On September 15, 2022, California Governor Gavin Newsom signed into law the California Age-Appropriate Design Code Act. The Act, which takes effect July 1, 2024, places new legal obligations on companies with respect to online products and services that are likely to be accessed by children under the age of 18.
Continue Reading California Enacts the California Age-Appropriate Design Code Act
State Attorneys General
Wawa Inc. Settles Multi-State AG Breach Investigation for $8 Million
Posted on
On July 26, 2022, the attorneys general of New Jersey, Pennsylvania, Delaware, Maryland, Virginia, Florida and Washington D.C. announced an $8 million multistate settlement with Wawa Inc. that resolves the states’ investigation into a 2019 data breach that compromised approximately 34 million payment cards used by consumers at Wawa stores and fueling locations. …
Continue Reading Wawa Inc. Settles Multi-State AG Breach Investigation for $8 Million
California AG Provides Summary of Recent CCPA Enforcement Actions, with Focus on Global Privacy Control
Posted on
On August 24, 2022, the California Office of the Attorney General announced a new wave of enforcement efforts targeted at business’ recognition of the Global Privacy Control, and issued an updated summary of recent CCPA enforcement efforts.
Continue Reading California AG Provides Summary of Recent CCPA Enforcement Actions, with Focus on Global Privacy Control
First CCPA Enforcement Action Settlement Announced by California AG
Posted on
On August 24, 2022, California Attorney General Rob Bonta announced the Office of the Attorney General’s first settlement of a California Consumer Privacy Act enforcement action, against Sephora, Inc. …
Continue Reading First CCPA Enforcement Action Settlement Announced by California AG
Arizona Adds Breach Notification Obligation
Posted on
On July 22, 2022, companies are required to notify the Arizona Department of Homeland Security when they experience a data breach impacting more than 1,000 Arizona residents. …
Continue Reading Arizona Adds Breach Notification Obligation
California Privacy Protection Agency Issues Memo Opposing Federal Privacy Legislation, and California Democrats Join the Cause
Posted on
On July 1, 2022, the California Privacy Protection Agency sent U.S. House of Representatives Speaker Nancy Pelosi a memo outlining how H.R. 8152, the bipartisan American Data Privacy and Protection Act, would lessen privacy protections for Californians, and California Democrats have joined the cause.
Continue Reading California Privacy Protection Agency Issues Memo Opposing Federal Privacy Legislation, and California Democrats Join the Cause
Wegmans Agrees to Pay $400,000 Penalty After Cloud Security Lapse
Posted on
On June 30, 2022, the New York Office of the Attorney General announced a $400,000 agreement with Wegmans Food Markets, Inc. in connection with a cloud storage security issue. …
Continue Reading Wegmans Agrees to Pay $400,000 Penalty After Cloud Security Lapse
Colorado AG Seeks Public Input on CPA Rulemaking
Posted on
Posted in U.S. State Law
On June 21, 2022, the Colorado Attorney General’s Office announced it is seeking informal input from the public on its rulemaking related to the Colorado Privacy Act (“CPA”). Before starting its formal rulemaking process, the Office has indicated it wants to better “understand the community’s thoughts and concerns about data privacy.”…
Continue Reading Colorado AG Seeks Public Input on CPA Rulemaking
House Subcommittee Passes Comprehensive Federal Privacy Legislation
Posted on
Posted in U.S. Federal Law, U.S. State Law
On June 23, 2022, the U.S. House of Representatives Subcommittee on Consumer Protection and Commerce passed by voice vote H.R. 8152, the American Data Privacy and Protection Act. …
Continue Reading House Subcommittee Passes Comprehensive Federal Privacy Legislation
Vermont Enacts Insurance Data Security Law
Posted on
On May 27, 2022, Vermont Governor Phil Scott signed H.515, making Vermont the twenty-first state to enact legislation based on the National Association of Insurance Commissioners Insurance Data Security Model Law. This blog entry provides a summary of the legislation.
Continue Reading Vermont Enacts Insurance Data Security Law