FTC and DOJ Reach US$2.95 Million Settlement with Verkada for Alleged Violations of the FTC Act and CAN-SPAM Act -
On August 30, 2024, the Federal Trade Commission (“FTC”) announced a proposed order with Verkada Inc....more
9/27/2024
/ Amicus Briefs ,
Arbitration Agreements ,
Artificial Intelligence ,
CAN-SPAM Act ,
COPPA ,
Cyber Attacks ,
Cybersecurity ,
Department of Health and Human Services (HHS) ,
Department of Justice (DOJ) ,
Ethics ,
EU ,
European Commission ,
Facial Recognition Technology ,
Federal Trade Commission (FTC) ,
FTC Act ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Human Rights ,
Online Reviews ,
Securities and Exchange Commission (SEC) ,
Settlement ,
Standard Contractual Clauses ,
UK ,
Web Tracking
X Agrees to Stop Processing EU Data to Train its Grok AI -
Ireland’s Data Protection Commission (“DPC”) recently filed an urgent High Court application against X (formerly Twitter) for using the personal data of European...more
9/13/2024
/ Artificial Intelligence ,
Cybersecurity ,
Data Collection ,
Data Protection ,
Data Security ,
EU ,
EU-US Privacy Shield ,
European Data Protection Board (EDPB) ,
Fines ,
Ireland ,
Liability ,
Personal Data ,
Sensitive Personal Information ,
Twitter ,
Uber
SEC Issues New Guidance as to 8-K Disclosures Relating to Cybersecurity Incidents -
On June 27, 2024, the U.S. Securities and Exchange Commission (the “SEC”) issued new guidance on the agency’s guidelines for cybersecurity...more
7/19/2024
/ Artificial Intelligence ,
Bots ,
California Consumer Privacy Act (CCPA) ,
COPPA ,
Cybersecurity ,
Department of Health and Human Services (HHS) ,
Disclosure Requirements ,
Healthcare ,
Online Safety for Children ,
Ransomware ,
Securities and Exchange Commission (SEC) ,
Settlement ,
Tracking Systems ,
UK ,
Websites
April 2024 On April 4, 2024, the U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (“CISA”) published a 447-page Notice of Proposed Rulemaking (“Proposed Rules”) in accordance with the...more
4/19/2024
/ Artificial Intelligence ,
California Consumer Privacy Act (CCPA) ,
California Privacy Protection Agency (CPPA) ,
Critical Infrastructure Sectors ,
Cyber Incident Reporting ,
Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Data Security ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Government Agencies ,
Machine Learning ,
OMB ,
Online Safety for Children ,
Privacy Laws ,
Proposed Rules ,
Reporting Requirements ,
UK ,
Voluntary Compliance
FTC Announces Proposed Settlement with Software Provider to Settle Allegations that its Inadequate Security Safeguards Led to Cyberattack -
On February 1, 2024, the Federal Trade Commission (“FTC”) announced a proposed...more
NSA and CISA Release Report on “Top Ten” Cybersecurity Misconfigurations; CISA Calls for Software Manufacturers to Implement Best Practices -
On October 5, 2023, the United States National Security Agency (NSA) and...more
10/20/2023
/ Artificial Intelligence ,
Cybersecurity ,
Data Breach ,
Data Transfers ,
European Data Protection Board (EDPB) ,
Federal Trade Commission (FTC) ,
Fines ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Investigations ,
Law Enforcement ,
Manufacturers ,
National Security Agency (NSA) ,
Personal Data ,
Popular ,
Settlement ,
Software ,
UK ICO
SEC Finalizes Cybersecurity Disclosure Rules for Public Companies -
On July 26, 2023, the Securities and Exchange Commission (“SEC”) voted to adopt new rules requiring public companies to make certain disclosures...more
8/4/2023
/ California Privacy Protection Agency (CPPA) ,
California Privacy Rights Act (CPRA) ,
Cybersecurity ,
Department of Health and Human Services (HHS) ,
Disclosure Requirements ,
Enforcement ,
Federal Trade Commission (FTC) ,
Final Rules ,
Foreign Private Issuers ,
Form 8-K ,
Hospitals ,
Investment Company Act of 1940 ,
Mobile Apps ,
Securities and Exchange Commission (SEC) ,
Telehealth ,
Tracking Systems ,
Websites
Biden Administration to Introduce New National Cyber Strategy for Critical Infrastructure -
The Biden administration is reportedly working on a National Cyber Strategy for critical infrastructure that will advocate a more...more
1/20/2023
/ Biden Administration ,
Chemicals ,
Class Action ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Data Collection ,
Data Security ,
Energy Sector ,
Facial Recognition Technology ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Information Technology ,
National Security ,
NIST ,
Oil & Gas ,
OMB ,
Pipelines ,
Proposed Legislation ,
Public Safety ,
Railways ,
Settlement ,
TSA ,
Water
California Privacy Protection Agency Proposes CPRA Regulations as the ADPPA Continues to Advance in Congress -
On July 8, 2022, the California Privacy Protection Agency (“CPPA”) filed a Notice of Proposed Rulemaking...more
7/22/2022
/ Biometric Information ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Consumer Financial Protection Bureau (CFPB) ,
Consumer Privacy Rights ,
Cyber Attacks ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Digital Markets Strategy ,
Digital Services ,
Fair Credit Reporting Act (FCRA) ,
Proposed Regulation
Clearview AI Settles Biometric Data Privacy Suit with ACLU -
On May 9, 2022, Clearview AI, Inc. (“Clearview”) and the American Civil Liberties Union (“ACLU”) announced an agreement to settle a lawsuit involving Clearview...more
5/27/2022
/ American Civil Liberties Union (ACLU) ,
Americans with Disabilities Act (ADA) ,
Artificial Intelligence ,
Biden Administration ,
Biometric Information ,
Clearview AI ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
European Data Protection Board (EDPB) ,
Facial Recognition Technology ,
Malware ,
Managed Service Providers (MSPs) ,
Popular ,
Regulatory Reform
SEC Proposes New Cybersecurity Rules for Public Companies -
On March 9, 2022, the Securities and Exchange Commission (“SEC”) announced proposed amendments to its rules on cybersecurity. The proposed rules aim to “enhance and...more
3/25/2022
/ Cookie Banners ,
COPPA ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Disclosure Requirements ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Mobile Apps ,
Popular ,
Privacy Concerns ,
Publicly-Traded Companies ,
Regulatory Agenda ,
Regulatory Reform ,
Regulatory Violations ,
Securities and Exchange Commission (SEC)
SEC Proposes and Seeks Comments on New Cybersecurity Rules -
At an open meeting on February 9, 2022, the Securities and Exchange Commission (“SEC”) voted three-to-one to propose new and amended rules regarding cybersecurity...more
2/25/2022
/ Asset Management ,
Cybersecurity ,
Data Collection ,
Disclosure Requirements ,
EDPS ,
International Data Transfers ,
Personal Data ,
Policies and Procedures ,
Popular ,
Registered Investment Advisors ,
Registered Investment Companies (RICs) ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Spyware