State Law Privacy Video Series | Privacy and Sensitive Information
Podcast: CFIUS Update: Key Takeaways from the FIRRMA Implementing Regulations
While most state legislatures are wrapping up their legislative sessions with little fanfare, Massachusetts appears to just be getting started. On May 12, 2025, the Bay State introduced the Massachusetts Data Privacy Act (S...more
On April 22, FTC Commissioner Melissa Holyoak delivered the opening keynote at the IAPP Global Summit, where she emphasized the importance of vigorously enforcing privacy laws while warning against stretching the FTC’s...more
On April 11, the Department of Justice issued an extensive set of FAQs on its Bulk Data Access Rule and advised that it “will not prioritize civil enforcement actions against any person for violations” of the Rule through...more
On March 10, California Attorney General (AG) Rob Bonta announced an investigative sweep of the location data industry for potential noncompliance with the California Consumer Privacy Act (CCPA)....more
Oregon Attorney General Dan Rayfield has released a report detailing implementation steps and enforcement actions taken during the first six months of the Oregon Consumer Privacy Act ("OCPA"), which entered into force in July...more
On March 10, California Attorney General (AG) Rob Bonta launched an investigation into the location data industry, issuing letters to companies that the AG alleged “appear to be in violation of the California Consumer Privacy...more
The California Privacy Protection Agency (CPPA) the agency responsible for implementing and enforcing the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) (collectively the CCPA), protecting...more
On January 8, 2025, the Department of Justice (DOJ) published in the Federal Register a Final Rule, "Preventing Access to U.S. Sensitive Personal Data and Government Related Data by Countries of Concern or Covered Persons,"...more
On December 27, 2024, the Department of Justice (DOJ) released a Final Rule, Provisions Pertaining to Preventing Access to U.S. Sensitive Personal Data and Government-Related Data by Countries of Concern or Covered Persons....more
On December 3, 2024, the Federal Trade Commission (FTC) announced two enforcement actions against large data aggregator companies, Mobilewalla, Inc. (“Mobilewalla”) and Gravy Analytics Inc. (“Gravy Analytics”), for alleged...more
In today's digital landscape, data brokers are like modern-day gold miners, sifting through the intimate details of our lives – our addresses, financial records, Social Security numbers – and quietly turning that information...more
The Consumer Financial Protection Bureau (CFPB) on Dec. 3, 2024, issued its long-awaited proposed rule to amend Regulation V (Proposed Rule), which implements the Fair Credit Reporting Act (FCRA). If enacted, the CFPB's...more
The Federal Trade Commission (FTC) announced two significant enforcement actions last week – one against data broker Mobilewalla, Inc. and the other against data analytics provider Gravy Analytics, Inc. (and its subsidiary...more
I have commented before that I do not enable location-based services unless I use an app that requires it, like a ride-sharing app or directions. One of the reasons is to prevent data brokers and others from using precise...more
The Protecting Americans’ Data from Foreign Adversaries Act (PADFA or the Act) was signed into law by President Joe Biden on April 24 as part of a larger foreign aid appropriations bill. Although other portions of the...more
On April 24, 2024, Congress made headlines by passing a complex foreign aid package, which included the much-discussed TikTok “divest-or-ban” legislation. What received less attention was the Protecting Americans’ Data from...more
Businesses need to be proactive in updating their compliance measures to meet the ever-evolving set of privacy laws and regulatory expectations in 2024 and beyond. Following the notable uptick in state-level privacy laws...more
President Biden recently signed into law the Protecting Americans’ Data from Foreign Adversaries Act as a part of H.R. 815, an emergency appropriations bill that primarily provides assistance to Israel, Ukraine and Taiwan....more
The United States is among the minority of large economies in the world without a comprehensive national privacy law. In the absence of such a law, numerous states are filling the void with a complex assortment of often...more
On April 20, 2024, the House of Representatives passed H.R.8038, the 21st Century Peace through Strength Act ("supplemental"), which includes a version of H.R.7520, the Protecting Americans' Data from Foreign Adversaries Act...more
On April 5, 2024 members of U.S. Congress released a draft bipartisan, bicameral federal privacy bill, the American Privacy Rights Act. In a press release, the stated goal of this legislation is to be “a national data privacy...more
On April 2, at an event at the White House on Data Protection and National Security, CFPB Director Rohit Chopra’s articulated potential changes to the data security regulation landscape and noted that the Bureau is...more
On March 20, 2024 the U.S. House of Representatives unanimously approved a privacy-related bill, H.R. 7520 (the “Data Broker Bill).” This comes on the heels of another privacy-related bill approved by the House on March 13,...more
On March 20, the U.S. House of Representatives passed House Resolution 7520, the Protecting Americans’ Data from Foreign Adversaries Act of 2024, targeting companies that sell sensitive information to “foreign adversaries.” ...more
Since the start of the year, the Federal Trade Commission (FTC) has brought actions against – and reached proposed settlements with – three business ventures engaged in the collection, use and sharing of certain consumer...more