On September 15, 2022, California Governor Gavin Newsom signed into law the California Age-Appropriate Design Code Act. The Act, which takes effect July 1, 2024, places new legal obligations on companies with respect to online products and services that are likely to be accessed by children under the age of 18.
Continue Reading California Enacts the California Age-Appropriate Design Code Act
Consumer Protection
New California Legislation Adds to Existing Smart Device Labeling Requirements
Posted on
Posted in Information Security, U.S. State Law
On September 6, 2022, the California legislature presented Assembly Bill 2392 to Governor Gavin Newsom. AB-2392, which has not yet been signed by Governor Newsom, would allow Internet-connected device manufacturers to satisfy existing device labeling requirements by complying with National Institute of Standards and Technology standards for consumer Internet of Things products.
Continue Reading New California Legislation Adds to Existing Smart Device Labeling Requirements
FTC Commercial Surveillance and Data Security Forum Highlights Industry and Consumer Perspectives
Posted on
Posted in Information Security
On September 8, 2022, the Federal Trade Commission hosted a virtual public forum on its Advanced Notice of Proposed Rulemaking concerning “commercial surveillance and lax data security.” …
Continue Reading FTC Commercial Surveillance and Data Security Forum Highlights Industry and Consumer Perspectives
Wawa Inc. Settles Multi-State AG Breach Investigation for $8 Million
Posted on
On July 26, 2022, the attorneys general of New Jersey, Pennsylvania, Delaware, Maryland, Virginia, Florida and Washington D.C. announced an $8 million multistate settlement with Wawa Inc. that resolves the states’ investigation into a 2019 data breach that compromised approximately 34 million payment cards used by consumers at Wawa stores and fueling locations. …
Continue Reading Wawa Inc. Settles Multi-State AG Breach Investigation for $8 Million
FTC Releases Agenda for Commercial Surveillance and Data Security Forum
Posted on
Posted in Children’s Privacy, Information Security
On August 29, 2022, the Federal Trade Commission released the agenda for its virtual public forum on the Commercial Surveillance and Data Security Advanced Notice of Public Rulemaking. …
Continue Reading FTC Releases Agenda for Commercial Surveillance and Data Security Forum
First CCPA Enforcement Action Settlement Announced by California AG
Posted on
On August 24, 2022, California Attorney General Rob Bonta announced the Office of the Attorney General’s first settlement of a California Consumer Privacy Act enforcement action, against Sephora, Inc. …
Continue Reading First CCPA Enforcement Action Settlement Announced by California AG
New CFPB Interpretive Rule Targets Digital Marketing Providers
Posted on
On August 10, 2022, the Consumer Financial Protection Bureau issued a new interpretive rule clarifying when digital marketing providers must comply with federal consumer financial protection law. Under the new rule, Big Tech companies that use behavioral advertising techniques to market financial products will be subject to the Consumer Financial Protection Act of 2010. …
Continue Reading New CFPB Interpretive Rule Targets Digital Marketing Providers
U.S. FTC Commissioner Phillips to Resign This Autumn
Posted on
Posted in General
On August 8, 2022, Commissioner Noah Joshua Phillips announced that he plans to resign from the Federal Trade Commission in the fall after serving four years with the agency. …
Continue Reading U.S. FTC Commissioner Phillips to Resign This Autumn
Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs
Posted on
Posted in Cybersecurity, Financial Privacy
On July 29, 2022, the New York Department of Financial Services posted proposed amendments to its Cybersecurity Requirements for Financial Services Companies. This blog entry provides highlights of the amendments.
Continue Reading Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors and CISOs
FTC Seeks Public Comment Regarding Data Privacy and Security Rulemaking
Posted on
On August 11, 2022, the Federal Trade Commission announced it is seeking public comment regarding its advance notice of proposed rulemaking on commercial surveillance and data security. …
Continue Reading FTC Seeks Public Comment Regarding Data Privacy and Security Rulemaking