News & Analysis as of

Data Privacy New Regulations

Alston & Bird

CPPA Board Votes to Adopt CCPA Regulations; Open DROP Rules to Public Comment

Alston & Bird on

On July 24, 2025, the California Privacy Protection Agency (“CPPA”) Board voted to adopt draft regulations under the California Consumer Privacy Act (“CCPA”) concerning cybersecurity audits, risk assessments, automated...more

Shook, Hardy & Bacon L.L.P.

California Adopts Regulations on Cybersecurity Audits

California has approved new regulations requiring some companies to conduct annual audits of their cybersecurity programs, including the policies, procedures, and practices for protecting personal information. On July 24,...more

Polsinelli

What You Need to Know About California’s Finalized CCPA Amendments: Part One

Polsinelli on

On July 24, 2025, the California Privacy Protection Agency (CPPA) approved final regulations (the Rule) under the California Consumer Privacy Act (CCPA) governing Automated Decision-Making Technology (ADMT), including...more

DLA Piper

CHINA: Definition and Handling of Sensitive Personal Information Helpfully Clarified

DLA Piper on

It’s well-known that China’s data protection laws define sensitive personal information very differently to other jurisdictions. Instead of a closed list of data types, sensitive personal information in China has...more

Seyfarth Shaw LLP

California Privacy Protection Agency (CPPA) Finally Voted to Adopt Much Debated Update to CCPA Regulations: What Your Business...

Seyfarth Shaw LLP on

On July 24, 2025, the California Privacy Protection Agency (“CPPA”) unanimously voted to adopt a package of Proposed Regulations for the California Consumer Privacy Act (“CCPA”), marking a significant development in...more

McDermott Will & Emery

CPPA moves closer to finalizing amended CCPA regulations

McDermott Will & Emery on

As the California Privacy Protection Agency (CPPA) prepares for its July 24, 2025, meeting, it released a revised set of California Consumer Privacy Act (CCPA) regulations that contain modest changes to the ones it released...more

Goodwin

France and the new EU regulation on political advertising: the CNIL updates its doctrine ahead of the 2025 implementation

Goodwin on

Online political advertising has become central to modern electoral campaigns. However, the growing lack of transparency, particularly regarding funding, targeting, and data processing practices, raises serious concerns about...more

Ropes & Gray LLP

New Regulations Strengthen Privacy for UK Company Directors: Expanded Rights to Protect Personal Information from Companies House...

Ropes & Gray LLP on

For many individuals, holding board level positions in UK entities comes with the fear of their names, dates of birth and residential addresses being published by Companies House. This has led to instances of identity theft,...more

Loeb & Loeb LLP

Hashed & Salted: Vol. 4, Issue 3

Loeb & Loeb LLP on

Welcome to the Summer of Privacy! As we hit the middle of 2025, California is once again the focus of our attention, as both its legislators and regulators are attempting to square privacy protections with developing...more

Hinshaw & Culbertson - Privacy, Cyber & AI...

July 2025 Privacy Compliance Countdown: Key Deadlines for Five State Privacy Laws and DOJ's Bulk Sensitive Data Rule

In this Privacy, Cyber & AI Decoded alert, we cover Colorado’s Biometric Identifier Requirements, Delaware’s Data Protection Assessment Requirement, Minnesota’s new comprehensive privacy law going into effect, Tennessee’s...more

Wiley Rein LLP

Update: Enforcement of DOJ Data Security Program Set to Begin July 9

Wiley Rein LLP on

The U.S. Department of Justice (DOJ) is set to enforce its sweeping new rule on certain U.S. data transactions with countries of concern and covered persons as of July 9, 2025. The new rule regarding “Preventing Access to...more

Fox Rothschild LLP

New Jersey Issues Draft Privacy Regulations: The New

Fox Rothschild LLP on

New Jersey recently released draft privacy regulations, and there is a lot to unpack and process. In this three-part series, I will break down the regulations - Part 1: The New Personal data: • Scraping is carved...more

Alston & Bird

Are You Ready for the Department of Justice’s Bulk Data Transfer Rule?

