A member of Kaiser Permanente, an integrated managed care consortium headquartered in Oakland, California, has asked a federal judge in Seattle to certify nationwide classes and California subclasses in a privacy lawsuit...more
6/16/2026
/ California ,
CIPA ,
Class Action ,
Consumer Privacy Rights ,
Data Collection ,
Data Privacy ,
Data Protection ,
Health Care Providers ,
Intrusion Upon Seclusion ,
Invasion of Privacy ,
Patient Privacy Rights ,
Putative Class Actions ,
Sensitive Personal Information ,
Web Tracking ,
Websites
AI governance is often discussed through the lens of policies, frameworks, and responsible AI principles. Those tools matter, but they are not where many of the most important AI decisions are actually being made. In...more
A California court just gave companies facing website tracking claims under the California Invasion of Privacy Act (CIPA) a very helpful ruling. In Blaker v. NetScout Systems, Inc., Case No. 25STCV31283 (May 27, 2026), the...more
6/5/2026
/ California ,
CIPA ,
Consent ,
Invasion of Privacy ,
Motion to Dismiss ,
Software ,
State Privacy Laws ,
Statutory Interpretation ,
Surveillance ,
Web Tracking ,
Websites
A recent Third Circuit decision gives companies another strong defense point in the wave of website tracking and session replay litigation, including claims brought under the California Invasion of Privacy Act (CIPA)....more
Colorado has now significantly revised its AI governance framework before the law ever takes effect. SB 26-189, approved by Governor Jared Polis on May 14, 2026, repeals and reenacts key portions of the Colorado Artificial...more
5/28/2026
/ Artificial Intelligence ,
Automated Decision Systems (ADS) ,
Colorado ,
Data Privacy ,
Disclosure Requirements ,
Machine Learning ,
New Legislation ,
Personal Data ,
Recordkeeping Requirements ,
Regulatory Oversight ,
Reporting Requirements ,
State and Local Government
The Texas Attorney General has filed a new consumer-protection lawsuit against Netflix, alleging that the company misled Texans by marketing itself as an ad-free, kid-friendly alternative to Big Tech while allegedly building...more
5/26/2026
/ Advertising ,
Consumer Privacy Rights ,
COPPA ,
Data Collection ,
Data Privacy ,
Netflix ,
Online Safety for Children ,
State Attorneys General ,
Targeted Digital Advertising ,
Texas ,
Unfair or Deceptive Trade Practices
Many insurers, and the businesses they cover, are still treating artificial intelligence (AI) risk as if it were cyber risk cloaked in a costume. That instinct is understandable since AI systems process data, rely on vendors,...more
Pennsylvania’s lawsuit against Character Technologies, Inc., is a notable early test of how professional licensing laws may apply to consumer-facing AI chatbots. The Commonwealth, acting through the Department of State and...more
California regulators have announced a major privacy settlement with General Motors (GM) over allegations that the company unlawfully sold the location and driving data of hundreds of thousands of Californians to two data...more
California companies may have less time than they think to prepare for privacy audits. The California Privacy Protection Agency’s (CPPA) new Audits Division, created in February 2026, is expected to begin assessing companies’...more
5/8/2026
/ Audits ,
California ,
California Consumer Privacy Act (CCPA) ,
California Privacy Protection Agency (CPPA) ,
Consumer Privacy Rights ,
Corporate Counsel ,
Cybersecurity ,
Data Privacy ,
Regulatory Oversight ,
Risk Management ,
State Privacy Laws
Fashion, beauty, and wearable technology brands are heading into 2026 with a lot more to think about concerning data privacy. What used to feel like a back-end legal issue is now shaping how companies design products,...more
The California Consumer Privacy Act (CCPA) continues to stand apart as the only comprehensive state privacy law in the U.S. that applies to personal information relating to employees, job applicants, and independent...more
5/1/2026
/ California Consumer Privacy Act (CCPA) ,
California Privacy Protection Agency (CPPA) ,
Consumer Privacy Rights ,
Data Privacy ,
Disclosure Requirements ,
Employee Privacy Rights ,
Employer Responsibilities ,
Independent Contractors ,
Job Applicants ,
Notice Requirements ,
Rulemaking Process ,
State Privacy Laws
Legal commentary on artificial intelligence in law practice often focuses on speed: drafts that once took days can now be produced in hours, and research that once took hours can now be narrowed in minutes. Those gains are...more
