News & Analysis as of July 29, 2025

Data Collection

+ Follow

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations. In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -

Adtech Privacy Pain Points: Top 7 List for Effective Opt-Out Compliance

Kelley Drye & Warren LLP on 6/26/2025

As privacy enforcement ramps up, effectively managing opt-out requirements under state privacy laws is a top risk mitigation measure. But complying with opt-outs is not just a matter of providing a consumer-facing opt-out...more

Strategies for Minimizing Rising Risks to Mobile Apps from Privacy Laws

J.S. Held on 6/4/2025

As mobile device applications continue to proliferate – magnified in no small part by the recent surge in artificial intelligence-related tools to facilitate creation of apps – they have become indispensable tools for...more

5 Key Privacy Enforcement Insights Shared by State Regulators at IAPP’s #GPS25

Wiley Rein LLP on 4/25/2025

IAPP’s Global Privacy Summit in DC this week has featured panels with several state regulators charged with enforcing their state’s privacy laws, including regulators from California, Colorado, Connecticut, and Oregon. The...more

Privacy Policy Basics

Levenfeld Pearlstein, LLC on 4/23/2025

In today’s digital landscape, privacy policies have evolved from obscure legal documents into essential corporate governance tools. As data privacy regulations expand globally, organizations face increasing compliance...more

Oregon Consumer Privacy Act Enforcement Takes Effect July 1, 2025 for Nonprofits

Tonkon Torp LLP on 4/16/2025

As Oregon’s data privacy landscape continues to evolve, nonprofits must take note: the Oregon Consumer Privacy Act (OCPA) will apply to nonprofit organizations beginning on July 1, 2025. The grace period granted to nonprofits...more

Consumer Privacy Laws Are Expanding Nationwide

Tonkon Torp LLP on 4/15/2025

Businesses operating across the U.S. should pay close attention to the rapidly evolving consumer privacy landscape. To date, 20 states, including Oregon, have enacted comprehensive consumer privacy laws, with 14 already in...more

March Privacy Forecast: Maryland’s Strict New Privacy Law Takes Effect October 1

Wiley Rein LLP on 3/17/2025

With 13 comprehensive state privacy laws already in effect, the state privacy law landscape is complex. While there are several common threads throughout many of these frameworks that can allow companies to implement a...more

Biometrics Litigation Update: First Class Action Complaint Filed Under Washington’s My Health My Data Act — Is Your Company Ready?

Paul Hastings LLP on 3/13/2025

On February 10, 2025, the first class action complaint was filed under Washington state’s My Health My Data Act (“MHMDA”), over a year after the law was passed. See Maxwell v. Amazon.com, Inc. et al., Case No. 2:25-cv-261...more

Nebraska Introduces First-of-its-Kind Privacy Bill Aimed at Protecting Agricultural Data

ArentFox Schiff on 2/17/2025

On January 22, Nebraska state Senator Mike Jacobson (R), at the request of Governor Jim Pillen (R), introduced the Agriculture Data Privacy Act (LB525). This is a first-of-its kind privacy bill that would specifically...more

COPPA Update: FTC Finalizes Stricter Protections Against Companies Collecting and Monetizing Children’s Online Data

Moritt Hock & Hamroff LLP on 2/11/2025

On January 16, 2025, the Federal Trade Commission (FTC) announced significant updates to the Children’s Online Privacy Protection Act (COPPA) Rule. For operators of websites or online services subject to this law, it is a...more

Texas AG Targets Allstate in First Enforcement of Texas Data Privacy and Security Act

Vinson & Elkins LLP on 2/5/2025

On January 13, 2025, Texas Attorney General Ken Paxton (“Texas AG”) filed the first-ever enforcement action under the Texas Data Privacy and Security Act (“TDPSA”) against insurance company Allstate and its subsidiary, Arity...more

New York's Health Information Privacy Act Aims to Strictly Regulate Consumer Health Data

Ropes & Gray LLP on 2/5/2025

On January 22, 2025, the New York State Assembly and Senate rapidly passed the wide-ranging New York Health Information Privacy Act (“NY HIPA”). If not vetoed by Governor Kathy Hochul, NY HIPA would be the fourth enacted...more

Preparing for Data Privacy Expansion in 2025: Is Your Business Ready?

