On November 9, 2022, the New York Department of Financial Services released their second amendments to their Part 500 Cybersecurity Rules.
Continue Reading NYDFS Amends Cybersecurity Rules for Financial Services Companies
U.S. State Law
Class Action Lawsuits Continue Targeting Companies For Tracking Users’ Website Activity
Posted on
Plaintiff’s firms continue to file variations of state law wiretapping lawsuits over “session replay” software and “live chat” or “chatbot” applications in various jurisdictions.
Continue Reading Class Action Lawsuits Continue Targeting Companies For Tracking Users’ Website Activity
Google Agrees to $391.5 Million Settlement with 40 States over Misleading Location Tracking Practices
Posted on
Posted in Information Security, U.S. State Law
On November 14, 2022, Google LLC agreed to a $391.5 million settlement with the attorneys general of 40 U.S. states over the company’s location tracking controls available in its user account settings. …
Continue Reading Google Agrees to $391.5 Million Settlement with 40 States over Misleading Location Tracking Practices
Pennsylvania Amends Breach Notification Law
Posted on
On November 3, 2022, Pennsylvania Governor Tom Wolf singed Senate Bill 636 into law, amending Pennsylvania’s breach notification law.
Continue Reading Pennsylvania Amends Breach Notification Law
CPPA Releases New Modified Proposed CPRA Regulations
Posted on
On November 3, 2022, the California Privacy Protection Agency released new modified proposed California Privacy Rights Act regulations, which make updates to the draft CPRA regulations released on October 17, 2022. …
Continue Reading CPPA Releases New Modified Proposed CPRA Regulations
California Privacy Protection Agency Holds Board Meeting on CCPA/CPRA Modified Proposed Regulations
Posted on
Posted in U.S. State Law
On October 28-29, 2022, the California Privacy Protection Agency held a Board Meeting to discuss the modified proposed regulations promulgated for compliance with the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020, as well as the remainder of the rulemaking process. …
Continue Reading California Privacy Protection Agency Holds Board Meeting on CCPA/CPRA Modified Proposed Regulations
Colorado AG Publishes Draft Colorado Privacy Act Rules
Posted on
Posted in Enforcement, U.S. State Law
Last month, the Colorado Attorney General’s Office submitted an initial draft of the Colorado Privacy Act Rules, which will implement and enforce the Colorado Privacy Act.
Continue Reading Colorado AG Publishes Draft Colorado Privacy Act Rules
NYC DCWP Proposes Rules to Implement New Law Governing Automated Employment Decision Tools
Posted on
On October 24, 2022, the New York City Department of Consumer and Worker Protection proposed rules to implement its new law regarding automated employment decision tools. …
Continue Reading NYC DCWP Proposes Rules to Implement New Law Governing Automated Employment Decision Tools
Texas AG Sues Google for Alleged Violations of State Biometric Privacy Law
Posted on
Posted in Information Security, U.S. State Law
On October 20, 2022, Texas Attorney General Ken Paxton brought suit against Google alleging various violations of Texas’s biometric privacy law, including that the company unlawfully collected and used the biometric data of millions of Texans without obtaining proper consent. …
Continue Reading Texas AG Sues Google for Alleged Violations of State Biometric Privacy Law
New York Legislature Considers New York Child Data Privacy and Protection Act
Posted on
On September 23, 2022, New York State Senator Andrew Gounardes introduced S9563, also known as the “New York Child Data Privacy and Protection Act.” …
Continue Reading New York Legislature Considers New York Child Data Privacy and Protection Act