U.S. Federal Law

CPPA Board to Hold Meeting on Status of CPRA Rulemaking

Posted on January 23, 2023

Posted in Cybersecurity, Events, U.S. Federal Law, U.S. State Law

On January 23, 2023, the California Privacy Protection Agency Board announced that it will hold a public meeting on February 3, 2023 regarding the status of the California Privacy Rights Act of 2020 rulemaking process, particularly with respect to the issuance of new draft rules on risk assessments, cybersecurity audits and automated decisionmaking.
Continue Reading CPPA Board to Hold Meeting on Status of CPRA Rulemaking

CPPA Board Holds Meeting on Status of CPRA Rulemaking and Other Topics

Posted on December 19, 2022

Posted in Cybersecurity, Events, U.S. Federal Law, U.S. State Law

On December 16, 2022, the California Privacy Protection Agency Board held a public meeting regarding the status of the California Privacy Rights Act of 2020 rulemaking process and other topics, such as the CPPA’s advocacy regarding proposed federal and state privacy legislation. …
Continue Reading CPPA Board Holds Meeting on Status of CPRA Rulemaking and Other Topics

FTC Releases Updated Mobile Health App Compliance Tool

Posted on December 16, 2022

Posted in Health Privacy, Information Security, U.S. Federal Law

On December 7, 2022, the Federal Trade Commission released an updated Mobile Health App Interactive Tool to help developers determine what federal laws and regulations apply to apps that collect and process health data.
Continue Reading FTC Releases Updated Mobile Health App Compliance Tool

CISA Releases Cross-Sector Cybersecurity Performance Goals

Posted on November 29, 2022

Posted in Cybersecurity, Information Security, U.S. Federal Law

The Cybersecurity and Infrastructure Security Agency recently released the first iteration of the agency’s Cross-Sector Cybersecurity Performance Goals.
Continue Reading CISA Releases Cross-Sector Cybersecurity Performance Goals

CIPL Responds to FTC’s ANPR on Commercial Surveillance and Data Security

Posted on November 28, 2022

Posted in Centre for Information Policy Leadership, Children’s Privacy, U.S. Federal Law

On November 21, 2022, the Centre for Information Policy Leadership at Hunton Andrews Kurth filed comments on the Federal Trade Commission’s Advanced Notice of Proposed Rulemaking on commercial surveillance and data security.
Continue Reading CIPL Responds to FTC’s ANPR on Commercial Surveillance and Data Security

FTC Announces Six-Month Extension for Compliance with Some Changes to Gramm-Leach-Bliley Safeguards Rule

Posted on November 18, 2022

Posted in Financial Privacy, Information Security, U.S. Federal Law

On November 15, 2022, the Federal Trade Commission announced a six-month extension for companies to comply with certain updated requirements of the Gramm-Leach-Bliley Act’s Safeguards Rule, a set of data security provisions covered financial institutions must implement to protect their customers’ personal information.
Continue Reading FTC Announces Six-Month Extension for Compliance with Some Changes to Gramm-Leach-Bliley Safeguards Rule

Google Enters into Agreement with DOJ over 2016 Search Warrant Data Loss

Posted on November 10, 2022

Posted in Enforcement, U.S. Federal Law

On October 25, 2022, the U.S. Department of Justice announced that Google had entered into an agreement to resolve a dispute over the loss of data responsive to a search warrant issued in 2016.
Continue Reading Google Enters into Agreement with DOJ over 2016 Search Warrant Data Loss

First Ever BIPA Trial Results in $228 Million Judgment Against BNSF Railway

Posted on October 19, 2022

Posted in Information Security, U.S. Federal Law, U.S. State Law

On October 12, 2022, a federal jury found BNSF Railway, operator of one of the largest freight railroad networks in North America, violated the Illinois Biometric Information Privacy Act in the first ever BIPA case to go to trial. …
Continue Reading First Ever BIPA Trial Results in $228 Million Judgment Against BNSF Railway

FTC Extends Deadline for Comments on Commercial Surveillance and Data Security Advanced Notice of Proposed Rulemaking

Posted on October 18, 2022

Posted in Information Security, Online Privacy, U.S. Federal Law

On October 14, 2022, the Federal Trade Commission announced it is extending the deadline by one month to submit comments on its Advanced Notice of Proposed Rulemaking on commercial surveillance and lax data security practices.
Continue Reading FTC Extends Deadline for Comments on Commercial Surveillance and Data Security Advanced Notice of Proposed Rulemaking

President Biden Issues Executive Order on New EU-U.S. Data Transfer Pact

Posted on October 7, 2022

Posted in European Union, Information Security, International, U.S. Federal Law

On October 7, 2022, President Biden signed Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities, which provides a new framework for legal data transfers between the European Union and the United States. …
Continue Reading President Biden Issues Executive Order on New EU-U.S. Data Transfer Pact

Menu

Privacy & Information Security Law Blog