Alston & Bird on

On July 8, 2025, the Department of Justice (“DOJ”) is set to lift its self-imposed pause on enforcing certain violations of its Rule Preventing Access to US Sensitive Personal Data and Government-Related Data by Countries of...more

Morgan Lewis

China Issues New National Standard on Security Requirements for Sensitive Personal Information

Morgan Lewis on

The State Administration for Market Regulation and the Standardization Administration of China have jointly issued a new national standard applicable to companies conducting business in China, GB/T 45574-2025, Data Security...more

Klein Moynihan Turco LLP

AI Privacy

With the use of artificial intelligence (“AI”) becoming more pervasive every day, it should not surprise our readers that regulators are increasingly focused on the use of AI and its associated consumer data privacy...more

Eversheds Sutherland (US) LLP

FTC amendments to COPPA Rule effective soon

On April 22, 2025, the Federal Trade Commission (FTC or the Commission) published an updated Children’s Online Privacy Protection Act (COPPA) Rule (Rule) in the Federal Register. The updates are effective June 23, 2025. But...more

Foley Hoag LLP - Security, Privacy and the...

DOJ’s “Bulk Sensitive Data Rule” is in Effect, and May Require Significant Compliance Obligations as Enforcement is Set to Begin

Pursuant to a newly effective U.S. Department of Justice (DOJ) regulation, the transfer and storage of certain sensitive U.S. government and personal data may be prohibited or restricted, depending on the intended recipient,...more

Hogan Lovells

India publishes consent management rules under Digital Personal Data Protection Act

Hogan Lovells on

India’s Ministry of Electronics and Information Technology (MeitY) released in June 2025 a Business Requirement Document for Consent Management Under the DPDP Act, 2023 (BRD). The BRD, while not legally binding, provides...more

Davis Wright Tremaine LLP

New Jersey Releases Proposed Regulations Expanding on Obligations Under Privacy Law

On June 2, 2025, Governor Murphy announced proposed regulations (the "Regulations") implementing and expanding on the requirements of the New Jersey Data Privacy Act (the "Act")...more

Hudson Cook, LLP

[Webinar] The Data Edge: Developments that Matter to Your Data Compliance - June 24th, 2:00 pm - 2:30 pm ET

Hudson Cook, LLP on

Hudson Cook, LLP is proud to announce the launch of The Data Edge: Developments that Matter to Your Data Compliance, a new monthly webinar series designed to help privacy and compliance professionals stay informed and...more

Morrison & Foerster LLP

China’s New CBDT Regime: One Year On

China rolled out its “new,” streamlined cross-border data transfer (CBDT) regime on March 22, 2024, with the issuance by the Cyberspace Administration of China (CAC) of the Provisions on Facilitating and Regulating...more

Fox Rothschild LLP

CPPA Executive Director: Increased Enforcement Is Coming

Fox Rothschild LLP on

Businesses should expect to see “increased enforcement” from the California Privacy Protection Agency now that the agency has had four years to staff up and implement rules, the CPPA’s executive director said in an interview...more

Jones Day

Vital Signs: Digital Health Law Update | Spring 2025

Jones Day on

Welcome to Vital Signs, a curated compilation of the latest legal and regulatory developments in digital health....more

DLA Piper

Nigeria: NDPC Issues GAID – Key Compliance Insights

DLA Piper on

On 20 March 2025, the Nigeria Data Protection Commission (Commission), issued the General Application and Implementation Directive (GAID).  The GAID serves as a regulatory framework for implementing the Nigeria Data...more

Orrick, Herrington & Sutcliffe LLP

Nevada enacts new customer information safeguarding standards for financial services companies

On May 26, the governor of Nevada enacted SB 44 to impose new duties on financial services providers in Nevada, aligning state requirements for safeguarding customer information with FTC standards in its safeguards rule (16...more

180 Results
 / 
View per page
Page: of 8

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide