Businesses suffering a data breach affecting Pennsylvania residents may have new compliance obligations pursuant to a recent amendment to the Commonwealth's data breach notification law. Earlier this year, Pennsylvania...more
Get ready to ring in the new year with five new state privacy laws. 2025 will see five new comprehensive consumer privacy laws quickly coming into effect. Four laws, the Delaware Personal Data Privacy Act (DPDPA), the Iowa...more
On June 25, 2024, the Ocean State dove into the growing sea of state consumer data privacy laws with the Rhode Island Data Transparency and Privacy Protection Act (RIDPA), becoming the 19th state to pass a comprehensive...more
We now have another new comprehensive state data privacy laws on the books in 2024. On April 17, Governor Jim Pillen signed the Nebraska Data Privacy Law (NDPA) into law, representing the sixteenth overall entry into the...more
On April 4, Governor Andy Beshear signed the Kentucky Consumer Data Protection Act (KCDPA), making Kentucky the fifteenth state to enact a comprehensive data privacy law. Set to go into effect on January 1, 2026, the KCDPA...more
Businesses have only a short window remaining to ensure compliance with three new privacy laws. Effective July 1, three new comprehensive state data privacy laws come into effect – the Tennessee Information Protection Act...more
A bipartisan, bicameral legislative proposal to create a federal comprehensive data privacy framework may be back on the table. On April 7, 2024, House Energy and Commerce chair Rep. Cathy McMorris Rogers (R-WA) and Senate...more
The world officially has its first comprehensive set of major regulations specifically targeting artificial intelligence: the European Union's AI Act. The AI Act was first introduced in 2021, garnering political consensus...more
Comprehensive consumer privacy protections have arrived in the Garden State and appear to be coming soon to the Granite State. With Governor Phil Murphy's signing of Senate Bill 332 on January 17th, New Jersey became the...more
While the passage of new comprehensive state privacy laws in numerous states grabbed the lion’s share of the privacy headlines throughout 2023, a distinct but related area of regulation was quietly expanding as well: state...more
Businesses operating in regulated industries, particularly in the financial services and healthcare sectors, need to ensure they are paying close attention to the details of the exemptions in the increasingly complex...more
On June 6, 2023, the Board of Governors of the Federal Reserve System, Office of the Comptroller of the Currency and Federal Deposit Insurance Corp. (collectively, the “Agencies”) issued final interagency guidance that...more
6/28/2023
/ Banking Sector ,
Board of Governors ,
Contract Negotiations ,
Due Diligence ,
Federal Reserve ,
Financial Institutions ,
Interagency Guidance ,
OCC ,
Risk Management ,
Termination ,
Third-Party Service Provider
On April 27, 2023, Washington’s Governor Inslee signed the My Health My Data Act (MHMDA) into law, adding a new wrinkle to the increasingly complex patchwork of state privacy laws. As opposed to the other recently enacted...more
The National Telecommunications and Information Administration (NTIA), an agency within the federal Department of Commerce which advises the President on telecommunications and information policy issues, recently issued a...more
With Governor Kim Reynolds signing S.F. 262 into law on March 29, 2023, Iowa became the sixth state to enact a comprehensive consumer privacy law. The text can be found here. The law goes into effect on January 1, 2025.
As...more
While a uniform federal privacy law in the United States continues to be an uncertain prospect overshadowed by other national priorities such as infrastructure and COVID relief, state legislatures have pushed forward with...more
On May 12, 2021, President Biden issued Executive Order No. 14028, entitled “Improving the Nation’s Cybersecurity”, setting out new and enhanced cybersecurity standards for federal government agencies and the commercial...more
A new federal COVID-19 data privacy bill with bipartisan support, the Exposure Notification Privacy Act, would have a substantially narrower scope of application than two previous partisan draft COVID-19 privacy laws. The...more
6/22/2020
/ Apple ,
Asia ,
Contact Tracing ,
Coronavirus/COVID-19 ,
Customer Privacy ,
Data Privacy ,
Data Security ,
Google ,
Notification Requirements ,
Technology ,
UK
Responding to widespread calls for uniform rules and restrictions regarding the collection and use of individuals’ COVID-19-related health information, Congressional Republicans and Democrats have each recently introduced...more
5/19/2020
/ Coronavirus/COVID-19 ,
Corporate Counsel ,
Data Privacy ,
Electronic Protected Health Information (ePHI) ,
Federal Data Privacy ,
Infectious Diseases ,
Patient Privacy Rights ,
PHI ,
Political Parties ,
Proposed Legislation ,
Public Health Emergency