On May 4-6, 2022, the California Privacy Protection Agency held via video conference several public pre-rulemaking stakeholder sessions regarding the California Privacy Rights Act.
Continue Reading California Privacy Protection Agency Holds Pre-Rulemaking Stakeholder Sessions
U.S. State Law
Connecticut Enacts Consumer Privacy Law
Posted on
On May 10, 2022, Connecticut Governor Ned Lamont signed An Act Concerning Personal Data Privacy and Online Monitoring, after the law was previously passed by the Connecticut General Assembly in April. Connecticut is now the fifth state to enact a consumer privacy law.
Continue Reading Connecticut Enacts Consumer Privacy Law
Two States Enact Insurance Data Security Laws
Posted on
In April 2022, Kentucky and Maryland enacted insurance data security legislation based on the National Association of Insurance Commissioners Insurance Data Security Model Law MDL-668.
Continue Reading Two States Enact Insurance Data Security Laws
North Carolina Becomes First State to Prohibit Public Entities from Paying Ransoms
Posted on
On April 5, 2022, North Carolina became the first state in the U.S. to prohibit state agencies and local government entities from paying a ransom following a ransomware attack. …
Continue Reading North Carolina Becomes First State to Prohibit Public Entities from Paying Ransoms
Virginia Amends the VCDPA Ahead of January 1, 2023 Effective Date
Posted on
Posted in Enforcement, U.S. State Law
On April 11, 2022, Virginia Governor Glenn Youngkin signed three Virginia Consumer Data Protection Act amendments into law ahead of the VCDPA’s January 1, 2023 effective date. This blog entry provides a summary of the amendments.
Continue Reading Virginia Amends the VCDPA Ahead of January 1, 2023 Effective Date
Colorado AG Provides Insights on the Colorado Privacy Act Rulemaking Process
Posted on
Posted in U.S. State Law
On April 12, 2022, Colorado Attorney General Phil Weiser made remarks at the International Association of Privacy Professionals Global Privacy Summit in Washington, D.C., where he invited stakeholders to provide informal public comments on the Colorado Privacy Act rulemaking.
Continue Reading Colorado AG Provides Insights on the Colorado Privacy Act Rulemaking Process
California Privacy Protection Agency Holds Informational Sessions and Announces Stakeholder Meetings
Posted on
Posted in Events, U.S. State Law
On March 29 and March 30, 2022, the California Privacy Protection Agency held via video conference two public pre-rulemaking informational sessions regarding the California Privacy Rights Act. The CPPA also recently announced additional meetings with stakeholders via teleconference beginning May 4, 2022.
Continue Reading California Privacy Protection Agency Holds Informational Sessions and Announces Stakeholder Meetings
New Jersey Requires Employers to Notify Employees of the Use of Tracking Devices
Posted on
On January 18, 2022, New Jersey Governor Phil Murphy signed into law Assembly Bill No. 3950, requiring employers to provide written notice to employees prior to the use of tracking devices in vehicles used by employees. The Act will go into effect on April 18, 2022.
Continue Reading New Jersey Requires Employers to Notify Employees of the Use of Tracking Devices
Indiana Amends State Data Breach Notification Law
Posted on
On March 18, 2022, Indiana Governor Eric Holcomb signed into law an amendment to Indiana’s data breach notification statute requiring breach notification within 45 days of discovery of a breach. The amendment will take effect on July 1, 2022.
Continue Reading Indiana Amends State Data Breach Notification Law
Federal Court Approves $1.1 Million TikTok Settlement Over Children’s Privacy Claims
Posted on
On March 25, 2022, the U.S. District Court for the Northern District of Illinois approved a $1.1 million settlement with TikTok Inc. to resolve claim that TikTok collected children’s data and sold it to third parties without parental consent. …
Continue Reading Federal Court Approves $1.1 Million TikTok Settlement Over Children’s Privacy Claims