News & Analysis as of

Corporate Counsel Sensitive Personal Information

Baker Botts L.L.P.

Canada's Officer of the Privacy Commissioner Issues Guidance on Biometric Data Processing

Baker Botts L.L.P. on

On August 11, 2025, the Office of the Privacy Commissioner of Canada ("OPC") issued two sets of guidance for processing of individual's biometric data: one for federal institutions and one for private businesses. Below we...more

Smith Anderson

Brewing Trouble: The Steep Price of Privacy Missteps

Smith Anderson on

A recent high-profile breach at a women-focused dating app underscores how quickly a privacy misstep can escalate into lawsuits and reputational harm. The incident offers a cautionary tale for any company handling sensitive...more

Wiley Rein LLP

FTC Consumer Protection and Privacy Enforcement Series: PADFA Enforcement—What Companies Need to Know

Wiley Rein LLP on

As part of our series to provide practical insights into emerging Federal Trade Commission (FTC) priority areas for consumer protection and data privacy enforcement, we are taking a deep dive into the Protecting Americans’...more

Troutman Pepper Locke

Analyzing the Amendments to State Consumer Data Privacy Laws Passed in 2025

Troutman Pepper Locke on

While no state has passed a new consumer data privacy law in 2025, five states passed bills amending their existing laws....more

Troutman Pepper Locke

California Privacy and AI Legislation Update: Part II

Troutman Pepper Locke on

Key point: The California legislature is currently considering several privacy-related bills that could impact the private sector....more

Fisher Phillips

Proposed New Jersey Regulations Would Require Major Privacy Compliance Shifts for Businesses

Fisher Phillips on

New Jersey officials recently released proposed privacy regulations that would create several new compliance obligations for businesses above and beyond what existing state law and many other state laws require, meaning you...more

Wiley Rein LLP

States Continue Privacy Law Enforcement Efforts

Wiley Rein LLP on

Recent enforcement activities in California and Connecticut highlight that states are ready and willing to actively enforce their comprehensive privacy laws. These recent actions – which continue the trend of states ramping...more

Womble Bond Dickinson

The ICO’s Penalty Against 23andMe Brings New Emphasis on Cybersecurity Risks - Key Takeaways for U.S. Companies

Womble Bond Dickinson on

The dramatic increase in global reach that the internet provides U.S.-based companies comes as a double edge sword. While it significantly increases a company’s potential customer pool, it also subjects companies to...more

Baker Donelson

California AG Secures Landmark Privacy Settlement Over Tracking: What It Means for Your Website

Baker Donelson on

In a record-setting enforcement action under the California Consumer Privacy Act (CCPA), the California Attorney General (AG) announced a $1.55 million settlement with Healthline Media, a popular online publisher of health...more

BakerHostetler

Record-Breaking $1.55M CCPA Settlement Against Health Information Website Publisher

BakerHostetler on

On July 1, the California attorney general (CA AG) announced the largest CCPA settlement to date, $1.55 million, and the first settlement against a website publisher, Healthline Media LLC (Healthline)....more

Husch Blackwell LLP

Connecticut Enacts Significant Amendments to State’s Data Privacy Law

Husch Blackwell LLP on

On June 25, Connecticut Governor Lamont signed Senator James Maroney’s SB 1295 into law. The bill makes several notable changes to Connecticut’s existing consumer data privacy law, including modifying its applicability...more

WilmerHale

State Comprehensive Privacy Law Update - May 2025 #2

WilmerHale on

While most state legislatures are wrapping up their legislative sessions with little fanfare, Massachusetts appears to just be getting started. On May 12, 2025, the Bay State introduced the Massachusetts Data Privacy Act (S...more

Jenner & Block

Client Alert: Myth Busters: Dispelling Common Misconceptions of the Department of Justice’s Data Security Program

Jenner & Block on

A month has passed since the Department of Justice (DOJ) National Security Division’s (NSD) issued its Final Rule prohibiting certain transactions involving US government data and Americans’ bulk sensitive personal data....more

Ropes & Gray LLP

DOJ Releases FAQs and Compliance Guidance for Final Rule Restricting Flow of Bulk Sensitive Personal Data to China and other...

