With the passing of the first major compliance deadline of the EU AI Act on February 2, 2025, EU regulators have officially banned certain high-risk AI applications. Companies that develop or deploy AI systems must now...more
On January 16, 2025, the Federal Trade Commission (FTC) published its Final Rule officially adopting updates to the Children’s Online Privacy Protection Act (COPPA). For a comprehensive overview of these changes, be sure to...more
Overview -
In 2024, lawsuits targeting companies for their use of commonly deployed digital tracking technologies, such as pixels, and session replay tools proliferated. Frequently used on apps and websites, tracking...more
Starting January 2025, five state privacy laws will take effect, providing consumer privacy rights to a new swath of individuals across the country. Delaware, Iowa, Nebraska, and New Hampshire’s laws will go into effect on...more
With increasing scrutiny on how companies handle personal data of children under 18, several new laws are reshaping the legal landscape. Even companies that may not intend to direct their services to children still need to be...more
Companies frequently wish to record telephone conversations related to their operations, customers, or business transactions. In response, the U.S. Congress and most state legislatures have enacted statutes and regulations...more
Companies frequently wish to record telephone conversations related to their operations, customers, or business transactions. In response, the U.S. Congress and most state legislatures have enacted statutes and regulations...more
On May 16, 2024, the Illinois Legislature passed Senate Bill 2979 (SB2979), clarifying how damages are calculated under the Illinois Biometric Information Privacy Act (BIPA). 740 ILCS 14/1, et seq. This amendment confirms...more
On July 1, 2024, three more U.S. state privacy regulations will take effect. While these laws align with many of the principles established by other state privacy laws, they also introduce unique compliance requirements...more
On May 22, 2024, the Consumer Financial Protection Bureau (CFPB) issued an interpretive rule that redefines the regulatory framework for Buy Now, Pay Later (BNPL) lenders, aligning them with traditional credit card providers...more
On May 16, 2024, the Illinois Legislature passed Senate Bill 2979 (SB2979), marking a significant amendment to how damages are calculated under the Illinois Biometric Information Privacy Act (BIPA). This amendment refines the...more
On May 9, 2024, the CFPB released a comprehensive report detailing its findings on challenges reported by consumers regarding their credit card rewards programs. This report, as well as remarks made by CFPB Director Rohit...more
In an era where children are increasingly immersed in the digital realm, concerns about their safety and privacy online have become a focal point for policymakers (even on both sides of the aisle) and parents alike. Several...more
In March the Consumer Financial Protection Bureau (CFPB) announced a final rule intended to limit late payment fees on consumer credit cards distributed by the larger credit card issuers (the “Final Rule”). The Final Rule,...more
In today's rapidly evolving technological landscape, artificial intelligence (“AI”), and particularly generative AI, continues to develop as a powerful tool not only for industry but also government entities. The successful...more
In an era where digital privacy is increasingly under threat, the recent deepfake incident involving the globally renowned artist, Taylor Swift, has catapulted the issue of nonconsensual pornography to center stage. This...more
For the past several years, website owners that gather data from California residents have faced a surge in class action lawsuits and threatened lawsuits alleging violations of the California Invasion of Privacy Act (CIPA)....more
Class-action lawyers are adapting their legal tactics, moving away from suing companies under California's wiretap law and instead focusing on a new legal claim: the pen register theory....more
On December 20, 2023, the Federal Trade Commission (FTC) published a Notice of Proposed Rulemaking (Proposed Rule) seeking to update the Children’s Online Privacy Protection Act (COPPA), which would place new restrictions on...more
Effective January 1, 2024 -
In an effort to address the evolving needs of the workforce and promote a healthier work-life balance, the state of Illinois has taken a significant step by enacting the Paid Leave for All...more
On December 19, 2023, Rite Aid Corporation (Rite Aid) agreed to settle Federal Trade Commission (FTC) charges that it failed to take reasonable measures to prevent harm to consumers from its use of facial recognition...more
Lawsuits under the Biometric Information Privacy Act (BIPA) are filed nearly every day in Illinois and other jurisdictions. In these cases, a company defending an alleged BIPA violation usually seeks to enforce a relevant...more
While federal and state laws have long prohibited providers of financial services from engaging in unfair, deceptive, and abusive acts and practices (“UDAAP”), such prohibitions typically apply only to consumer-purpose...more