsom signed three new privacy bills into law....more
10/14/2021
/ Amended Legislation ,
Breach Notification Rule ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Consent ,
Corporate Counsel ,
Data Collection ,
Genetic Materials ,
Genetic Testing ,
Governor Newsom ,
New Legislation ,
Personal Data ,
Personal Information ,
Rulemaking Process ,
Sensitive Personal Information
Not since the disappearance of Amelia Earhart, have people wondered more. Which companies were the early targets of the California Attorney General’s enforcement of the California Consumer Privacy Act (“CCPA”) and on what...more
As businesses continue to weave their way through the labyrinth of privacy laws, from the EU’s General Data Protection Regulation to the California Consumer Privacy Act to the numerous other sectoral and international privacy...more
Even though the California Consumer Privacy Act (“CCPA”) has been in effect since January 1, 2020, and enforcement of all CCPA provisions has been available since July 1, 2020, significant uncertainty exists regarding the...more
As of January 1, 2020, the California Consumer Privacy Act (CCPA) is in effect and impacts numerous businesses that collect or process the personal information of California residents. The CCPA carries potentially stiff...more
On October 11, 2019, the California Attorney General (the “California AG”) issued draft regulations (the “Draft Regulations”) pursuant to his authority under the California Consumer Privacy Act of 2018 (“CCPA”). The...more
10/17/2019
/ Anti-Discrimination Policies ,
California Consumer Privacy Act (CCPA) ,
Comment Period ,
Consumer Privacy Rights ,
Covered Entities ,
Minors ,
Notice Requirements ,
Personal Information ,
Privacy Laws ,
Proposed Regulation ,
State Attorneys General
Businesses may receive a bit of breathing room as a result of two amendments to the California Consumer Privacy Act (CCPA) passed on Friday, September 13, 2019, by the California Legislature. The Legislature gave businesses...more
And the new top level domain names just keep on coming. As our readers may know, ICANN, the organization that operates the internet domain name system, authorized the launch of the New gTLD Program – the largest expansion of...more
Just as companies are reaching the straightway in their efforts to get ready to comply with the California Consumer Privacy Act ("CCPA") by January 1, Nevada has burst ahead with a privacy law that will take effect before the...more
The U.S. privacy law scene continues to become more complex. In the lead-up to the California Consumer Privacy Act’s (CCPA) January 1, 2020 effective date, at least seven additional states have pending comprehensive privacy...more
2019 will bring significant privacy law changes in the U.S. These changes will require significant compliance efforts by companies operating in the U.S. this year. It is still an open question as to whether those compliance...more
1/11/2019
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
COPPA ,
Criminal Liability ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
NIST ,
Popular ,
Privacy Laws ,
Proposed Legislation ,
Standard of Care
The EU General Data Protection Regulation (GDPR), which is billed as the most important development in data privacy regulation in at least 20 years, arrived with a bang in May of this year and companies have been scrambling...more
Although numerous attempts have been made to pass a comprehensive U.S. privacy law over the years, this one might actually succeed. Efforts have begun on multiple fronts. ...more
10/4/2018
/ California Consumer Privacy Act (CCPA) ,
Congressional Investigations & Hearings ,
Consumer Privacy Rights ,
Data Privacy ,
General Data Protection Regulation (GDPR) ,
Legislative Committees ,
NIST ,
NTIA ,
Preemption ,
Privacy Laws ,
Public Comment
Although numerous attempts have been made to pass a comprehensive U.S. privacy law over the years, this one might actually succeed. Efforts have begun on multiple fronts. From Senate Commerce Committee hearings to several...more
9/28/2018
/ California Consumer Privacy Act (CCPA) ,
Comment Period ,
Congressional Committees ,
COPPA ,
Data Privacy ,
Fair Credit Reporting Act (FCRA) ,
General Data Protection Regulation (GDPR) ,
GLBA Privacy ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Market Participants ,
NTIA ,
Preemption ,
Privacy Concerns ,
Privacy Laws ,
Regulatory Agenda ,
Social Networks
As many of our readers know, in 2011, ICANN, the organization that operates the internet domain name system, authorized the launch of the New gTLD Program – the largest expansion of the generic top-level domain name (“gTLD”)...more
Domain name registrars and registries might soon be changing their mantra from, “I think ICANN,” to, “Maybe ICANN’T,” when it comes to providing publicly available WHOIS information for domain name registrants. New potential...more