As artificial intelligence (AI) continues to rapidly evolve, its growing impact on data privacy and cybersecurity has prompted governments and organizations to focus on developing comprehensive policy frameworks and regulatory measures. In 2024, AI legislation proliferated as countries across the globe took significant steps to balance the opportunities AI presents with the risks it poses. From privacy concerns to ethical considerations and economic implications, the regulatory framework for AI becomes more nuanced by the day, aiming to ensure that AI is developed and used responsibly. |
|
As the Republican Party prepares to take control of the Senate, House, and Oval Office, the future of privacy and artificial intelligence (AI) legislation hangs in the balance. Historically, the U.S. has lagged behind other nations in adopting comprehensive privacy laws, leaving businesses to navigate a patchwork of state-level regulations. The challenges of harmonizing federal and state laws—particularly regarding enforcement mechanisms and preemption—remain unresolved.
| |
In a pivotal move that signals increased scrutiny of digital marketing practices, the Office of the Australian Information Commissioner (OAIC) released comprehensive guidance on November 4, 2024, addressing tracking pixels and associated privacy obligations. For businesses operating in Australia and leveraging tracking pixels as part of their digital strategies, this development brings both clarity and new compliance challenges, underscoring the need for compliance with the Australian Privacy Act (Privacy Act). | |
LEGISLATIVE & REGULATORY UPDATE | | |
|
CPPA Adopts New Regulations for Data Brokers and Advances ADMT Rulemaking Package
California Privacy Protection Act
| | |
|
What the New European Commission Could Mean for Digital Regulation
IAPP
| | |
|
CFPB Finalizes Rule on Federal Oversight of Popular Digital Payment Apps to Protect Personal Data, Reduce Fraud, and Stop Illegal "Debanking"
Consumer Financial Protection Bureau
| | |
|
Trump Vows to Undo Biden's AI Policies as Global Safety Talks Begin
Newsweek
| | |
|
32 State Attorneys General Call on Congress to Pass Kids Online Safety Act
THE HILL
| | |
|
NIST Publishes Privacy Workforce Taxonomy Initial Public Draft
NIST
| | |
First Fine Imposed Under Thailand's Personal Data Protection Act
iapp
| |
| |
South Korea Fines Meta $15 Million for Illegally Collecting Information on Facebook Users
AP News
| |
| |
Judge Dismisses Biometric Data Privacy Lawsuit Citing Revised State Law
Capitol News Illinois
| |
| |
New York Fines Geico and Travelers $11 Million Over Data Breaches
Security Week
| |
| |
Judge Approves $1.5 Million One Brooklyn Health Data Breach Settlement
The HIPAA Journal
| |
| |
Cummins Behavioral Health Settles Data Breach Lawsuit for Up to $2.1 Million
The HIPAA Journal
| |
| |
|
French Hospital Hit by Massive Data Breach, Over 750,000 Patients Impacted
TechMonitor
| | |
|
T-Mobile Hacked in Massive Chinese Breach of Telecom Networks, WSJ Reports
Reuters
| | |
|
Equinox Discloses Data Breach Involving Health Info of Clients, Saff
Reuters
| | |
|
AnnieMac Data Briech Impacts 171,000
SecurityWeek
| | |
|
Ransomware Attack on Blue Yonder Hits Starbucks, Grocery Stores Across the World
techradar
| | |
In this episode of PrivacyCafé, Richard and Jade dive into the background and significance of the Becerra case, which challenges the HHS guidance on the usage of tracking technologies by medical providers. Throughout the episode, they provide practical advice for hospitals on using tracking technologies responsibly, discuss the potential impact on ongoing and future class action lawsuits, and offer actionable tips for medical providers to ensure compliance with data privacy regulations. |
| |
Richard Sheinis
Rich is a Certified Information Privacy Professional (CIPP-US) and a Certified Information Privacy Technologist (CIPT) through the International Association of Privacy Professionals (IAPP). He works with companies to investigate and respond to HIPAA and other data breaches, advises on regulatory compliance including HIPAA, COPPA, PCI DSS, cross-border data transfer, the EU-US Privacy Shield, and other global privacy regulations.
| | |
Jade Davis
Jade provides strategic privacy and cyber-preparedness compliance advice, and defends, counsels, and represents companies on privacy, global data security compliance, data breaches, and investigations. She advises companies on best practices in privacy, cybersecurity, data, mobile, cloud storage, Ad Tech privacy, Internet of Things, and other areas of regulatory compliance.
| | |
Joseph Stepina
Joseph is an Attorney in our Little Rock office where he focuses his practice on general liability, premises liability, products liability and data privacy and cybersecurity matters.
|
Lea McBryde
Lea is an Attorney in our Charlotte office, where she focuses her practice on data privacy and cybersecurity matters.
| | |
Savannah Avera
Savannah is an Attorney in our Atlanta office, where she protects the rights of clients in health care and cyberspace.
| | | | | |