Paddle's Payment Predicament: Unpacking FTC's Compliance Crackdown — Payments Pros – The Payments Law Podcast
AI Today in 5: August 22, 2025, The Angst Episode
The Privacy Insider Podcast Episode 17: Security, Cyber-Intel, and a Sense of Humor with Nir Rothenberg of Rapyd
Daily Compliance News: August 22, 2025, The WADA Returns Edition
Regulatory Ramblings: Episode 76 - The Digital Future: The US GENIUS Act and Hong Kong Stablecoins Ordinance / The Hong Kong Web3 Blueprint: Building a Web 3 International Financial Hub Report
Point-of-Sale Finance Series: Understanding the Development and Regulation of Buy Now, Pay Later Products — The Consumer Finance Podcast
Understanding BBB Ratings: Strategic Approaches to Consumer Complaints — Regulatory Oversight Podcast
Compliance Tip of the Day: Co-Thinking with AI
Joint Venture Eligibility Refresher on Requirements for Government Contractors
Compliance into the Weeds: Two Cyber Security Cases for the Compliance Professional
The Road to Regulation: Vehicle Service Contracts Explained — Moving the Metal: The Auto Finance Podcast
AI Today in 5: August 12, 2025, The Creating Billionaires Episode
Compliance Tip of the Day - The ROI of Compliance
AI Today in 5: August 11, 2025, The ACHILLES Project Episode
Taxing Intelligence: AI's Role in Modern Tax Administration
Podcast - An Overview of State Attorney General Consumer Protection Enforcement
LathamTECH in Focus: Move Fast, Stay Compliant
Work This Way: A Labor & Employment Law Podcast | Compliance Clarity for Federal Contractors with Joan Moore and Mim Munzel of Arbor Consulting Group
AI Today in 5: August 6, 2025, The Rethinking Compliance Episode
Compliance Tip of the Day: M&A Domestic Issues
Data scraping is an automated process through which computer programs extract vast amounts of data from the internet at a faster rate than manual data collection methods....more
At the same time that AI chatbots and tools have begun reshaping how businesses operate — including how they strategize, optimize workflows, perform R&D and distill large amounts of information — individuals, including...more
Cross-border data transfers between the EU and U.S. remain a legal and operational minefield. While the July 2023 adequacy decision ushered in the EU-U.S. Data Privacy Framework (DPF), recent developments have called its...more
Maryland's Online Data Privacy Act of 2024 (MODPA) will take effect on October 1, 2025, and will be enforced by the Maryland Attorney General (AG) beginning April 1, 2026. MODPA sets a new, more stringent benchmark among U.S....more
Le 11 août 2025, le Commissariat à la protection de la vie privée du Canada (le « Commissariat ») a publié un document d’orientation (le « document d’orientation ») à l’intention des organisations du secteur privé au sujet de...more
In our previous newsletter, we explained how the new UK Data (Use and Access) Act 2025 (“DUA Act”), which modifies the UK’s data and e-privacy regime, has a phased commencement such that most of the provisions require the...more
The US privacy law landscape continues to evolve each year, and 2025 is no exception. While there were no new comprehensive privacy laws were enacted this year, there were still significant developments. These include...more
When using biometrics in advertising, consent is not enough. IAB Canada, a trade association for Canada’s interactive marketing and advertising industry, recently issued policy paper on using biometrics in digital...more
Resolution CD/ANPD No. 19/2024 (the “Resolution”) deepened the provisions of the Brazilian General Data Protection Law (“LGPD”) regarding International Data Transfers (“IDT”) and brought the country closer to European...more
The Office of the Information and Privacy Commissioner of Alberta (the OIPC) recently issued a report (the Report) summarizing the OIPC's recommendations for a framework to regulate the use of artificial intelligence (AI) in...more
If you’re not accustomed to handling data subject access requests (DSARs), then it’s understandable if you feel a bit nervous about responding. After all, there are all sorts of legal requirements involved and the potential...more
In response to the UK’s new Data (Use and Access) Act 2025 (DUA Act) coming into force, the UK Information Commissioner (ICO) has launched two public consultations. The consultations, which aim to shape final guidance on...more
On August 11, 2025, the Office of the Privacy Commissioner of Canada ("OPC") issued two sets of guidance for processing of individual's biometric data: one for federal institutions and one for private businesses. Below we...more
The rise of biometric technologies has ushered in a new era of convenience and security. But with that innovation comes heightened privacy risk. Recognizing the sensitivity of biometric data, the Office of the Privacy...more
Question: How does Montana’s amendment to its Genetic Information Privacy Act (“GIPA”) regulate neurotechnology data, and what obligations might my business face compared to the amendments that were passed in Colorado and...more
AI in the workplace can no longer be seen as a problem for tomorrow - it is firmly an issue for today. In this article, we explore how employers can balance the risks and realities of AI at work through good governance,...more
Companies offering online services take heed: effective October 1, 2025, Colorado's new children's data protection framework is sending a clear signal of where the future of privacy and social media regulation is headed...more
Vietnam's data privacy landscape is undergoing a significant transformation with the recent enactment of the Law on Personal Data Protection (PDP Law), effective from 1 January 2026. This new law marks a pivotal step in...more
In August 2024, Brazil’s Data Protection Agency—Autoridade Nacional de Proteção de Dados (ANPD)—issued the International Transfer Regulations, including the Standard Contractual Clauses (SCCs) template. The SCCs are currently...more
Thailand's Personal Data Protection Committee (“PDPC”) has significantly intensified its enforcement of Thailand's Personal Data Protection Act B.E. 2562 (2019) (“PDPA”), announcing on 1 August 2025 eight new administrative...more
On 1 August 2025, the Privacy Commissioner for Personal Data, Hong Kong (“PCPD”), and the Personal Data Protection Bureau, Macao (“PDPB”), in collaboration with seven other privacy and data protection authorities across...more
On 30 July 2025, the Indonesian Constitutional Court (“Court”) issued a landmark ruling, Decision No. 151/PUU-XXII/2024 (“Decision 151”), which significantly broadens the scope of mandatory Data Protection Officer (“DPO”)...more
Cybersecurity breaches originating from third-party providers (TPPs) are an escalating concern for Australian businesses. As supply chain risks grow, there is a mounting public expectation that the entity that commissioned...more
Welcome to our new series on Federal Trade Commission (FTC) enforcement, where we will provide practical insights into emerging FTC priority areas for consumer protection and data privacy enforcement. Overall, the current FTC...more
How can businesses in your jurisdiction adopt AI and automation responsibly, and what guidance are you offering to ensure regulatory compliance?...more