On January 23, 2023, the California Privacy Protection Agency Board announced that it will hold a public meeting on February 3, 2023 regarding the status of the California Privacy Rights Act of 2020 rulemaking process, particularly with respect to the issuance of new draft rules on risk assessments, cybersecurity audits and automated decisionmaking.
Continue Reading CPPA Board to Hold Meeting on Status of CPRA Rulemaking

On December 16, 2022, the California Privacy Protection Agency Board held a public meeting regarding the status of the California Privacy Rights Act of 2020 rulemaking process and other topics, such as the CPPA’s advocacy regarding proposed federal and state privacy legislation.
Continue Reading CPPA Board Holds Meeting on Status of CPRA Rulemaking and Other Topics

On November 30, 2022, the UK government confirmed that the Network and Information Systems Regulations 2018 will be strengthened to protect essential and digital services against cyber attacks.
Continue Reading UK Cyber Laws Extended to Bring Outsourcers and Managed Service Providers into Scope to Strengthen UK’s Resilience Against Online Cyber Attacks

On October 31, 2022, the Federal Trade Commission announced a proposed settlement with education technology provider Chegg in connection with the company’s alleged poor cybersecurity practices.
Continue Reading FTC Takes Action Against Chegg for Alleged Security Failures that Exposed Data of Employees and 40 Million Consumers