A New York state health data privacy bill could finally be sent to Gov. Kathy Hochul (D) in December, nearly a year after it quickly passed the legislature back in January (see 2501280023). Assemblymember Linda Rosenthal (D), the measure’s author, in an interview this week with Privacy Daily, said that she remains optimistic about getting the measure signed by year-end. “We’re still discussing any changes that [Hochul] might want to make.”
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching the title or clicking on the hyperlinked reference number.
In 2026, states and regulators will likely focus on many of the same areas they examined previously, including kids’ privacy and AI, said Cobun Zweifel-Keegan, managing director of IAPP, Washington, D.C., in an interview with Privacy Daily. On the federal level, a flood of privacy legislation is expected by year-end, he added.
House Commerce Committee members will discuss an updated version of the Kids Online Safety Act (KOSA) during a Dec. 2 subcommittee hearing, the committee said Tuesday.
The change to the definition of "personal data" in the GDPR is one of the most significant proposals in the European Commission's new digital omnibus, privacy attorneys and advocates said. It's unclear so far whether the reform represents a pragmatic or messy approach to data protection, they added.
Several Senate Republicans and Democrats told us in interviews last week their stances on federal AI policy haven’t changed since the chamber voted 99-1 to block a proposed AI moratorium (see 2511200051).
Age verification is “a wave that keeps coming," in part because there are many options for doing it, said Amy Lawrence, chief privacy officer at adtech company SuperAwesome, on a Squire Patton webinar about app store age verification.
Growing enforcement and the AI explosion are driving steady growth in the global privacy compliance market, said IDC analyst Ryan O’Leary in an interview this week with Privacy Daily. IDC’s 2025 MarketScape report on worldwide data privacy compliance vendors found that the market grew 18% year over year, hitting $1.5 billion in revenue in 2025.
Aiming to stop a surge of litigation under New Jersey’s Daniel’s Law, state Sen. Gordon Johnson (D) introduced a bill this week to amend the legislation to protect the privacy of judges and other public servants. Atlas Privacy, which has sued many times as an assignee under Daniel’s Law, condemned the proposal Friday. However, a privacy lawyer who defends businesses welcomed the bill.
Mobile gaming company Jam City will pay $1.4 million in a California Consumer Privacy Act (CCPA) settlement, state Attorney General Rob Bonta (D) said in a press release emailed Friday. The company failed to provide consumers ways to opt out of selling or sharing their personal information across its popular apps, which include games based on the Frozen and Harry Potter franchises.