Podcast - Who Owns Your DNA? Lessons Learned from 23andMe
Business Better Podcast Episode: Bridging Campuses: Legal Insights on Education Industry Consolidation – Privacy and Data Security
The Privacy Insider Podcast Episode 13: Preserving Privacy and Social Connection with Christine Rosen of the American Enterprise Institute
AI in Employment: Navigating the Legal Landscape with Lessons from I, Robot — The Good Bot Podcast
The FinReg Frontier: AI and Machine Learning in Consumer Finance — The Consumer Finance Podcast
#WorkforceWednesday®: Artificial Intelligence Regulations for Employers - Employment Law This Week®
Dialing In: The TCPA and Auto Finance — Moving the Metal: The Auto Finance Podcast
Fintech Focus Podcast | Responding to a Cyber Attack – Key Considerations for GCs and CISOs
The Privacy Insider Podcast Episode 12: Compliance Is Good Business: Getting Beyond Fines with Tom Fox of Compliance Podcast Network
A Blueprint for Efficient SRRs: Mastering Your Subject Rights Workflow
Navigating 2025: Federal Legislative and Regulatory Updates on Stablecoins and Decentralized Finance — The Crypto Exchange Podcast
DOJ Addresses AI in Corporate Compliance Programs — The Good Bot Podcast
AI in Employment: Navigating the Legal Landscape with Lessons from I, Robot — Hiring to Firing Podcast
FINCast Ep. 40 – 21st Century Financial Warfare: Technology, Economy, & National Security
Weathering the 2025 Whirlwind: How to Keep Calm & Carry On
No Password Required Podcast: Chief Product Officer at ThreatLocker and Advocate of Buc-ee’s, Mascots, and Buc-ee Mascots
AGG Talks: Women in Tech Law Podcast - Episode 6: Navigating the Legal Landscape of Venture Capital: Key Considerations for Startups
Approach to Responsible AI
Why Privacy Matters to Your Business and What's in Store for 2025
CFPB's Inquiry Into Payments Privacy — Payments Pros – The Payments Law Podcast
Montana’s governor signed Senate Bill 297 to overhaul key portions of the state’s Consumer Data Privacy Act and bring new protections for minors. The changes bring lower thresholds, updated exemptions, expanded notice...more
On May 1, 2025, the California Privacy Protection Agency (“CPPA”) Board convened to discuss revisions to the California Consumer Privacy Act (“CCPA”) draft regulations on cybersecurity audits, risk assessments, automatic...more
On April 17, 2025, the Connecticut Office of the Attorney General (“OAG”) released an Updated Enforcement Report Pursuant to the Connecticut Data Privacy Act (“Report”). The Report, the second issued by OAG (read our...more
Global Capability Centers (GCCs) have become strategic hubs for multinational corporations, financial institutions and other organizations because they can provide centralized control over high-value technology and...more
Businesses are constantly seeking innovative ways to improve their customers’ experiences. Originally published in Law360 - February 10, 2025....more
A recent decision from the Northern District of California may signal an important shift in the trend of how courts interpret “consent” under the Video Privacy Protection Act (VPPA). In Lakes v. Ubisoft, Inc., No....more
On April 24 2025, the French supervisory authority (CNIL) issued a draft recommendation to address challenges in collecting user consent for cookies and trackers across multiple devices (the Draft Recommendation). The new...more
The National Institute of Standards and Technology ("NIST") recently updated its 2020 Privacy Framework 1.0 to include artificial intelligence ("AI") risk management....more
When PowerSchool announced in January that it fell victim to a massive data breach at the end of 2024, it assured the thousands of schools and over 50 million students who use the education software that the matter had been...more
The Ninth Circuit sitting en banc has greatly expanded the reach of personal jurisdiction by holding that e-commerce companies can be sued in any state where their platforms interact with users, even without differential...more
In October, the HHS Office for Civil Rights (OCR) fined Providence Medical Institute (PMI) $240,000, an amount that reflected a 20% discount for having “recognized security practices” (RSPs) in place. But many more covered...more
On April 29, 2025, the Michigan Attorney General filed a lawsuit in the Eastern District of Michigan against Roku on multiple grounds, alleging violations of: (a) the Children’s Online Privacy Protection Act (COPPA), and (b)...more
Over the past several years, class action litigants have flooded federal dockets with Video Privacy Protection Act (VPPA) cases against companies that embed Facebook’s Pixel tool on their websites. The plaintiffs have...more
Keypoint: Last week, the Colorado legislature passed an amendment to the state’s data privacy law, the Texas legislature passed a bill regulating app stores, and there were developments with bills in Connecticut, Maine, New...more
Healthcare is a very personal experience. In order to receive the best care, individuals must share the most intimate details about themselves. For this reason, trust between patients and healthcare providers is crucial. Data...more
Malaysia’s newly released Cross Border Personal Data Transfer Guidelines mark a groundbreaking shift in its data protection regulatory landscape, requiring data controllers to conduct Transfer Impact Assessments and implement...more
On May 2, 2025, the Irish Data Protection Commission (“DPC”) issued a decision, as lead supervisory authority, finding that TikTok infringed the GDPR regarding (a) its cross-border transfers of EEA User Data to China, and (b)...more
On May 6, the California Privacy Protection Agency (CPPA) issued a decision requiring national clothing retailer Todd Snyder, Inc. to change its business practices and pay a $345,178 administrative fine....more
Governance, risk, and compliance (GRC) can feel like thankless work at times. You can’t ship risk mitigation to market. It's not usually reflected on your balance sheet. Only especially canny investors notice the absence of...more
In Perlaki v. J.B. Poindexter & Co., Inc., a data breach class action, Magistrate Judge Andrew M. Edison of the Southern District of Texas found that the plaintiff had standing to sue under Article III of the United States...more
On May 1, 2025, additional cybersecurity requirements introduced by the Second Amendment to the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (23 NYCRR Part 500) (the “Second Amendment”) took...more
Virginia recently enacted an amendment to its state Consumer Protection Act to regulate the processing of Virginia consumers’ reproductive and sexual health information. Specifically, SB 754 prohibits businesses from...more
Collecting data from mobile devices presents unique challenges that legal teams can’t afford to overlook. From rapidly evolving technology to privacy concerns, navigating mobile collections requires a thoughtful, defensible...more
AI is transforming business and industry virtually overnight, and many leaders are left asking, “What do I do next?” Womble Bond Dickinson’s virtual summit – AI Intensive: Playbook for Innovation and Risk Mitigation – will...more
In a significant development for companies targeted by (or vulnerable to) litigation over website data collection practices, the U.S. Court of Appeals for the Second Circuit affirmed the dismissal of a Video Privacy...more