Global Privacy and Cybersecurity Law Updates and Analysis.
Privacy & Cybersecurity Law Blog The latest updates to Privacy & Cybersecurity Law Blog.
- CalPrivacy Director Expects CCPA Compliance Audits in 2026
on April 17, 2026 at 1:00 pmThe California Privacy Protection Agency expects to conduct California Consumer Privacy Act compliance audits in 2026 as it builds out its newly created Audits Division, according Law360âs recent interview with the agencyâs Executive Director, Tom Kemp.Continue Reading âș
- Virginia Bans Sale of Geolocation Dataon April 16, 2026 at 1:00 pm
On April 13, 2026, Virginia Governor Abigail Spanberger signed into law S.B. 388, which amends the Virginia Consumer Data Protection Act to prohibit the sale of geolocation data, effective July 1, 2026.Continue Reading âș
- HHSâ Office for Civil Rights Settles HIPAA Investigation of Health Care Software Companyon April 9, 2026 at 1:00 pm
The U.S. Department of Health and Human Servicesâ Office for Civil Rights recently announced a settlement with health care software company MMG Fusion to resolve the companyâs alleged noncompliance with the HIPAA Privacy, Security and Breach Notification Rules.Continue Reading âș
- New Jersey Enacts New Restrictions on Health Care Facilitiesâ Use of Patient Dataon April 8, 2026 at 1:00 pm
On March 25, 2026, New Jersey enacted a new law restricting health care facilitiesâ collection and disclosure of certain patient information, including immigration status, citizenship status, place of birth, Social Security number and individual taxpayer identification number.Continue Reading âș
- Illinoisâ Damages Limitation for Biometric Privacy Violations Applies Retroactively Âon April 6, 2026 at 1:00 pm
On April 1, 2026, the U.S. Court of Appeals for the Seventh Circuit held that the 2024 amendment to Illinoisâ Biometric Information Privacy Act, limiting damages, applies retroactively to pending cases.Continue Reading âș
- Washington State Enacts Law Regulating AI Companion Chatbots with Private Right of Actionon April 6, 2026 at 1:00 pm
On March 24, 2026, Washington Governor Bob Ferguson signed House Bill 2225, an Act regulating artificial intelligence companion chatbots.Continue Reading âș
- Connecticut AG Clarifies AI Compliance Obligations Under CTDPAon March 30, 2026 at 1:00 pm
The Connecticut Attorney General recently issued a legal memorandum regarding the application of existing Connecticut laws, such as the Connecticut Data Privacy Act, to the use of artificial intelligence.Continue Reading âș
- Guardrails for Legal AI: What Californiaâs SB 574 Would Require of Attorneys and Arbitratorson March 27, 2026 at 1:00 pm
As reported on the Hunton Employment & Labor Perspectives blog, SB 574 is a California bill that would set specific duties for attorneys who use generative artificial intelligence and would restrict how arbitrators may use such tools in decision-making.Continue Reading âș
- South Dakota Enacts Genetic Data Privacy Act Âon March 26, 2026 at 1:00 pm
On March 23, 2026, South Dakota Governor Larry Rhoden signed Senate Bill 49, a new law designed to âsafeguard the integrity, privacy, and security of consumer genetic data,â which takes effect on July 1, 2026.Continue Reading âș
- UK Regulators Issue Joint Statement on Age Assurance for Online Serviceson March 26, 2026 at 1:00 pm
On March 25, 2026, the UK Information Commissionerâs Office and the UK Office of Communications released a joint statement addressing the intersection of online safety and data protection in relation to age assurance.Continue Reading âș
