The patchwork of more than 20 state privacy laws confuses consumers and hinders innovation for companies of all sizes, Consumer Technology Association noted in a post Friday.

Companies should expect increased DOJ scrutiny and possible data requests in late 2025, Marashlian & Donahue said in an alert Monday.

A Delaware health care company violated HIPAA rules by publicly sharing patient data without consent, the Health and Human Services Office for Civil Rights announced in a settlement Tuesday.

The National Institute of Standards and Technology on Monday released two draft documents with procedures for protecting unclassified information.

The FTC Act and COPPA are among the statutes that will be focal points for DOJ’s new Enforcement & Affirmative Litigation Branch, the department announced Thursday.

BOSTON -- DOJ is revising its AI strategy and expects to publish it soon, said Christina Baptista, senior counsel for the Office of Privacy and Civil Liberties, during a panel Thursday at the IAPP AI Governance Global North America.

The National Institute of Standards and Technology on Wednesday announced revisions to its security and privacy controls catalog.

The Securities and Exchange Commission won’t pursue enforcement action against Zoom over allegations the company illegally shared user data with Chinese entities, the company said in a Friday filing with the agency.

As the next deadline nears for DOJ’s bulk data transfer rule, “businesses must continue to take proactive steps to understand and implement the rule’s complex compliance requirements,” said Benesch privacy and tech attorneys in a blog post Friday.

Industry groups are encouraged to adopt the National Institute of Standards and Technology’s digital identity guidelines, NIST Senior Policy Advisor David Temoshok said Wednesday (see 2508010052).