Virginia recently amended its Consumer Protection Act (the Act) to provide enhanced protection for reproductive and sexual health information. These protections take effect on July 1, 2025.
The amendment prohibits a...more
This week in our March Privacy Forecast, we discuss a growing trend at both the federal and the state level – new laws and regulations that specifically target data brokers.
At the federal level, two new legal frameworks...more
With 13 comprehensive state privacy laws already in effect, the state privacy law landscape is complex. While there are several common threads throughout many of these frameworks that can allow companies to implement a...more
On March 12, 2025, the California Consumer Privacy Protection Agency (CPPA or Agency) announced a settlement with an auto manufacturer, marking the Agency’s first enforcement action under the California Consumer Privacy Act...more
Welcome to our new series, the March Privacy Forecast. In this weekly series, during the month of March, we will delve into the evolving landscape of data privacy, explore new laws, proposed legislation and enforcement...more
3/10/2025
/ Consent ,
COPPA ,
Data Privacy ,
Data Protection ,
Federal Trade Commission (FTC) ,
New Legislation ,
Online Safety for Children ,
Personal Data ,
Privacy Laws ,
Sensitive Personal Information ,
State Privacy Laws
The U.S. Department of Justice’s (DOJ) sweeping new rule on cross-border data transactions is set to take effect in substantial part next month, with broad implications for companies that transfer U.S. personal data or...more
3/6/2025
/ Compliance ,
Cross-Border Transactions ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Department of Justice (DOJ) ,
Export Controls ,
Federal Trade Commission (FTC) ,
National Security ,
Regulatory Requirements ,
Reporting Requirements ,
Sensitive Personal Information
On January 8, 2025, the Federal Communications Commission (FCC or Commission) released a Report and Order (Order) adopting new rules for Robocall Mitigation Database (RMD) filings. Adopted unanimously by the Commission, the...more
1/15/2025
/ Compliance ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
FCC ,
Filing Fees ,
Filing Requirements ,
Final Rules ,
NPRM ,
Regulatory Requirements ,
Reporting Requirements ,
Robocalling ,
Telecommunications ,
Telemarketing
As we enter the New Year, Wiley is looking ahead to the top privacy developments and trends to watch in 2025. On the state side, 2025 kicked off with several new privacy laws going into effect in January, and states continue...more
1/9/2025
/ Biometric Information ,
Consumer Privacy Rights ,
Corporate Counsel ,
Data Brokers ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Personal Data ,
Privacy Laws ,
State Attorneys General ,
State Privacy Laws
In this episode of the Wiley Connected podcast, hosts Duane Pozza and Kat Scott, partners in Wiley's Privacy, Cyber, and Data Governance practice, discuss the implications of new comprehensive privacy laws in Oregon and Texas...more
2024 has started off with a bang for state privacy law developments. Only two months into the new year, there has been significant enforcement activity in California and Connecticut – with the California Privacy Protection...more
California continues to forge ahead on potential new privacy, cybersecurity, and artificial intelligence (AI) obligations, including through its California Consumer Privacy Act (CCPA) rulemaking process and by launching a new...more
9/14/2023
/ Artificial Intelligence ,
Audits ,
Automated Systems ,
California ,
California Consumer Privacy Act (CCPA) ,
California Privacy Protection Agency (CPPA) ,
California Privacy Rights Act (CPRA) ,
Cybersecurity ,
Data Protection ,
Executive Orders ,
Governor Newsom ,
Machine Learning ,
Recordkeeping Requirements ,
Risk Assessment ,
Training Requirements
In a June 14, 2023 speech at the Center for Democracy and Technology (CDT), Federal Communications Commission (FCC or Commission) Chairwoman Jessica Rosenworcel announced that the FCC is launching a new, “first-ever” “Privacy...more
On November 1, 2022, the Federal Trade Commission (FTC) hosted PrivacyCon 2022, its seventh annual conference in which the Commission looks to academics and researchers to inform its efforts to address emerging consumer...more
The National Institute of Standards and Technology (NIST) is leading the federal government’s charge on a framework for assessing and managing risks in artificial intelligence (AI), with a critical workshop this week to...more
On August 30, 2022, the California Legislature passed A.B. 2273, the California Age-Appropriate Design Code Act. The bill – which is modeled after the United Kingdom Information Commissioner’s Office code of practice for age...more
9/1/2022
/ Algorithms ,
California ,
California Consumer Privacy Act (CCPA) ,
COPPA ,
Data Profiling ,
Data Protection ,
Marketing ,
Online Advertisements ,
Privacy Settings ,
Private Right of Action ,
UK
On June 3, 2022, Senator Wicker (R-Miss.), Ranking Member of the Senate Commerce Committee, and Representatives Pallone (D-N.J.) and Rodgers (R-Wash.), Chairman and Ranking Member of the House Energy and Commerce Committee,...more
6/10/2022
/ Biometric Information ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Processing Rules ,
Data Protection ,
Data Protection Acts ,
Data Retention ,
Federal Trade Commission (FTC) ,
Privacy Laws ,
Private Right of Action ,
Proposed Legislation
On March 29-31, 2022, the National Institute for Science and Technology (NIST) held its second broad stakeholder workshop on its draft Artificial Intelligence Risk Management Framework, titled Building the NIST AI Risk...more
On March 3, 2022, the Utah House of Representatives passed a consumer privacy bill: the Utah Consumer Privacy Act. The bill had already passed the Utah Senate in February, and at the time of this writing, awaits a signature...more
Privacy In Focus®-
The last several years have seen major developments in state privacy laws. While Congress remains gridlocked on the federal privacy front, states enacted omnibus data privacy bills that will impact...more
1/19/2022
/ California ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
CDPA ,
Colorado ,
Comment Period ,
Compliance ,
Consumer Privacy Rights ,
Corporate Counsel ,
Data Collection ,
Data Mapping ,
Data Privacy ,
Data Protection ,
Privacy Policy ,
Proposed Amendments ,
State Data Privacy Laws ,
State Privacy Laws ,
Third-Party ,
Virginia
As 2021 draws to a close, businesses subject to California’s privacy laws should pay close attention to developments underway in that state that will have broad impacts on compliance strategies. On September 22, 2021, the...more
On September 22, 2021, the California Privacy Protection Agency (CPPA or Agency)—the new agency established by the California Privacy Rights and Enforcement Act (CPRA)—released an Invitation for Preliminary Comments on...more
On June 8, 2021, the Colorado Legislature passed the Colorado Privacy Act (CPA or “Act”), moving Colorado close to becoming the third state in the nation with its own omnibus privacy law, joining California and Virginia. If...more
In March 2021, with the passage of the Consumer Data Protection Act (CDPA), Virginia took its place as the second state to enact comprehensive data privacy legislation. Virginia follows California, where voters recently...more
Utah has become the second state to establish a legal safe harbor for private-sector entities that follow certain cybersecurity best practices. On March 11, 2021, Utah’s Governor Spencer Cox signed into law the Cybersecurity...more
On March 15, 2021, the California Attorney General (AG) issued further amendments to the implementing regulations of the California Consumer Privacy Act (CCPA), clarifying how a business must facilitate a consumer’s exercise...more