Podcast - Regulating AI in Healthcare: The Road Ahead
No Password Required: Former Lead Attorney at U.S. Cyber Command, Cyber Law Strategist, and Appreciator of ‘Mad Men’ Hats
Lawyers Beware: There Could Be Serious Ethics Issues With The New AI Browsers
We get Privacy for work – Episode 6: The Potential Privacy Risks Inherent to Mergers and Acquisitions
Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 243: HIPAA Compliance and Potential Changes with Shannon Lipham of Maynard Nexsen
Compliance Tip of the Day: Rethinking Corporate AI Governance Through Design Intelligence
10 For 10: Top Compliance Stories For the Week Ending July 19, 2025
SkadBytes Podcast | Tech’s Shifting Landscape: Five Trends Shaping the Conversation
Hospice Insights Podcast - AI in Action: Exploring How AI Is Helping Hospices Do Things in New Ways
FCPA Compliance Report: Ethical Challenges in AI, Data Protection, and Sports with Andre Paris
We get Privacy for work: The Privacy Pitfalls of a Remote Workforce
No Password Required: From AOL to Award-Winning Cuisine to High-Stakes Hacking
#Risk New York Speaker Series – Exploring Future Regulatory Trends and Compliance Strategies with Rory McGrath
Key Discovery Points: Don’t Get Caught with Your Hand in the Production Cookie Jar
How Startups Can Comply With Ever-Changing Privacy Laws
#Risk New York Speaker Series – Bridging the Gap: Effective Risk Communication in Compliance with Rob Clark, Jr.
Privacy for Risk Management: Bridge the Business, Technology and Compliance Gaps
#Risk New York Speaker Series – Inside Behavioral Insights: Tom Hardin on Compliance at #RiskNYC
Innovation in Compliance: Real-Time Fraud Prevention Strategies for Financial Loss Prevention with Vince Walden
Rethinking Records Retention
Rhode Island’s Governor recently signed the Rhode Island Judicial Security Act (H5892), which aims to bolster the privacy and security of current and former judicial officers and their families by introducing several measures...more
It has been roughly six months since Andrew Ferguson took over as chairman of the Federal Trade Commission (FTC). Since that time, Mark Meador was confirmed as the third Republican commissioner (joining Commissioner Melissa...more
A trio of federal court decisions has emboldened the plaintiffs' bar with a new potential tool to wield in the ongoing wave of litigation targeting businesses for their use of routine website technologies: the California...more
It’s well-known that China’s data protection laws define sensitive personal information very differently to other jurisdictions. Instead of a closed list of data types, sensitive personal information in China has...more
Our readers may recall our prior pieces in which we discussed a New Jersey State privacy law, colloquially known as Daniel’s Law. As our readers know, many of the defendants in these Daniel’s Law lawsuits challenged the...more
The 1988 Video Privacy Protection Act (VVPA) prohibits the disclosure of VHS rental history; now, in a recent class action where the VPPA was invoked by the plaintiffs, the parties’ voluntary settlement signals developments...more
INTRODUCTION - Artificial intelligence ("AI") has rapidly transitioned from experimental use to widespread adoption across Hong Kong. Organisations are now leveraging AI models to enhance customer service, improve risk...more
The California Privacy Protection Agency (“CPPA”) Board will meet on Thursday, July 24 to discuss the California Consumer Privacy Act (“CCPA”) draft regulations on cybersecurity audits, risk assessments, automatic...more
Thora Johnson and Alexandra Wood discuss: Key federal regulation including HIPAA The patchwork at the state level, including a growing number of state consumer health privacy laws...more
Welcome to the Summer of Privacy! As we hit the middle of 2025, California is once again the focus of our attention, as both its legislators and regulators are attempting to square privacy protections with developing...more
Welcome to your monthly rundown of all things cyber, privacy, and technology, where we highlight all the happenings you may have missed. State Action: Texas Limits Punitive Damage Liability For Data Security Breach...more
Thora Johnson shares simple guidance on: Data management for privacy compliance Ensuring data security through storage and retention practices...more
In April 2025, SK Telecom—South Korea’s largest mobile carrier—formally notified regulators of a significant data breach that compromised sensitive SIM card data belonging to nearly 27 million users. Following an...more
On July 1, 2025, the California Attorney General’s Office (AG) announced a proposed $1.55 million settlement with Healthline Media, operator of the popular website Healthline.com. The AG alleges Healthline violated numerous...more
The IRS and ICE have signed a Memorandum of Understanding (MOU) that allows the IRS to share taxpayer information such as names, addresses, and tax data, with ICE for immigration-related criminal enforcement of individuals...more
The California Attorney General (AG) has announced a landmark $1.55 million settlement with Healthline Media LLC (Healthline), which operates a health information website. The settlement marks the largest fine to date in an...more
La Commissaire à l’information et à la protection de la vie privée de l’Ontario (la « CIPVP ») a publié un nouveau guide de gestion de la protection de la vie privée (le « Guide ») ayant pour but d’aider les petits organismes...more
Dans l’affaire Clearview AI Inc v. Alberta (Information and Privacy Commissioner) (l’« affaire Clearview ») (en anglais), la Cour du Banc du Roi de l’Alberta (la « CBRA ») a élargi la portée de l’exception relative aux...more
Le 20 mai 2025, la Commission d’accès à l’information du Québec (la « CAI ») a rendu une décision concernant l’utilisation par une société de livraison, 13859380 Canada Inc. (faisant affaire sous le nom Crane Supply) (la «...more
Readers of this blog are not strangers to Daniel’s Law lawsuits filed by Atlas Data Privacy Corporation (“Atlas”). While waiting for the Third Circuit Court of Appeals to decide whether Daniel’s Law is constitutional, a New...more
In Clearview AI Inc v. Alberta (Information and Privacy Commissioner) (Clearview), the Court of King’s Bench of Alberta expanded the scope of the “publicly available” exception to the consent requirement for the collection,...more
When a court begins its order denying class certification by lamenting the “failure to properly vet named plaintiffs” and “seeming unwillingness to promptly address issues that arise during litigation with named plaintiffs”...more
Cross-border marketing of products or services by an overseas company (a body corporate incorporated outside of Bermuda) to customers in Bermuda could be construed as carrying on business in Bermuda and, if so, would be...more
Nebraska AG Mike Hilgers sued PDD Holdings Inc. and WhaleCo Inc., d/b/a Temu, alleging that Temu’s shopping app operates as malware designed to gain unauthorized access to users’ data in violation of state consumer protection...more
Our Privacy, Cyber & Data Strategy Team discusses how to overcome five challenges companies face in the wake of a data security incident when reviewing impacted data to comply with legal obligations....more