On March 12, the California Privacy Protection Agency (CPPA) announced the first settlement reached under its jurisdiction to enforce the California Consumer Privacy Act (CCPA). This settlement, with American Honda Motor Co....more
On March 10, 2025, California Attorney General Rob Bonta (AG) announced an “ongoing investigative sweep” into the use of consumer location data by mobile app providers, advertising networks and data brokers. The AG sent...more
Financial firms doing business in New York should be mindful of a recent e-blast sent by the state’s financial regulator concerning cybersecurity requirements that become effective in less than two months. The New York...more
The year 2024 witnessed significant developments in the legal landscape governing artificial intelligence (AI). Three states passed comprehensive AI legislation, with others passing multiple laws that regulate certain AI...more
1/16/2025
/ Artificial Intelligence ,
Colorado ,
Cybersecurity ,
Department of Justice (DOJ) ,
Disclosure Requirements ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Intellectual Property Litigation ,
NYDFS ,
Popular ,
Securities and Exchange Commission (SEC)
As 2025 begins, we cover several significant corporate governance developments that occurred in the second half of 2024 and since our Corporate Governance: 2024 Midyear Review was published in August. We first highlight...more
2024 saw continued expansion of laws, regulations and enforcement actions concerning privacy and data security. With no overarching federal privacy law, states continue to expand their enforcement. Four new comprehensive...more
For users and developers of artificial intelligence (AI), keeping abreast of the evolving legal landscape is challenging but critical. This update highlights notable recent developments in global AI regulation....more
Since the Texas Data Privacy and Security Act (TDPSA) took effect in July 2024, Texas has emerged as a leader in privacy enforcement. The Texas attorney general (AG) recently announced: “Any entity abusing or exploiting...more
On Oct. 22, 2024, the Securities and Exchange Commission announced that it charged four technology companies with making materially misleading disclosures about the effect the SolarWinds cyberattack had on these issuers. To...more
The New York Department of Financial Services (DFS) issued guidance recently concerning cybersecurity risks associated with artificial intelligence (AI) and measures that covered entities (generally, banks, insurers and other...more
In this quarterly update, we review the latest developments in three subjects salient to corporate use of artificial intelligence (AI). First, we discuss the risks associated with AI, the case for board oversight and how the...more
9/27/2024
/ Algorithms ,
Artificial Intelligence ,
Board of Directors ,
Copyright ,
Copyright Infringement ,
Federal Trade Commission (FTC) ,
Innovative Technology ,
Intellectual Property Protection ,
Machine Learning ,
Patents ,
Popular ,
Technology Sector ,
Trademarks
On July 18, 2024, U.S. District Judge Paul A. Engelmayer of the Southern District of New York dismissed most of the charges that the Securities and Exchange Commission brought against SolarWinds and its chief information...more
In this midyear update, we cover a number of significant corporate governance developments that have taken place over the first half of the year and since our Corporate Governance 2023 Year-End Review....more
On May 21, 2024, the director of the SEC’s Division of Corporation Finance, Erik Gerding, issued a statement regarding the new requirement to disclose material cybersecurity incidents on Form 8-K. The SEC’s latest...more
On May 16, 2024, the Securities and Exchange Commission (SEC) adopted final amendments to Regulation S-P, one year after issuing the proposed amendments (discussed here). Regulation S-P is a set of privacy rules that govern...more
Since the rise of ChatGPT in late 2022, state lawmakers have tried various strategies to regulate artificial intelligence (AI), with mixed outcomes. At least 25 states, Puerto Rico and the District of Columbia introduced AI...more
On April 7, 2024, Sen. Maria Cantwell, chair of the Senate Commerce Committee, and Rep. Cathy McMorris Rodgers, chair of the House Energy and Commerce Committee, advanced a new federal privacy bill to the House floor titled...more
On March 18, the Securities and Exchange Commission (SEC) announced that it settled charges against two investment advisers, Delphia (USA) Inc. and Global Predictions Inc., for making false and misleading statements about...more
On Wednesday, March 13, the European Parliament approved the regulation harmonizing rules on artificial intelligence (AI) (the AI Act). Stakeholders must comply with the AI Act due to its global reach, when it takes effect...more
On Feb. 21, 2024, California’s Attorney General (AG) announced the second public settlement of an enforcement action under the California Consumer Privacy Act (CCPA). This settlement requires DoorDash to pay a $375,000 civil...more
The year 2023 saw continued expansion of public interest in privacy rights, data security and related legislation. Comprehensive privacy laws took effect in five states, while 12 more states enacted similar laws that will...more
Keeping abreast of the latest artificial intelligence (AI) developments in this rapidly changing area of law is critical. This newsletter highlights recent updates in AI regulation, covering major AI developments in the...more
Since the release of ChatGPT in late 2022, popular use of artificial intelligence (AI) has exploded. One survey reported that over 56% of employees already use AI at work, with 1 in 10 using it daily. However, only 26% of...more
The New York State Department of Financial Services (NYDFS) adopted comprehensive amendments to its cybersecurity regulations (known as Part 500) on Nov. 1. The draft amendments were first published in July 2022 and finalized...more
Gov. Gavin Newsom signed the Delete Act (the Act) on Oct. 11, making it easier for California consumers to instruct data brokers to delete their personal information or refrain from selling or sharing it. Consumers already...more