California’s new Delete Request and Opt-Out Platform (DROP) goes live on August 1, 2026, and the compliance stakes are enormous. State officials have warned that a single missed deletion cycle could create theoretical penalty...more
As corporate legal departments continue adopting AI, the conversation is shifting from experimentation to strategy. According to the Thomson Reuters Institute’s 2026 State of the Corporate Law Department Report, nearly half...more
4/23/2026
/ Artificial Intelligence ,
Business Strategies ,
Contract Drafting ,
Contract Lifecycle Management ,
Contract Management ,
Corporate Counsel ,
Cost-Savings ,
Document Review ,
Legal Operations ,
Legal Technology ,
Process Improvement
A federal judge has ruled that CNN must face a proposed class action alleging that its website shared consumers’ personal information with Microsoft and adtech firms without consent, in alleged violation of the California...more
4/17/2026
/ Advertising ,
California ,
CIPA ,
Class Action ,
CNN ,
Consent ,
Data Collection ,
Data Privacy ,
Personal Information ,
Popular ,
State Privacy Laws ,
Targeted Digital Advertising ,
Web Tracking
California Governor Gavin Newsom issued a new executive order aimed at tightening California’s procurement rules for artificial intelligence (AI) vendors and “raising the bar” for companies that want to sell AI tools to the...more
A new class action in the U.S. District Court for the Northern District of California alleges that Ace Hardware tracked users’ online activity through third-party tools before users could make meaningful choices through...more
3/30/2026
/ Class Action ,
Consent ,
Consumer Privacy Rights ,
Cookie Banners ,
Cookies ,
Data Collection ,
Data Privacy ,
Data Protection ,
Opt-Outs ,
Retailers ,
Third-Party Service Provider ,
Unfair or Deceptive Trade Practices ,
Web Tracking
The California Privacy Protection Agency (CPPA) issued a decision requiring Ford Motor Company to pay a fine of $375,703 and update its privacy practices following a settlement for its alleged violations of the California...more
3/20/2026
/ Automotive Industry ,
California ,
California Consumer Privacy Act (CCPA) ,
California Privacy Protection Agency (CPPA) ,
Consumer Privacy Rights ,
Data Privacy ,
Data Protection ,
Enforcement Actions ,
Opt-Outs ,
Regulatory Oversight ,
Settlement ,
State Privacy Laws ,
Web Tracking
A federal court in the Southern District of California declined to dismiss wiretapping and eavesdropping claims tied to Skullcandy Inc.’s alleged use of online trackers on its retail website, allowing the lawsuit to move...more
Data brokers are lining up to comply with California’s one-stop deletion tool requirement under the Delete Act, and the numbers signal a major shift in how privacy rights may be exercised and enforced in California starting...more
A newly filed putative class action in the Western District of Texas targets Bumble, Inc., over an alleged “massive and preventable” cyberattack in or around January 2026, in which attackers allegedly accessed highly...more
2/27/2026
/ Class Action ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Identity Theft ,
Personal Information ,
Phishing Scams ,
Privacy Policy ,
Putative Class Actions ,
Sensitive Personal Information
DJI, the world’s leading manufacturer of civilian drones, has escalated its dispute with the Federal Communications Commission (FCC) by filing an appeal in the Ninth Circuit after the FCC placed many DJI products on its...more
Until California’s legislature provides clearer guardrails, companies should expect continued class action activity under the California Invasion of Privacy Act (CIPA), targeting common website tracking technologies....more
2/16/2026
/ Analytics ,
California ,
CIPA ,
Class Action ,
Consent ,
Consumer Privacy Rights ,
Data Privacy ,
Data Protection ,
Privacy Policy ,
Risk Management ,
State Privacy Laws ,
Web Tracking ,
Website Owner Liability ,
Websites
California resident Nathaniel Bee filed a lawsuit this week alleging that the ATP Tour’s website used third-party tracking technology that captured details on how visitors interacted with the site, including what content they...more
2/13/2026
/ California ,
Consent ,
Consumer Privacy Rights ,
Cookie Banners ,
Cookies ,
Data Collection ,
Data Privacy ,
Invasion of Privacy ,
Opt-Outs ,
State Privacy Laws ,
Targeted Digital Advertising ,
Web Tracking