Global Privacy and Cybersecurity Law Updates and Analysis.
Privacy & Cybersecurity Law Blog The latest updates to Privacy & Cybersecurity Law Blog.
- HHS OCR Settles HIPAA Security Rule Investigation with Top of the World Ranch Treatment Center for $103,000
on March 2, 2026 at 2:00 pmOn February 19, 2026, the U.S. Department of Health and Human Servicesā Office for Civil Rights announced a $103,000 settlement with Top of the World Ranch Treatment Center, an Illinois substance use disorder treatment provider, to resolve alleged noncompliance with the HIPAA Security Ruleās risk analysis requirement.ContinueĀ ReadingĀ āŗ
- UK ICO Fines Reddit Ā£14.47 Million for Failing to Protect Childrenās Privacyon February 26, 2026 at 2:00 pm
On February 24, 2026, the UK ICO announced that it had fined Reddit, Inc. Ā£14.47 million following an investigation into the companyās handling of childrenās personal information.ContinueĀ ReadingĀ āŗ
- FTC Issues COPPA Policy Statement Encouraging Adoption of Age-Verification Technologieson February 26, 2026 at 2:00 pm
The Federal Trade Commission has issued a new Policy Statement encouraging the adoption of robust ageāverification technologies by pledging not to bring enforcement actions under the COPPA Rule against operators of generalā or mixedāaudience sites that collect, use or disclose personal information solely to determine usersā ages, so long as long as they follow strict safeguards.ContinueĀ ReadingĀ āŗ
- OECD Publishes Due Diligence Guidance for Responsible AIon February 24, 2026 at 2:00 pm
On February 19, 2026, the Organisation for Economic Co-operation and Development published new guidance on the implementation of its Guidelines for Multinational Enterprises and AI Principles.ContinueĀ ReadingĀ āŗ
- Data Protection Authorities Globally Highlight Privacy Issues in AI Image Generationon February 23, 2026 at 2:00 pm
On February 23, 2026, a Joint Statement on AI-Generated Imagery was published by 61 data protection authorities. The Joint Statement addresses concerns regarding AI systems capable of generating realistic images and videos depicting identifiable individuals without their knowledge or consent.ContinueĀ ReadingĀ āŗ
- NetChoice Files Suit Challenging South Carolina Age-Appropriate Code Designon February 20, 2026 at 2:00 pm
On February 9, 2026, trade association NetChoice filed a lawsuit challenging South Carolinaās newly passed Age-Appropriate Code Design (āSC AACDā) on First and Fourteenth Amendment grounds. The SC AACD was signed into law on February 5, 2026, making South Carolina the fifth U.S. state to enact such a law, following California, Maryland, Nebraska and Vermont.ContinueĀ ReadingĀ āŗ
- Virginia AG to Enforce VCDPA Provisions Restricting Minorsā Use of Social Mediaon February 20, 2026 at 2:00 pm
On February 18, 2026, Virginia Attorney General Jay Jones announced that his office intends to fully enforce new provisions of the Virginia Consumer Data Protection Act restricting minorsā use of social media.ContinueĀ ReadingĀ āŗ
- FTC Issues Second Report to Congress on Cyberattackson February 19, 2026 at 2:00 pm
On February 6, 2026, the Federal Trade Commission announced its second report to Congress on its efforts to combat ransomware and other cyber attacks.ContinueĀ ReadingĀ āŗ
- Connecticut Looks to Strengthen Regulations on AI Chatbots and Childrenās Privacyon February 19, 2026 at 2:00 pm
On February 5, 2026, Connecticut Attorney General William Tong and Senator James Maroney announced that the stateās lawmakers will soon consider new measures aimed at protecting children and teenagers from potential risks associated with artificial intelligence technologiesContinueĀ ReadingĀ āŗ
- California Privacy Protection Agency to Hold Public Meeting to Discuss Future Regulationson February 18, 2026 at 2:00 pm
On Friday, February 27, 2026, the California Privacy Protection Agency will hold a public meeting at 9:00 am PST in-person and online to discuss upcoming rulemaking activities.ContinueĀ ReadingĀ āŗ
