On September 4, 2024, the California Privacy Protection Agency ("CPPA") announced that it issued an Enforcement Advisory ("Advisory") providing guidance on how to avoid using prohibited "Dark Patterns" to obtain consent from...more
The FTC issued a significant new policy statement on May 19, 2022, warning companies that supply educational technology (EdTech) to schools not to use data harvested by their applications for purposes unrelated to education....more
On July 9, 2021, President Biden issued a far-reaching Executive Order seeking to fight market concentration and anticompetitive practices across the entire U.S. economy, stating that "[a] fair, open, and competitive...more
Last week produced a spate of interesting and instructive privacy and data security enforcement activity. ...more
Senators Warner, D-Va., and Fischer, R-Neb., introduced the “Deceptive Experiences to Online Users Reduction,” or DETOUR Act, on April 9, 2019. The bill covers “large online operators” (those with more than 100 million...more
On Friday, September 28, 2018, California Governor Jerry Brown signed the nation’s first Internet of Things (IoT) cybersecurity law. Although the new law presents some compliance issues, it does not appear to conflict with...more
On May 22, 2018, Vermont’s first-in-the-nation law imposing disclosure and data security obligations on data brokers (H.764) went into effect was enacted. Calls for legislation to regulate data brokers are not new – at the...more
On February 26, 2018, a unanimous 11-judge en banc panel of the Ninth Circuit upheld the authority of the Federal Trade Commission (“FTC”) over the non “carrier” activities of a company with common carrier lines of business...more