Ropes & Gray LLP on

On April 11, 2025, the Department of Justice (“DOJ”) released additional detail regarding the Final Rule implementing former President Biden’s Executive Order 14117, “Preventing Access to Americans’ Bulk Sensitive Personal...more

Benesch

New Data-Sharing Agreement Between DHS and IRS Will Impact Employers and Provide ICE with Unprecedented Access to Sensitive Data

Benesch on

The Department of Homeland Security (“DHS”) and the Department of Treasury reached a data-sharing agreement in a Memorandum of Understanding (“MOU”) filed April 7, 2025....more

Goodwin

DOJ’s Data Export Rule Is In Force April 8: What You Need to Do

Goodwin on

On April 8, 2025, a sweeping rule issued by the US Department of Justice (DOJ) will take effect. The rule imposes restrictions—and in some cases, outright prohibitions—on US companies in connection with certain types of data...more

Faegre Drinker Biddle & Reath LLP

Lessons from PayPal’s $2 Million Cybersecurity Settlement with the New York State Department of Financial Services

On January 23, 2025, PayPal settled an enforcement action brought by the New York State Department of Financial Services (NY DFS) for failing to comply with cybersecurity regulations required for financial services businesses...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

New York Amends Data Breach Notification Law to Enhance Notification Requirements, Expand Definition of ‘Private Information’

On December 24, 2024, New York Governor Kathy Hochul signed into law amendments to New York’s private-sector data breach notification law (General Business Law § 899-aa) and government agency data breach notification law (New...more

Womble Bond Dickinson

Defending Data Breach Class Actions

Womble Bond Dickinson on

Class actions arising from data breach represented the fastest growing segment of class action filings. In 2023, more than 2000 class actions were filed, more than triple the amount filed in 2022. These cases were filed in...more

Mitchell, Williams, Selig, Gates & Woodyard,...

2024 Privacy Legislative Roundup

2024 was a banner year for state privacy legislation. This year saw seven new states pass comprehensive consumer privacy laws, joining the ranks of 12 other states that have previously passed similar laws. While other state...more

Holland & Knight LLP

FTC Cracks Down on Selling Sensitive Location Info, Restricts Use of Consumer Data for 1st Time

Holland & Knight LLP on

The Federal Trade Commission (FTC) announced two significant enforcement actions last week – one against data broker Mobilewalla, Inc. and the other against data analytics provider Gravy Analytics, Inc. (and its subsidiary...more

Mintz - Privacy & Cybersecurity Viewpoints

Consumer Privacy Laws are Taking Effect Across the Nation – Are You Ready?

Comprehensive consumer privacy laws continue to hit the desks of governors in states across the country, with nineteen state laws now on the books. Since we wrote our 2023 Round-Up on State Consumer Data Privacy Laws article...more

Pillsbury - Consumer Protection Dispatch

GDPR Enforcement: Lessons from Recent Data Privacy Penalties

Recent decisions by the French data protection authority (CNIL) have highlighted the importance of GDPR compliance, particularly in the areas of data retention, consent for processing sensitive personal data, and marketing...more

Davis Wright Tremaine LLP

California Governor Signs Three Bills Amending CCPA Provisions on Sensitive Information and Opt-Out Preferences in the Context of...

During the final days of the California legislative session, which ended on August 31, 2024, the California legislature passed several privacy bills, described below, that would amend the California Consumer Privacy Act...more

Proskauer - Employee Benefits & Executive...

DOL Updates Guidance on Pension and Health & Welfare Plan Cybersecurity Best Practices

In 2021, the U.S. Department of Labor (DOL) issued 3 documents outlining guidance on cybersecurity practices for benefits plans, which we discussed in a blog post at the time. The DOL recently issued revised versions of the...more

69 Results
 / 
View per page
Page: of 3

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide