The California Attorney General has updated its CCPA FAQs to state that the newly developed Global Privacy Control “must be honored by covered businesses as a valid consumer request to stop the sale of personal information.”
Continue Reading California Attorney General Updates CCPA FAQs Indicating Mandatory Compliance with Global Privacy Control
U.S. State Law
NYDFS Issues Ransomware Guidance Outlining Expected Security Controls
Posted on
On June 30, 2021, the New York State Department of Financial Services issued guidance to all New York regulated entities on ransomware, identifying controls it expects regulated companies to implement whenever possible.…
Continue Reading NYDFS Issues Ransomware Guidance Outlining Expected Security Controls
Colorado Privacy Act Signed Into Law
Posted on
Posted in U.S. State Law
On July 8, 2021, Colorado Governor Jared Polis signed SB21-190, the Colorado Privacy Act, into law, making Colorado the third state to have a comprehensive data privacy law on the books, following California and Virginia. This blog entry provides a summary of the Act.…
Continue Reading Colorado Privacy Act Signed Into Law
Texas Amends Breach Notification Law to Require Public Reporting of Breach Notices
Posted on
Posted in Security Breach, U.S. State Law
On June 14, 2021, Texas Governor Greg Abbott signed HB 3746, a bill amending Texas’s data breach notification law.…
Continue Reading Texas Amends Breach Notification Law to Require Public Reporting of Breach Notices
Baltimore Passes Bill Banning Private-Sector Use of Facial Recognition Technology
Posted on
Posted in Information Security, U.S. State Law
On June 14, 2021, the Baltimore City Council passed a bill that would ban the use of facial recognition technology by private entities and individuals within the city limits. If signed into law, Baltimore, Maryland would become the latest U.S. city to enact stringent regulations governing the use of facial recognition technology in the private sector.
…
Continue Reading Baltimore Passes Bill Banning Private-Sector Use of Facial Recognition Technology
CCPA’s Metrics Reporting Deadline Approaching
Posted on
Posted in Information Security, U.S. State Law
July 1, 2021 marks the deadline for certain businesses to comply with the metrics reporting obligations under the California Consumer Privacy Act of 2018 regulations.…
Continue Reading CCPA’s Metrics Reporting Deadline Approaching
Nevada’s Governor Expands State’s Internet Privacy Law That Previously Limited Right to Opt Out of Sales
Posted on
Posted in Information Security, U.S. State Law
On June 2, 2021, Nevada’s governor approved SB 260 (the “Amendment Bill”), which expands on the previously amended Nevada Privacy of Information Collected on the Internet from Consumers Act (the “Act”). Specifically, the Amendment Bill broadens the definition of key terms along with providing several new exemptions.
…
Continue Reading Nevada’s Governor Expands State’s Internet Privacy Law That Previously Limited Right to Opt Out of Sales
New York AG Settles with Filters Fast After Data Breach
Posted on
On May 18, 2021, New York Attorney General (“AG”) Letitia James announced a settlement agreement with Filters Fast LLC (“Filters Fast”) over a data breach that compromised personal information of approximately 324,000 consumers nationwide, including over 16,500 New York state residents. The breach affected purchases made on Filters Fast website for almost a year – from July 16, 2019 to July 10, 2020. …
Continue Reading New York AG Settles with Filters Fast After Data Breach
New York City Council Passes Tenant Data Privacy Act
Posted on
Posted in Information Security, U.S. State Law
On April 29, 2021, the New York City Council passed the Tenant Data Privacy Act, which would regulate the collection, use, safeguarding and retention of tenant data by owners of “smart access” buildings. The TDPA has now been sent to the New York City Mayor’s desk for signature.…
Continue Reading New York City Council Passes Tenant Data Privacy Act
Lisa Sotto Leads LexisNexis’ Emerging Issues Webinar on Everything You Need to Know About the CPRA
Posted on
Posted in Events, U.S. State Law
Hunton Privacy Chair Lisa Sotto and MLaw Chief Global Digital Risk Correspondent Mike Swift led a webinar on Everything You Need to Know About the California Privacy Rights Act. This post includes a link to watch the full program.…
Continue Reading Lisa Sotto Leads LexisNexis’ Emerging Issues Webinar on Everything You Need to Know About the CPRA