“Neural data” is the newest addition to the ever expanding California Consumer Privacy Act (CCPA). Signed into law on September 28, 2024, SB 1223…
Background On September 5, 2024, the Council of Europe’s 46 member states, along with eleven non-members (Argentina, Australia, Canada, Costa Rica, the Holy See,…
Abstract The recently introduced American Privacy Rights Act (APRA) represents the latest attempt to pass a comprehensive federal privacy law in the US that…
In Brief Various players in the health care industry are or will soon be subject to new requirements relating to sexual and reproductive health…
In Brief On May 17, 2024 Colorado Governor Polis signed the landmark Colorado AI Act (Senate Bill 24-205) into law. Colorado is now the…
Today, April 4, 2024, Cybersecurity and Infrastructure Security Agency (“CISA”) officially published its long-awaited Notice of Proposed Rulemaking (“Proposed Rule”) for the Cyber Incident…
In a shocking show of gumption, a ransomware gang has reportedly not only hacked a US public company’s (MeridianLink) IT systems, but also filed…
Effective November 1, 2023, New York State Department of Financial Services (“DFS”) Strengthens Cybersecurity Requirements for Financial Services Companies. All companies should take account…
In many ways, the Securities and Exchange Commission’s (“SEC”) October 30, 2023 enforcement action against software company SolarWinds Corporation (“SolarWinds”) and its chief information…
On May 11, 2023, the governor of Tennessee signed the Tennessee Information Protection Act (“TIPA”), assigned Public Chapter Number 408, into law. TIPA takes effect on July 1, 2025. In this article, we highlight five key points of the new law.