Rhode Island became the latest state to enact comprehensive data privacy legislation, when the Rhode Island Data Transparency and Privacy Protection Act (the "Rhode Island Data Privacy Act") passed into law on June 28, 2024....more
On May 9, 2024, Maryland Governor Wes Moore signed into law Senate Bill 541 (the "Maryland Online Data Privacy Act") making Maryland the eighteenth state to adopt comprehensive data privacy legislation in the United States...more
5/15/2024
/ Consumer Privacy Rights ,
Consumer Protection Laws ,
Data Privacy ,
Data Protection ,
Enforcement ,
New Legislation ,
Online Privacy Protection Act ,
Personal Data ,
Privacy Acts ,
Privacy Laws ,
Privacy Policy ,
State and Local Government ,
State Privacy Laws
On April 2, 2024, the California Privacy Protection Agency's (CPPA) Enforcement Division issued its first enforcement advisory, titled "Applying Data Minimization to Consumer Requests," to further emphasize the importance of...more
5/9/2024
/ California ,
California Consumer Privacy Act (CCPA) ,
California Privacy Protection Agency (CPPA) ,
Data Collection ,
Data Deletion ,
Data Protection ,
Data Selling ,
Data-Sharing ,
Enforcement ,
New Regulations ,
Opt-Outs ,
Personal Data ,
Regulatory Requirements
On April 4, 2024, Kentucky joined the rapidly growing number of states adopting a comprehensive data privacy law, when Governor Andy Beshear signed, the Kentucky Consumer Data Protection Act ("Kentucky CDPA"). The law will...more
4/16/2024
/ Consent ,
Consumer Privacy Rights ,
Data Privacy ,
Enforcement ,
Exemptions ,
GLBA Privacy ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Opt-Outs ,
Penalties ,
Personal Data ,
Personally Identifiable Information ,
Sensitive Personal Information ,
State Privacy Laws
On October 30, 2023, the US Securities and Exchange Commission ("SEC") announced that it filed charges against SolarWinds Corp. ("SolarWinds" or the "Company") and its Chief Information Security Officer ("CISO") in connection...more
11/15/2023
/ Breach Notification Rule ,
Chief Information Security Officer (CISO) ,
Civil Monetary Penalty ,
Cyber Attacks ,
Cybersecurity ,
Disclosure Requirements ,
Enforcement ,
Fraud ,
Information Technology ,
Initial Public Offering (IPO) ,
Injunctive Relief ,
Insurance Industry ,
Internal Controls ,
Investors ,
Material Misstatements ,
Misleading Statements ,
NIST ,
Omissions ,
Popular ,
Publicly-Traded Companies ,
Reporting Requirements ,
Sarbanes-Oxley ,
Securities Act of 1933 ,
Securities and Exchange Commission (SEC) ,
Securities Exchange Act of 1934 ,
Software ,
Vulnerability Assessments
Florida Governor Ron DeSantis recently signed Senate Bill 262 into law, adopting the "Digital Bill of Rights" proposed by his office in February. Florida joins the rapidly increasing group of states, California, Utah,...more
9/21/2023
/ Cure Periods ,
Data Collection ,
Data Processors ,
Enforcement ,
Florida ,
Gramm-Leach-Blilely Act ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Jurisdiction ,
Minor Children ,
Nonprofits ,
Online Gaming ,
Opt-Outs ,
Popular ,
Sensitive Personal Information ,
Social Media ,
Software ,
State Privacy Laws
On September 11, 2023, Delaware Governor John Carney signed into law House Bill No. 154 ("Delaware Personal Data Privacy Act"), Delaware's new state consumer privacy law, which will become effective January 1, 2025. Delaware...more
9/18/2023
/ Consumer Privacy Rights ,
Delaware ,
Enforcement ,
FERPA ,
Governor Carney ,
Gramm-Leach-Blilely Act ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Investigations ,
Opt-Outs ,
Personal Data ,
State Privacy Laws