We get Privacy for work — Episode 12: Managing Competing Priorities: Data Breach Notification Laws and Trade Secrets
No Password Required: Founder of ThreatLocker and the Zero-Trust Revolution
Strategies for Mitigating Data Center Development Delays - Data Centers Series
The Impact of the 2024 CrowdStrike Incident on Cyber Insurance
Agentic AI is Knocking on your Company’s Door: Are you Prepared to Deploy It?
Cybersecurity Awareness Month 2025: Legal Risks, Data360, and Practical Strategies
HIPAA vs. HR - Where Privacy Meets Employment: What's the Tea in L&E?
The Modern Discovery Traps that Are Upending Cases
The New Wave of Web Tracking Litigation: Wiretap Statutes, VPPA Risk, and Consent Strategies — The Consumer Finance Podcast
42 CFR Part 2 Final Rule: What’s Changing and What Do You Need to Know? – Diagnosing Health Care Video Podcast
Podcast - Operationalizing Data Protection: Build Trust, Not Just Compliance
No Password Required: Building Trust at Intel and the Poker Table
LathamTECH in Focus: The EU Data Act: A Digital Game-Changer
The "Lesser-Included" Email Debate: What Does Rule 34 Really Require for Production?
We get Privacy for work — Episode 11: Beyond the Checkbox: Engaging Your Workforce in Privacy and Data Security Training
Dinsmore's Herb Stapleton Discusses Reducing Cybercrime Risk
Top Employment Insights: 44th Annual Workforce Management Briefing - #WorkforceWednesday® - Employment Law This Week®
Dinsmore's Herb Stapleton Appears at CNBC AI Summit
The Privacy Insider Podcast Episode 19: Where Tabletop Games Meet the Future of Privacy with Dr. Tehilla Shwartz Altschuler of the Israel Democracy Institute
We get Privacy for work — Episode 10: Employee Monitoring Tools: Too Good to be True?
Technology is making it easier by the day for “fake people” or real people using fake identifications to apply, interview, get hired, and even work for employers. Sometimes these individuals are referred to as “ghost...more
AI is changing the game in patient care. From wearable sensors that track vitals to predictive alerts that flag early signs of deterioration, these tools are helping clinicians intervene faster and smarter. But here’s the...more
The cross-border transfer of personal information (hereinafter referred to as “PI,” and such transfers as “PI export”) is a routine and often essential part of business operations for companies in China—particularly...more
A California federal court recently handed healthcare businesses another victory in the ongoing wave of privacy lawsuits targeting website analytics and tracking tools. A California federal judge ruled on November 21 that...more
A very important tool in thwarting TCPA class action is the arbitration clause. While attorneys are very familiar with these clauses– and their importance–I find many business leads do not really understand why they matter....more
On November 19, 2025, the European Commission published a package of legislative proposals known as the "Digital Omnibus." Designed to introduce flexibility into the EU's digital regulatory framework, the proposal aims to...more
So lots of action around the Texas registration statute. Did I say action? I meant confusion. Here’s what we know: Texas law requires telemarketers to register with the state if they “call” into the state per Section 302 of...more
The United States District Court for the Central District of California denied class certification for Plaintiff’s proposed Do-Not-Call class, finding that Plaintiff’s circumstantial evidence regarding lack of consent failed...more
This article explores how AI is allowing rights holders and sponsors to deploy innovative solutions to engage with their audiences, and how innovation in this space also raises new commercial and legal questions around data...more
In the current interconnected health research ecosystem, comprehensive and secure access to health data is key to accelerate drug discovery and improve patient outcomes. ...more
The worlds of local government and cybersecurity have officially collided. Recently implemented Ohio House Bill 96 requires every county, township, municipality and school district to adopt a formal cybersecurity program. As...more
Welcome to this month’s issue of The BR Privacy & Security Download, the digital newsletter of Blank Rome’s Privacy, Security & Data Protection practice....more
Spanish data protection authority, AEPD, imposes 10 Million EUR fine on a company, AENA for deploying a facial recognition system without an adequate DPIA. What does this mean for companies subject to US laws? The decision...more
What Is the Digital Omnibus Regulation Proposal? Maybe you’ve heard–the EU has a bit of a reputation for excessive regulation. That’s doubly true for digital space. Between the GDPR, ePrivacy Directive, EU AI Act, DMA,...more
Generative artificial intelligence is moving from experimental pilot projects into enterprise-wide deployment at an unprecedented pace. Yet as companies accelerate adoption, regulatory bodies in the United States and abroad...more
A recent settlement with an education service provider and three states – California, Connecticut, and New York – serves as a reminder to deactivate the credentials of departed employees. The case arose following a data...more
Key point: This is the eighth fine CalPrivacy has issued against an entity for failing to register as a data broker and comes just days after CalPrivacy announced a new Data Broker Enforcement Strike Force and only months...more
As companies evaluate potential mergers and acquisitions, joint ventures, or sale transactions, artificial intelligence (AI) must now be part of the discussion. AI can significantly impact a company’s valuation and risk...more
On November 21, 2025, California Attorney General (AG) Rob Bonta announced a $1.4 million settlement with Jam City, Inc. (company), a mobile game app company, for alleged failures to enable in-app opt-outs from the sale and...more
The Misunderstanding Nobody Wants to Admit - Here’s a truth we don’t talk about enough in the legal world: eDiscovery is frequently misunderstood, even by the people who live closest to it....more
The Appellate Court of Illinois, applying Illinois law, has held that a cyber insurer had no duty to defend or indemnify its insured where the alleged misconduct occurred prior to the policy’s retroactive date. The...more
Claimants are reviving a 1960s-era wiretapping law to challenge common website tracking tools – including pixels, session replay, chat widgets, and more. Data privacy and compliance professionals navigate an increasing number...more
The FTC published a press release on December 1, 2025, summarizing its complaint and proposed consent order against an education technology company ("Company") providing Pre-K through 12 software and assessment tools to...more
New York State recently enacted a law requiring companies doing business in New York to disclose when they use an algorithm based on an individual consumer’s personal data to set pricing for a good or service advertised or...more
As 2025 closes, the eDiscovery sector has experienced another year of change. No longer is the function relegated to a reactive, back-office task. In 2025, eDiscovery further cemented its new identity: a proactive, strategic...more
