On March 28, the FDIC issued updated guidance clarifying the process for FDIC-supervised institutions to engage in crypto-related activities. The guidance rescinds and replaces prior instructions issued in 2022 and makes...more
On February 20, the SEC announced the creation of its Cyber and Emerging Technologies Unit (CETU) to address misconduct involving new technologies and strengthen protections for retail investors. The CETU replaces the SEC’s...more
On January 2, 2025, the Consumer Financial Protection Bureau (CFPB) proposed an interpretive rule under the Electronic Fund Transfer Act (EFTA) and Regulation E to clarify how emerging payment systems, such as those used in...more
On December 19, the U.S. Department of Treasury released a report summarizing key findings from its 2024 Request for Information (RFI) on the uses, opportunities, and risks of Artificial Intelligence (AI) in financial...more
On November 12, the CFPB released a report analyzing federal and state-level privacy protections for consumer financial data.
The current federal framework for financial data privacy relies on the Gramm-Leach-Bliley Act...more
On August 28, the CFPB issued a Consumer Advisory warning that it believes video game companies are targeting children for monetary gain. With 45.7 million U.S. children engaged in video gameplay, the agency is concerned...more
9/18/2024
/ Business Model ,
Consumer Advisory Board ,
Consumer Financial Protection Bureau (CFPB) ,
Consumer Protection Laws ,
Cybersecurity ,
eSports ,
FinTech ,
Gaming ,
Online Gaming ,
Online Platforms ,
Online Safety for Children ,
Privacy Laws ,
Technology Sector
On August 28, the CFPB issued a Consumer Advisory warning that it believes video game companies are targeting children for monetary gain. With 45.7 million U.S. children engaged in video gameplay, the agency is concerned...more
9/16/2024
/ Consumer Financial Protection Bureau (CFPB) ,
Consumer Protection Laws ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Financial Services Industry ,
FinTech ,
Online Safety for Children ,
Privacy Laws ,
Rulemaking Process ,
Video Games
On June 28, Pennsylvania took a significant step to enhance its data protection framework by updating the Breach of Personal Information Notification Act through the enactment of SB 824. This new legislation revises the older...more
On May 23, the U.S. Department of Housing and Urban Development (HUD) announced that Federal Housing Administration-approved Mortgagees are subject to a heightened cybersecurity incident reporting regime. The new requirement,...more
On May 13, the FTC’s amendment to the Safeguards Rule relating to the reporting of data breaches and security incidents, which were announced in October of 2023, became effective. As a reminder, the FTC’s Safeguards Rule...more
5/20/2024
/ Car Dealerships ,
Consumer Privacy Rights ,
Cyber Incident Reporting ,
Cybersecurity ,
Data Breach ,
Federal Trade Commission (FTC) ,
Mortgage Lenders ,
Non-Bank Lenders ,
Notification Requirements ,
Payday Loans ,
Personal Information ,
Privacy Laws ,
Rulemaking Process ,
Safeguards Rule
On April 2, at an event at the White House on Data Protection and National Security, CFPB Director Rohit Chopra’s articulated potential changes to the data security regulation landscape and noted that the Bureau is...more
On April 4, the CFPB published a new Issue Spotlight, titled “Banking in Video Games and Virtual Worlds” that analyzes the increased commercial activity within online video games and virtual worlds and the apparent risks to...more
4/8/2024
/ Consumer Financial Products ,
Consumer Financial Protection Bureau (CFPB) ,
Crypto Exchanges ,
Cryptoassets ,
Cybersecurity ,
FinTech ,
Games ,
In-Game Purchases ,
Online Marketplace ,
Privacy Laws ,
Rulemaking Process
On March 6, New Hampshire Governor Chris Sununu signed into law SB 255, a sweeping consumer privacy bill. The Act gives consumers broad rights regarding their privacy and control over their personal data....more
ARTIFICIAL INTELLIGENCE -
What is the Privacy Impact of the White House AI Order for Businesses? Posted November 28, 2023
Biden’s sweeping AI Executive Order sought to have artificial intelligence used in accordance...more
2/7/2024
/ Artificial Intelligence ,
Biometric Information ,
Biometric Information Privacy Act ,
Consumer Privacy Rights ,
Cross-Border Transactions ,
Cybersecurity ,
Data Breach ,
Data Brokers ,
Data Privacy ,
Data Protection ,
Data Security ,
Healthcare ,
Legislative Agendas ,
New Legislation ,
New Regulations ,
Online Safety for Children ,
Privacy Acts ,
Privacy Laws ,
State and Local Government ,
State Privacy Laws
On October 27, the FTC has approved an amendment to the Safeguards Rule that would require non-banking institutions to report certain data breaches and other security events to the agency. The amendment requires financial...more
On August 15, CFPB Director Rohit Chopra announced plans for new CFPB rules that would strictly limit the types of consumer data that can be sold by businesses and ensure that data brokers comply with the Fair Credit...more
8/21/2023
/ Consumer Financial Protection Bureau (CFPB) ,
Corporate Counsel ,
Credit Reporting Agencies ,
Cybersecurity ,
Data Protection ,
Department of Transportation (DOT) ,
Families First Coronavirus Response Act (FFCRA) ,
Federal Trade Commission (FTC) ,
New Rules ,
Social Security ,
USDA
Financial services companies beware: the new state privacy laws exemption are not uniform. To recap, there are privacy laws in 12 states: California, Colorado, Connecticut, Florida, Indiana, Iowa, Montana, Oregon, Tennessee,...more
On June 20, the CFPB published a blog discussing its response to public concerns about workers’ privacy and the risks associated with automated workplace surveillance technology. Automated workplace surveillance technology...more
On May 1, NYDFS settled with a cryptocurrency trading platform over the company’s cybersecurity deficiencies, resulting in a consent order and $1.2 million fine for the crypto company. NYDFS alleged “multiple deficiencies in...more
5/15/2023
/ Crypto Exchanges ,
Cryptocurrency ,
Cybersecurity ,
Digital Currency ,
Enforcement Actions ,
Financial Institutions ,
Financial Regulatory Reform ,
Financial Services Industry ,
Investment ,
Legislative Agendas ,
NYDFS ,
Proposed Legislation ,
Regulatory Agenda ,
Settlement ,
Trading Platforms
On April 4, CFPB Director Rohit Chopra delivered remarks at the International Association of Privacy Professionals’ Global Policy Summit on the importance of reigning in repeat violators of consumer finance and privacy laws....more
On January 12, the CFPB released a report that identified an uptick in identity theft reported by servicemembers. The report found that military consumers (defined as active duty servicemembers, veterans, and military family...more
1/27/2023
/ Consumer Financial Protection Bureau (CFPB) ,
Creditors ,
Cybersecurity ,
Debt ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
Identity Theft ,
Military Service Members ,
Policies and Procedures ,
Privacy Laws ,
Red Flags Rule
Recently, the CFPB released an outline of proposed measures related to the Bureau’s Dodd-Frank Section 1033 rulemaking efforts that would allow consumers the rights over their personal financial data. The outline discusses...more
The FTC recently published an advance notice of proposed rulemaking to discuss harms associated with the collection, processing, and selling of personal data...more
On July 29, the New York Department of Financial Services (NYDFS) released Draft Amendments to its Part 500 Cybersecurity Rules that would impose new obligations on financial institutions on reporting, governance, testing,...more
The CFPB recently published a circular clarifying liability under consumer financial protection law for financial companies that fail to safeguard consumer data. The circular describes how firms may be violating the CFPA’s...more