On March 8, 2024, the California Privacy Protection Agency Board discussed and voted 3-2 in favor of further edits to revised draft regulations regarding risk assessments and automated decisionmaking technology, which were released in February 2024, but did not initiate the formal rulemaking process for these regulations, which is anticipated to begin in July 2024.
Continue Reading CPPA Board Holds Meeting on Revised Draft Regulations for Risk Assessment and Automated Decisionmaking Technology
Consumer Protection
New Hampshire Becomes 15th State to Enact a Comprehensive State Privacy Law
On March 6, 2024, Governor Chris Sununu signed into law SB 255, making New Hampshire the 15th state with a comprehensive state privacy law. This blog entry provides a summary of the new law.
Continue Reading New Hampshire Becomes 15th State to Enact a Comprehensive State Privacy Law
California Children’s Privacy Bill Moves to Committee
On February 12, 2024, California bill AB-1949 was referred to the Assembly Committee on Privacy and Consumer Protection. The bill would amend the California Consumer Privacy Act (as amended by the California Privacy Rights Act) to significantly expand businesses’ obligations with respect to the personal information of consumers under the age of 18.
Continue Reading California Children’s Privacy Bill Moves to Committee
Second CCPA Enforcement Action Settlement Announced by California AG
On February 21, 2024, the California Attorney General announced that it had reached a settlement resolving an enforcement action under the California Consumer Privacy Act (“CCPA”) and the California Online Privacy Protection Act (“CalOPPA”) brought against online food delivery company DoorDash, Inc. (the “Company”). This is the AG’s second CCPA enforcement settlement, following the agency’s settlement with Sephora.Continue Reading Second CCPA Enforcement Action Settlement Announced by California AG
China Plans to Accelerate Cross-Border Data Transfers by Implementing Trial Rules in Shanghai Pilot Free Trade Zone
Recent developments in the Shanghai Pilot Free Trade Zone to facilitate cross-border data transfers are expected to provide greater flexibility in exporting data from China, which has been stymied by the Cyberspace Administration of China’s strict cross-border data transfer regulations proposed in December 2023. …
Continue Reading China Plans to Accelerate Cross-Border Data Transfers by Implementing Trial Rules in Shanghai Pilot Free Trade Zone
Court Restores CPPA’s Authority to Enforce CPRA Regulations
On February 9, 2024, a California state court of appeal ruled in favor of the California Privacy Protection Agency and vacated the lower court order postponing enforcement of the CPPA’s final regulations under the California Consumer Privacy Act.
Continue Reading Court Restores CPPA’s Authority to Enforce CPRA Regulations
FCC Issues Declaratory Ruling that TCPA Applies to AI-Generated Voice Calls
On February 8, 2024, the Federal Communications Commission declared that calls using AI-generated, cloned voices fall under the category of “artificial or prerecorded voice” within the Telephone Consumer Protection Act and therefore are generally prohibited without prior express consent, effective immediately.
Continue Reading FCC Issues Declaratory Ruling that TCPA Applies to AI-Generated Voice Calls
What’s Next in Children’s Privacy: An Update on the FTC’s Proposed Changes to the COPPA Rule
Join us for a webinar discussing the Federal Trade Commission’s proposed revisions to the Children’s Online Privacy Protection Rule on February 20, 2024, at 12:00 p.m. (ET). This blog entry provides a link to register for the webinar.
Continue Reading What’s Next in Children’s Privacy: An Update on the FTC’s Proposed Changes to the COPPA Rule
UK Government Publishes Response to Consultation on AI Regulation White Paper
On February 6, 2024, the UK government published a response to the consultation on its AI Regulation White Paper. This blog entry provides key takeaways from the response.
Continue Reading UK Government Publishes Response to Consultation on AI Regulation White Paper
FTC Proposes Settlement with Blackbaud in Connection with Alleged Security Failures
On February 1, 2024, the Federal Trade Commission announced a proposed settlement with Blackbaud Inc. in connection with alleged security failures that resulted in a breach of the company’s network and access to the personal data of millions of consumers. …
Continue Reading FTC Proposes Settlement with Blackbaud in Connection with Alleged Security Failures