Smith Anderson on 1/15/2025

As we step into 2025, data privacy laws in the United States are evolving rapidly. With eight new state privacy laws taking effect, businesses face an increasingly complex web of compliance obligations—even in states without...more

CES 2025: FTC Commissioners Discuss Approach to AI in New Administration

Wiley Rein LLP on 1/13/2025

On Thursday, January 9 at CES 2025, two sitting FTC Commissioners – Rebecca Slaughter (D) and Melissa Holyoak (R) – sat down for a revealing discussion moderated by two former FTC Commissioners now in the private sector –...more

A New Year and New Compliance Requirements: Additional State Privacy Laws Take Effect in 2025

Seyfarth Shaw LLP on 1/8/2025

As 2025 begins, businesses across the U.S. will be required to navigate an even more expanded landscape of state-level privacy regulations. In all, eight states are introducing comprehensive privacy laws, further adding to...more

Expansion of Privacy Protection Regulations regarding data from the EEA

Barnea Jaffa Lande & Co. on 12/17/2024

As of January 1, 2025, the Israeli Privacy Protection Regulations (Instructions for data being transferred to Israel from the European Economic Area) will also apply to data being stored or processed in Israel or in other...more

Preparing for PIPA Compliance: A Guide for Organisations in Bermuda

Conyers on 12/5/2024

When the substantive provisions of Bermuda’s Personal Information Protection Act 2016 (PIPA) become operational on 1 January 2025, it is vital that all in scope organisations ensure their compliance with PIPA....more

Navigating big data ethics: Real-world challenges

Society of Corporate Compliance and Ethics... on 12/4/2024

There is no better real-world example of significant data ethics complexities than Facebook. The data privacy scandal that has emerged over the past few years is a unique educational tool for any compliance professional or...more

Oh My Gourd, Another Data Privacy Law?!

Bricker Graydon LLP on 11/26/2024

In 2018, there were two comprehensive state data privacy bills introduced across the United States and a whopping zero were in effect. Fast forward six years and there have been 41 new data privacy bills considered this year...more

CFPB Issues Final Rule Implementing Section 1033 of Dodd-Frank Act

Bradley Arant Boult Cummings LLP on 10/25/2024

On October 22, 2024, the Consumer Financial Protection Bureau (CFPB) finalized its long-anticipated rule implementing Section 1033 of the Dodd-Frank Act. The 594-page final rule arrives nearly one year after the CFPB’s...more

[Webcast Transcript] From Mac to Mobile: Advanced Data Triage and Collection Tools for Forensic Investigators

HaystackID on 10/15/2024

Editor’s Note: Read the transcript from HaystackID’s webcast, “From Mac to Mobile: Advanced Data Triage and Collection Tools for Forensic Investigators,” to learn about HaystackID’s Remote Endpoint Analysis and Data...more

PIPA Update – The Brave New World of Individual Rights Requests

Conyers on 10/1/2024

With the 1 January 2025 implementation date of the Personal Information Protection Act 2016 (“PIPA”) fast approaching, Bermuda based organisations from small-businesses to multinationals, should be busy preparing for...more

OCR Finalizes HIPAA Privacy Rule to Support Reproductive Health Care Privacy

ArentFox Schiff on 5/29/2024

On April 26, the US Department of Health and Human Services Office for Civil Rights (OCR) published a Final Rule that adds protections under the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule...more

Understanding PIPA: Defining Its Scope and Starting to Prepare

Conyers on 2/8/2024

In this four-part series, Conyers dives into different topics relating to Bermuda’s privacy legislation, including why we need privacy legislation and its purpose, how to prepare for PIPA, the role and requirements of privacy...more

Year In Review: 2023 BIPA Litigation Takeaways

WilmerHale on 2/1/2024

This post is part of a series of articles we are doing on 2023 data protection litigation trends. Since its enactment in 2008, Illinois’s Biometric Information Privacy Act (BIPA) has produced a wave of privacy-related...more

64 Results

View per page

Page: of 3

Compliance › Privacy Laws › Data Collection

"My best business intelligence, in one easy email…"