The Minnesota Consumer Data Privacy Act takes effect July 31, 2025. The Minnesota measure has a few unique requirements among state comprehensive privacy law. Here are a few that deserve a second look...more
Here are some recent privacy and cybersecurity related news stories that caught our attention over the past couple of weeks.
California Privacy Protection Agency (CPPA) Issues New Proposed Regulations -
The CPPA has...more
In case you missed it: Michigan’s Attorney General has filed a lawsuit against Roku, alleging that the company collects and shares children’s personal data and video viewership data in violation of COPPA and the VPPA,...more
Overview -
In 2024, lawsuits targeting companies for their use of commonly deployed digital tracking technologies, such as pixels, and session replay tools proliferated. Frequently used on apps and websites, tracking...more
As state-level privacy laws continue to expand in the absence of federal legislation, businesses must prepare to meet a growing patchwork of requirements or risk penalties and reputational harm. In 2025, eight additional...more
With the passage of numerous comprehensive state laws, many U.S. companies are now subject to a formal requirement to complete a Privacy Impact Assessment (“PIA”). While the various state and international PIA requirements...more
In March of this year, we wrote about “secondary use” consent requirements under the CCPA and Colorado’s CPA. Since that post, the number of U.S. state privacy laws has roughly doubled. Determining consent requirements under...more
Kilpatrick Townsend’s Meghan Farmer, Alex Borovsky, Jennie Cunningham, and Zain Haq recently presented “Navigating the New Data Privacy Landscape” at an event sponsored by the Association of Corporate Counsel Nation Capital...more
The Argentine Data Protection Authority recently issued a new regulation approving two sets of model contractual clauses (controller-to-controller and controller-to-processor) for the international transfer of personal data....more
Yesterday the European Commission released a draft “adequacy decision” on the protection provided by the EU-U.S. Privacy Shield together with the texts that will constitute the EU-U.S. Privacy Shield framework. Once adopted...more
3/1/2016
/ Complaint Procedures ,
Contract Terms ,
Corporate Counsel ,
Data Protection Authority ,
EU ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
International Data Transfers ,
Personal Data ,
Popular ,
Self-Certification ,
U.S. Commerce Department ,
US-EU Safe Harbor Framework ,
Young Lawyers