The Federal Trade Commission held its eighth annual privacy conference, PrivacyCon, on March 6, 2024. The goal of PrivacyCon is to assemble researchers, academics, industry representatives, consumer advocates and government regulators to consider and discuss cutting-edge research and trends related to consumer privacy and data security. This year’s conference consisted of remarks by FTC Commissioners

On February 12, 2024, California bill AB-1949 was referred to the Assembly Committee on Privacy and Consumer Protection. The bill would amend the California Consumer Privacy Act (as amended by the California Privacy Rights Act) to significantly expand businesses’ obligations with respect to the personal information of consumers under the age of 18.
Continue Reading California Children’s Privacy Bill Moves to Committee

On February 21, 2024, the California Attorney General announced that it had reached a settlement resolving an enforcement action under the California Consumer Privacy Act (“CCPA”) and the California Online Privacy Protection Act (“CalOPPA”) brought against online food delivery company  DoorDash, Inc. (the “Company”). This is the AG’s second CCPA enforcement settlement, following the agency’s settlement with Sephora.Continue Reading Second CCPA Enforcement Action Settlement Announced by California AG

Recent developments in the Shanghai Pilot Free Trade Zone to facilitate cross-border data transfers are expected to provide greater flexibility in exporting data from China, which has been stymied by the Cyberspace Administration of China’s strict cross-border data transfer regulations proposed in December 2023.
Continue Reading China Plans to Accelerate Cross-Border Data Transfers by Implementing Trial Rules in Shanghai Pilot Free Trade Zone

On February 8, 2024, the Federal Communications Commission declared that calls using AI-generated, cloned voices fall under the category of “artificial or prerecorded voice” within the Telephone Consumer Protection Act and therefore are generally prohibited without prior express consent, effective immediately.
Continue Reading FCC Issues Declaratory Ruling that TCPA Applies to AI-Generated Voice Calls

Join us for a webinar discussing the Federal Trade Commission’s proposed revisions to the Children’s Online Privacy Protection Rule on February 20, 2024, at 12:00 p.m. (ET). This blog entry provides a link to register for the webinar.
Continue Reading What’s Next in Children’s Privacy: An Update on the FTC’s Proposed Changes to the COPPA Rule

On February 1, 2024, the Federal Trade Commission announced a proposed settlement with Blackbaud Inc. in connection with alleged security failures that resulted in a breach of the company’s network and access to the personal data of millions of consumers.
Continue Reading FTC Proposes Settlement with Blackbaud in Connection with Alleged Security Failures

On January 12, 2024, the New York State Department of Financial Services (“NYDFS”) announced a consent order with virtual currency company Genesis Global Trading, Inc. (“Genesis”) for “significant” failings in Genesis’ Anti-Money Laundering and cybersecurity compliance frameworks. According to the NYDFS, Genesis’ failure to comply with the NYDFS’ virtual currency and cybersecurity regulations left the company vulnerable to cybersecurity risks and related unlawful activity. Continue Reading NYDFS Issues $8 Million Fine Against Virtual Currency Company