Episode 406 -- AI Risks and Compliance: Building a Governance Framework
DOJ’s Bulk Sensitive Data Transfer Rule: Key Insights for Health Care Compliance Teams – Diagnosing Health Care
Decrypted Podcast | Decoding NIS2: Europe's New Cybersecurity Playbook
PODCAST – 2026 To Do: HIPAA Compliance
2026 To Do: HIPAA Compliance
Employer AI Headaches: Job Postings, Client Privilege, and Microchip Bans - Employment Law This Week®
No Password Required: Project Manager at Rapid7 and Queen of Cyber Media
Episode 402: Paul Allen: The Promise of AI, Governance and Public Trust
AI Exacerbates Data Minimization Challenges
Podcast - Registro de infieles: ¿Violación de datos personales?
Decrypted Podcast | The First 72 Hours of a Ransomware Attack
No Password Required: AI Security Researcher and Documentarian of Spirituality and Play
NYC Enforcement Blitz, CA Surveillance Pricing, and PA Criminal History Rule Update - #WorkforceWednesday® - Employment Law This Week®
The Privacy Insider Podcast Episode 23: How CalPrivacy Balances Enforcement, Transparency, and Innovation with Tom Kemp of the California Privacy Protection Agency
2026 Trends to Watch: Regulation, Infrastructure and IP in Motion
Point-of-Sale Finance Series: Privacy, Breaches, and Data Monetization — The Consumer Finance Podcast
The Briefing: Part Two: CCPA’s New Rules on Risk Assessments and Cybersecurity Audits
We get AI for work™: Analyzing "Brewer v. Otter.ai" — A Case Study of the Legal Risks of AI Note Takers
We get Privacy for work — Episode 13: Demystifying Data Mining
We get AI for work™: New Efforts to Ensure a National AI Policy
Nebraska (chatbot) and Maine (health) enacted laws last week, while more than a dozen bills advanced in other states....more
Its getting a little chippy out there in TCPAWorld lately. I’ve been noticing an increasing effort by TCPA litigants to seek sanctions and call each other liars. At issue, ultimately, are the veracity of leads– webform...more
Alabama enacted a comprehensive consumer privacy law—the Alabama Personal Data Protection Act (HB 351)—that will require incremental, not radical, change for companies with existing privacy-compliance programs....more
Organizations face an unprecedented challenge: the sheer volume, variety, and velocity of data. From collaboration tools and mobile devices to cloud-based enterprise systems and generative AI outputs,...more
Law firms—solo and large alike—are prime targets for ransomware, phishing, and data exfiltration attacks. The reason is simple: lawyers warehouse high-value information—financial records, privileged communications, trade...more
On April 15, 2026, the Senate Commerce Committee held an oversight hearing with FTC Chairman Andrew Ferguson and Commissioner Mark Meador....more
Who let the data out? It’s 6:45 a.m. The overhead fluorescent lights are humming, and the scent of disinfectant is in the air. The boarded pets stir as they begin to wake up. They will want breakfast soon. It’s the start...more
The plaintiffs’ bar has been ramping up lawsuits under the California Invasion of Privacy Act (CIPA) and federal and state wiretapping statutes for years, and the wave is not receding. Tens of thousands of claims have been...more
At the 2026 IAPP Global Summit in Washington, D.C., a panel titled “State Collaboration on Privacy” brought together state privacy enforcers to discuss how they are working together and what businesses should expect....more
The 2026 International Association of Privacy Professionals (IAPP) Global Privacy Summit brought thousands of privacy and data governance professionals, including industry leaders, privacy scholars, and representatives from...more
Alabama became the twenty-first state to enact a broader consumer data privacy law, Kentucky and Virginia finalized amendments to their consumer data privacy laws, and Nebraska amended its Age-Appropriate Design Code Act....more
$1.5 billion. That number got the room’s attention at the 2026 IAPP Global Summit: $1.5 billion is the theoretical penalty exposure for a single data broker that misses just one deletion cycle under California’s new Delete...more
HCCA's Healthcare Privacy Compliance Academy is a three-and-a-half-day interactive education program with a focus on the vast body of privacy laws and regulations in place to help you protect PHI and other critical data. Our...more
Here are curated AG and federal regulatory news stories highlighting key areas in which state and federal regulators’ decisions are having an impact across the US: • Florida AG Probes OpenAI Over Safety and Security...more
For the second time in three years, Section 702 of the Foreign Intelligence Surveillance Act (FISA) is poised to expire. Section 702 authorizes U.S. intelligence agencies to obtain the communications of non-U.S. persons who...more
Artificial intelligence is rapidly transforming business operations—but it is also introducing a new generation of legal, ethical, and compliance risks. In this episode, we explore how AI risk is accelerating across...more
March was a busy month for former Black Basta affiliates who are using old social engineering techniques to target executives in the manufacturing, professional, scientific, and technical services industries. According to...more
INTRODUCTION - Electronic devices such as mobile phones, tablets, and laptops routinely store years of sensitive company and personal information, including emails, confidential communications, financial records, and personal...more
A federal judge has ruled that CNN must face a proposed class action alleging that its website shared consumers’ personal information with Microsoft and adtech firms without consent, in alleged violation of the California...more
I have very fond memories of using a Eurail pass back in the day while backpacking through Europe as a student. I was saddened to see that Eurail was the victim of a data breach in December 2025 when attackers obtained access...more
Alabama just joined 20 others states by enacting a comprehensive consumer privacy law, and businesses must get ready to comply with sweeping new obligations that will kick in next year. The state’s new Alabama Personal Data...more
In January 2026, the UK Information Commissioner’s Office (ICO) published a report reflecting its “early-stage thinking on speculative opportunities and risks” of agentic AI use in the context of organizations’ data...more
On April 7, 2026, the Alabama legislature unanimously passed House Bill 351, the Alabama Personal Data Protection Act, sending it to Governor Kay Ivey for approval. The bill cleared the Alabama House 104-0 and the Alabama...more
On April 3, the Illinois attorney general filed a combined principal and response brief in the U.S. Court of Appeals for the 7th Circuit, urging the court to affirm the district court’s ruling that the Illinois Interchange...more
In four months, law enforcement authorities across the European Union will gain the power to compel service providers in other member states to hand over electronic evidence within 10 days — or in emergencies, just eight...more
