With no action at the federal level, over a dozen states have enacted comprehensive consumer privacy legislation since 2018. Many of these bills, however, have been significantly watered down by the influence of Big Tech. A recent joint report by the Electronic...
U.S. state comprehensive consumer privacy laws include requirements for contracts involving data processing with third-party vendors. Save time by adapting this data processing agreement (DPA) for the processing of personal data between a controller and processor...
Find out what’s new in our recently updated Artificial Intelligence (AI) Legislation State Law Survey covering enacted state and notable local legislation spanning numerous AI-related topics/industries including consumer privacy, consumer protection, government...
With technological gains and public interest in artificial intelligence (AI) at an all-time high, public officials and legislatures have become increasingly focused on the potential risks and benefits of its use. AI bills span several topics/industries, including...
Wilmer Hale attorney authors give the lowdown on recent data breach decisions and what “risk of future injury” courts are finding sufficient to confer standing on plaintiffs. Read now » Related Content Data Breach Notification Resource...
Learn about the broad scope of India's Digital Personal Data Protection Act in this article by Bird and Bird attorneys, examining the law’s extraterritoriality, covered organizations and data, processing obligations, and data protection principles. ...
By Geoffrey D. Ivnik, Esq. | Director of Large Markets, LexisNexis The rise of powerful generative artificial intelligence (Gen AI) models that can quickly obtain answers to research queries, summarize lengthy documents and create synthetic text for lawyers offers...
Montana’s consumer privacy law will soon become effective. Prepare for October’s deadline with our latest Q&A including information on exemptions, key definitions, consumer rights and requests, controller/processor obligations, data protection requirements...
Check out the legal requirements and best practices for mitigating third-party / vendor risks to consumers' privacy or security by ensuring that vendor contracts involving personal data processing comply with U.S. state privacy laws. Read now » Related...
Stay compliant in your written agreements between controllers and processors of personal data. Many states have passed comprehensive consumer privacy laws, with many more legislatively proposed. All these states thus far require that the controller/processor contract...
While there is no single strategy that applies across all businesses and incidents, there are five fundamental questions every business should ask before communicating about a data security incident. These five questions are intended to minimize both the legal...
Washington's My Health My Data Act became effective on March 31, 2024, for most regulated entities. Understanding the fundamentals of this law is critical as it is expected to have national implications. In fact, it may be one of the most significant U.S. privacy...
Our regulatory enforcement tracker highlights the resolution of recent key enforcement actions undertaken by the Federal Trade Commission (FTC) regarding the regulation and protection of consumer privacy in the United States. Read now » Related Content...
Sheppard Mullin partner Liisa Thomas answers questions on common themes in U.S. privacy laws, whether they differ from other countries, the benefits of general versus sector-specific privacy laws, and how companies can best navigate the privacy landscape. Watch...
Businesses seem to face added data security and privacy obligations by the day. As part of your compliance program, don’t forget to review state laws governing disposal of records containing personal information. Our state law survey on data disposal privacy...