Hawaii’s State Data Office recently issued a series of guidance documents for its state agencies on how to handle artificial intelligence. This includes guidance on data protection, data retention and use of Generative AI....more
2/18/2025
/ Artificial Intelligence ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Retention ,
Data Security ,
Hawaii ,
Information Security ,
Privacy Laws ,
Regulatory Requirements ,
Risk Management ,
State Privacy Laws
The California Privacy Protection Agency is going after data brokers.
The CPPA board voted earlier this month to adopt new regulations regarding data broker registration requirements. If approved, the regulations will...more
The Federal Trade Commission and the DOJ support a Digital Millennium Copyright Act exemption for vehicle operational data to promote the “right to repair.”
An exemption currently exists for computer programs that control...more
India enacted its new Digital Personal Data Protection Act last year. Here are some key takeaways regarding the law, courtesy of Sajai Singh, a partner at J. Sagar Associates in India. Singh spoke recently at Alpine Privacy...more
The White House recently issued an executive order that restricts cross-border transfers of personal data from the United States to “countries of concern.” President Biden also urged Congress to pass comprehensive privacy...more
2/29/2024
/ Biden Administration ,
Cybersecurity ,
Data Protection ,
Department of Defense (DOD) ,
Department of Health and Human Services (HHS) ,
Department of Homeland Security (DHS) ,
Department of Justice (DOJ) ,
Department of Veterans Affairs ,
Executive Orders ,
Sensitive Personal Information ,
US Department of State
The National Association of Insurance Commissioners (NAIC) has issued a model bulletin exposure draft on the use of algorithms, predictive models and artificial intelligence (AI) systems by insurers.
In short, users of...more
The National Institute of Standards and Technology (NIST)’s National Artificial Intelligence Advisory Committee (NAIAC) recently released its first report to President Joe Biden, providing several key recommendations on how...more
The California Privacy Protection Agency (CPPA) has issued a Final Statement of Reasons for amended California Consumer Privacy (CCPA) regulations.
Key Points:
The amendments were “necessary” (used 135 times), just...more
Data Privacy Day is this weekend. Here are some tips and pointers individuals and businesses should keep in mind going forward.
1. Transparency is front and center for regulators in the United States and Europe, so if...more
In public comments during the Federal Trade Commission’s (FTC) data privacy rulemaking open forum, a senior U.S. Chamber of Commerce came out against the agency making broad rules on data privacy....more
The UK’s Information Commissioner’s Office (ICO) has issued guidance on pseudonymisation.
Here are some key points:
What is it?
At a basic level, pseudonymisation starts with a single input (the original data) and...more
In Connecticut, if you adopt and maintain and comply with written cybersecurity program that contains administrative, technical and physical safeguards for the protection of personal or restricted information and that...more
In the Connected and Automated Mobility (CAM) ecosystem, cybersecurity … should be seen as a core enabler that protects safety and provides value to products and services, and is integrated in the lifecycles of products’ and...more
The European Union Agency for Cybersecurity (ENISA) and the Joint Research Centre of the European Commission (JRC) have issued a joint guidance on “Cybersecurity Challenges in the Update of Artificial Intelligence in...more
The Australian Cyber Security Center has published a guide on identifying cyber supply chain risks in suppliers, manufacturers, distributors and retailers...more
“Increased usage of consumer products and industrial devices connected to the internet will also raise new risks for privacy, information- and cybersecurity, including increasingly potential impacts on the integrity and...more
The White House recently issued guidance to government agencies for the regulation of artificial intelligence applications.
Key data protection takeaways:
•Transparency is essential. Disclosures should be written in a format...more
The Consumer Privacy Protection Act (CPPA) is coming! The Canadian government has submitted a bill for the amendment of the Personal Information Protection and Electronic Documents Act (PIPEDA) and the enactment of a new,...more
The Gibraltar Regulatory Authority has issued helpful guidance on data protection considerations for the use of video conferencing applications (VCAs).
Key recommendations:
1.Consider the implications of VCAs and their...more
How does GDPR apply to the transfer of personal data from an EU entity to an international organization?
“Entities subject to the GDPR that exchange personal data with international organisations have to comply with the...more
U.S Rep. Bob Latta (R-Ohio), ranking member of the House Energy and Commerce Subcommittee on Communications and Technology. has re-introduced the "Safely Ensuring Lives Future Deployment and Research In Vehicle Evolution...more
The California Attorney General has announced that the state’s Office of Administrative Law (OAL) granted its approval of final regulations under the California Consumer Privacy Act (CCPA). They are effective immediately....more
Poland’s Data Protection Authority UODO weighs in on “employee of the month” postings in the workplace.
•The employer may, under certain conditions, display the best performance results in the workplace, based on his...more
New Zealand’s Government Cyber Security Centre has issued a guide on incident response, laying out key steps designed to help business leaders and cybersecurity professionals strengthen their organizations’ ability to manage...more
Commenters to the final California Consumer Privacy Act (CCPA) regulations asked if it is possible to provide information about, and access to the “Do not Sell” link and/or opt out opportunity in the privacy notice?
The...more