In November 2023, New York State's Department of Financial Services (NYDFS) amended its cybersecurity regulation, Part 500. This legal alert provides an update for Covered Entities and Class A Businesses on the current NYDFS...more
The World Economic Forum has stated that 88 percent of C-suite executives indicated that adopting artificial intelligence (AI) in their companies is a key initiative for 2025. Companies are pivoting from merely testing AI to...more
2/21/2025
/ Artificial Intelligence ,
California Consumer Privacy Act (CCPA) ,
Compliance ,
Data Privacy ,
Data Security ,
Disclosure Requirements ,
NIST ,
Personal Data ,
Personal Information ,
Privacy Laws ,
State Privacy Laws ,
Transparency
To commemorate Data Privacy Day, we are pleased to outline Hinshaw's top five privacy predictions for 2025. We covered our strategic recommendations for privacy planning in our earlier alert, and today, we provide some...more
1/30/2025
/ Artificial Intelligence ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Electronic Protected Health Information (ePHI) ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Machine Learning ,
Online Safety for Children ,
Popular ,
Regulatory Requirements ,
State Privacy Laws
As January 2025 privacy strategy planning ramps up this fall, our Privacy, Security, & Artificial Intelligence team has put together a planning alert for 2024–2025. In this installment, we review the following nine state...more
9/26/2024
/ Compliance ,
Consent ,
Consumer Privacy Rights ,
Data Privacy ,
Data Protection Impact Assessments (DPIAs) ,
Data Security ,
Opt-Outs ,
Personal Data ,
Privacy Policy ,
Regulatory Requirements ,
Sensitive Personal Information ,
State Privacy Laws
The recent Federal Trade Commission (FTC) amendment adds a new security breach reporting requirement to the Gramm–Leach–Bliley Act (GLBA) Safeguards Rule. The Safeguards Rule is a regulatory framework that mandates financial...more
Hinshaw's Privacy, Security, & Artificial Intelligence (AI) practice group has been continuously monitoring the changes to state AI regulations, which we outline below for your company to be aware of and comply with if you...more
5/1/2024
/ Algorithms ,
Artificial Intelligence ,
Bias ,
Data Security ,
Deep Fake ,
Disclosure Requirements ,
Discrimination ,
ECOA ,
Impact Assessments ,
Machine Learning ,
Regulatory Agenda ,
Regulatory Oversight ,
State and Local Government
Kentucky - On April 4, 2024, Kentucky joined the growing number of states to enact data privacy legislation, becoming the third state to do so in 2024 and the fifteenth state overall at the time of enactment....more
4/24/2024
/ Compliance ,
Consent ,
Consumer Privacy Rights ,
Data Privacy ,
Data Protection Impact Assessments (DPIAs) ,
Data Retention ,
Data Security ,
Gramm-Leach-Blilely Act ,
Nonprofits ,
Opt-Outs ,
Personal Data ,
State Privacy Laws
With the first month of 2024 now behind us, it is time for organizations to start seriously considering key comprehensive state data privacy compliance obligations for 2024. In total, seven states passed data privacy laws...more
2/13/2024
/ Compliance ,
Consumer Privacy Rights ,
Data Privacy ,
Data Security ,
GLBA Privacy ,
Personal Information ,
Privacy Policy ,
Sensitive Personal Information ,
Small Business ,
State Privacy Laws ,
Targeted Digital Advertising ,
Third-Party Service Provider