Massachusetts took another step toward the possible passage of a comprehensive privacy bill. The House side of the state legislature’s Advanced IT Committee advanced a new version (H-4746) of the proposed Massachusetts Consumer Data Privacy Act on Monday.

The U.S. Supreme Court appears more likely than not to grant cert to Verizon in its challenge of a September decision by the U.S. Court of Appeals for the 2nd Circuit upholding a $46.9 million fine against the carrier for violating FCC data rules (see 2509100019), experts said. They also agreed that SCOTUS is often difficult to predict. In August, the D.C. Circuit upheld a similar fine against T-Mobile (see 2508150044), while the 5th Circuit earlier rejected a fine imposed on AT&T (see 2504180001).

New York legislators always expected the potential for amendment negotiations with Gov. Kathy Hochul (D) on recently passed comprehensive AI legislation, Assemblymember Alex Bores (D) said in a recent interview with Privacy Daily. Now running for the U.S. Congress, Bores also told us he will prioritize legislating on federal privacy, AI safety and personal data control if elected.

European Commission simplification efforts could help organizations boost compliance and make meaningful changes to their digital governance structures, IAPP officials told us Friday.

How much of an increase Global Privacy Control (GPC) adoption will see after California enacted a law requiring web browser support depends partly on how companies like Google and Apple implement universal opt-out preference signals in their browsers, said Justin Brookman, director of technology policy for Consumer Reports, in an interview with Privacy Daily. Brookman is an editor of the Worldwide Web Consortium (W3C) spec for GPC and manages the popular opt-out mechanism’s website.

Opponents of social media age-verification requirements Thursday cast a Michigan bill as outdated, bad for consumer privacy and likely to draw a lawsuit. However, at the Michigan House Regulatory Reform Committee hearing, sponsor Rep. Mark Tisdel (R) repeatedly said his legislation is meant to hammer home a critical concept: “Minors can’t consent.”

Expect vibrant, passionate debate among stakeholders over the European Commission's digital simplification package, similar to what transpired during development of the GDPR, IAPP officials said at a briefing Thursday, which was prompted by an apparently leaked draft (see Ref:2511100006]).

Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching the title or clicking on the hyperlinked reference number.

The U.S. Fair Credit Reporting Act (FCRA) takes an EU-like approach to data scraping and could serve as a precedent for new laws that allow scraping in certain situations while banning it in others, said law professors Daniel Solove of George Washington University and Woodrow Hartzog of Boston University during a webinar Tuesday where they discussed their paper on the clash between scraping and privacy (see 2510160018).

While age assurance is a useful tool to ensure children have appropriate access to the internet, it's not a silver bullet and must be implemented thoughtfully, a Google official and other privacy experts said during a Family Online Safety Institute (FOSI) Monday.