On April 25, 2023, officials from the Federal Trade Commission, Consumer Financial Protection Bureau, Department of Justice’s Civil Rights Division and the Equal Employment Opportunity Commission released a Joint Statement on Enforcement Efforts against Discrimination and Bias in Automated Systems, also sometimes referred to as “artificial intelligence.”
Continue Reading FTC, DOJ, CFPB and EEOC Release Joint Statement on Enforcement Against Unlawful Use of Automated Systems
Personal Information
Tennessee Privacy Law Recognizes CBPR and PRP Certifications
On April 21, 2023, the Tennessee legislature voted to enact the Tennessee Information Privacy Act (H.B. 1181). …
Continue Reading Tennessee Privacy Law Recognizes CBPR and PRP Certifications
Montana and Tennessee Could Become Eighth and Ninth States to Enact Comprehensive Consumer Privacy Bills
On April 21, 2023, the Montana and Tennessee legislatures voted to enact comprehensive consumer privacy bills in their respective states. If signed by their governors, Montana’s Consumer Data Privacy Act (S.B. 384) and Tennessee’s Information Protection Act (H.B. 1181) could make these states the eighth and ninth U.S. states to enact comprehensive privacy legislation. …
Continue Reading Montana and Tennessee Could Become Eighth and Ninth States to Enact Comprehensive Consumer Privacy Bills
HHS Issues NPRM to Strengthen Protections under HIPAA for Reproductive Privacy
On April 12, 2023, the U.S. Department of Health and Human Services issued a Notice of Proposed Rulemaking to modify protections under the Health Insurance Portability and Accountability Act of 1996 to strengthen reproductive health care privacy.
Continue Reading HHS Issues NPRM to Strengthen Protections under HIPAA for Reproductive Privacy
Arkansas Enacts Legislation Restricting Social Media Accounts for Minors
On April 12, 2023, Arkansas Governor Sarah Huckabee Sanders signed into law S.B. 396 creating the state’s Social Media Safety Act.
Continue Reading Arkansas Enacts Legislation Restricting Social Media Accounts for Minors
California’s OAL Approves Final CPRA Regulations
On March 30, 2023, the California Privacy Protection Agency announced that California’s Office of Administrative Law approved the CPPA’s first substantive rulemaking package to implement the California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020.
Continue Reading California’s OAL Approves Final CPRA Regulations
New York Attorney General Settles with Law Firm Over Data Breach
On March 27, 2023, New York Attorney General Letitia James announced that a New York-based law firm had agreed to pay $200,000 in penalties and enhance its cybersecurity practices to settle charges stemming from a 2021 data breach. …
Continue Reading New York Attorney General Settles with Law Firm Over Data Breach
SEC Advances Three New Cybersecurity Rule Proposals
On March 15, 2023, the Securities and Exchange Commission proposed three rules related to cybersecurity and the protection of consumers’ information.
Continue Reading SEC Advances Three New Cybersecurity Rule Proposals
Colorado Finalizes Rules Implementing the Colorado Privacy Act
On March 15, 2023, the Colorado Attorney General’s Office finalized rules implementing the Colorado Privacy Act. …
Continue Reading Colorado Finalizes Rules Implementing the Colorado Privacy Act
SEC Brings Cyber Disclosure Enforcement Action
On March 9, 2023, the U.S. Securities and Exchange Commission announced settled administrative charges against Blackbaud Inc.
Continue Reading SEC Brings Cyber Disclosure Enforcement Action