Businesses that sell data regarding California residents have been put on notice by the California Privacy Protection Agency’s (the CPPA’s) recent aggressive enforcement of the California Delete Act. On October 30, 2024, the...more
In 2024, the California legislature passed 17 laws related to artificial intelligence (AI). These new laws cover various themes and industries, including but not limited to deepfakes, training data disclosures, health care,...more
1/28/2025
/ Artificial Intelligence ,
California ,
Compliance ,
Data Privacy ,
Deep Fake ,
Disclosure Requirements ,
Entertainment Industry ,
Governor Newsom ,
Healthcare ,
New Legislation ,
Online Platforms ,
Regulatory Agenda ,
Social Media ,
Transparency
On October 16, 2024, the New York Department of Financial Services (NYDFS) issued an Industry Letter that discusses the cybersecurity risks associated with the use of artificial intelligence (AI) and outlines strategies to...more
10/25/2024
/ Artificial Intelligence ,
Bad Actors ,
Covered Entities ,
Cyber Attacks ,
Cyber Crimes ,
Cybersecurity ,
Data Collection ,
Deep Fake ,
NYDFS ,
Popular ,
Risk Assessment ,
Risk Management ,
Third-Party Service Provider
On January 29, 2024, the U.S. Department of Commerce’s (Department) Bureau of Industry and Security issued a notice of proposed rulemaking (Proposed Rule) that proposes a new Customer Identification Program (CIP) and other...more
On June 6, 2023, the Board of Governors of the Federal Reserve System, Office of the Comptroller of the Currency and Federal Deposit Insurance Corp. (collectively, the “Agencies”) issued final interagency guidance that...more
6/28/2023
/ Banking Sector ,
Board of Governors ,
Contract Negotiations ,
Due Diligence ,
Federal Reserve ,
Financial Institutions ,
Interagency Guidance ,
OCC ,
Risk Management ,
Termination ,
Third-Party Service Provider
On April 27, 2023, Washington’s Governor Inslee signed the My Health My Data Act (MHMDA) into law, adding a new wrinkle to the increasingly complex patchwork of state privacy laws. As opposed to the other recently enacted...more
On June 4, 2021, the European Commission introduced the new set of Standard Contractual Clauses (“SCCs”), a primary mechanism for lawfully transferring personal data from Europe to the United States under the European Union’s...more
On March 9, 2022, the SEC proposed new rules (“Proposed Rules”) that would expand cybersecurity disclosures applicable to public companies subject to the reporting requirements of the Securities Exchange Act of 1934...more
On November 18, 2021, the Office of the Comptroller of the Currency (“OCC”), the Board of Governors of the Federal Reserve System (“Board”), and the Federal Deposit Insurance Corporation (“FDIC”) (collectively, the...more
1/5/2022
/ Bank Service Company Act ,
Bank Service Providers ,
Banking Sector ,
Cyber Attacks ,
Cyber Incident Reporting ,
Cybersecurity ,
FDIC ,
Federal Register ,
Federal Reserve ,
OCC ,
Popular
On October 27, 2021, the Federal Trade Commission (“FTC”) announced new updates to the Gramm-Leach-Bliley Act (“GLBA”) by amending the Standards for Safeguarding Customer Information, known as the “Safeguards Rule,” and...more