On January 23, 2023, the California Privacy Protection Agency Board announced that it will hold a public meeting on February 3, 2023 regarding the status of the California Privacy Rights Act of 2020 rulemaking process, particularly with respect to the issuance of new draft rules on risk assessments, cybersecurity audits and automated decisionmaking.
Continue Reading CPPA Board to Hold Meeting on Status of CPRA Rulemaking
U.S. Federal Law
CPPA Board Holds Meeting on Status of CPRA Rulemaking and Other Topics
On December 16, 2022, the California Privacy Protection Agency Board held a public meeting regarding the status of the California Privacy Rights Act of 2020 rulemaking process and other topics, such as the CPPA’s advocacy regarding proposed federal and state privacy legislation. …
Continue Reading CPPA Board Holds Meeting on Status of CPRA Rulemaking and Other Topics
FTC Releases Updated Mobile Health App Compliance Tool
On December 7, 2022, the Federal Trade Commission released an updated Mobile Health App Interactive Tool to help developers determine what federal laws and regulations apply to apps that collect and process health data.
Continue Reading FTC Releases Updated Mobile Health App Compliance Tool
CISA Releases Cross-Sector Cybersecurity Performance Goals
The Cybersecurity and Infrastructure Security Agency recently released the first iteration of the agency’s Cross-Sector Cybersecurity Performance Goals.
Continue Reading CISA Releases Cross-Sector Cybersecurity Performance Goals
CIPL Responds to FTC’s ANPR on Commercial Surveillance and Data Security
On November 21, 2022, the Centre for Information Policy Leadership at Hunton Andrews Kurth filed comments on the Federal Trade Commission’s Advanced Notice of Proposed Rulemaking on commercial surveillance and data security.
Continue Reading CIPL Responds to FTC’s ANPR on Commercial Surveillance and Data Security
FTC Announces Six-Month Extension for Compliance with Some Changes to Gramm-Leach-Bliley Safeguards Rule
On November 15, 2022, the Federal Trade Commission announced a six-month extension for companies to comply with certain updated requirements of the Gramm-Leach-Bliley Act’s Safeguards Rule, a set of data security provisions covered financial institutions must implement to protect their customers’ personal information.
Continue Reading FTC Announces Six-Month Extension for Compliance with Some Changes to Gramm-Leach-Bliley Safeguards Rule
Google Enters into Agreement with DOJ over 2016 Search Warrant Data Loss
On October 25, 2022, the U.S. Department of Justice announced that Google had entered into an agreement to resolve a dispute over the loss of data responsive to a search warrant issued in 2016.
Continue Reading Google Enters into Agreement with DOJ over 2016 Search Warrant Data Loss
First Ever BIPA Trial Results in $228 Million Judgment Against BNSF Railway
On October 12, 2022, a federal jury found BNSF Railway, operator of one of the largest freight railroad networks in North America, violated the Illinois Biometric Information Privacy Act in the first ever BIPA case to go to trial. …
Continue Reading First Ever BIPA Trial Results in $228 Million Judgment Against BNSF Railway
FTC Extends Deadline for Comments on Commercial Surveillance and Data Security Advanced Notice of Proposed Rulemaking
On October 14, 2022, the Federal Trade Commission announced it is extending the deadline by one month to submit comments on its Advanced Notice of Proposed Rulemaking on commercial surveillance and lax data security practices.
Continue Reading FTC Extends Deadline for Comments on Commercial Surveillance and Data Security Advanced Notice of Proposed Rulemaking
President Biden Issues Executive Order on New EU-U.S. Data Transfer Pact
On October 7, 2022, President Biden signed Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities, which provides a new framework for legal data transfers between the European Union and the United States. …
Continue Reading President Biden Issues Executive Order on New EU-U.S. Data Transfer Pact