Recent settlements show the vulnerability of companies that hire privacy vendors and think they're in compliance, Frankfurt Kurnit attorneys said during a webinar Thursday. In addition, they noted that states besides California are becoming more active in privacy litigation and enforcement.
The Connecticut attorney general's office is shifting from focusing on transparency and facial requirements to more in-depth work, examining whether organizations' privacy mechanisms are working and in compliance, three assistant attorneys general said during an IAPP KnowledgeNet event Tuesday.
Texas investigated data practices of more than 200 companies and issued “dozens of privacy violation notices” under the Texas Data Privacy and Security Act during the past year, said Attorney General Ken Paxton (R) in a Monday press release touting his office’s privacy accomplishments.
Healthline apparently violated “the gossip test for sensitive data” when it shared with advertisers titles of articles that individual users were reading, which effectively suggested they had certain medical diagnoses, Cobun Zweifel-Keegan, IAPP managing director for Washington, D.C., posted on the privacy association’s website Friday.
Ireland's first mass-litigation case could have major implications for tech companies that process data under the General Data Protection Regulation, Pinsent Masons commercial litigation attorney Zara West blogged Thursday.
As state attorneys general significantly increase technical hiring in pursuit of more sophisticated enforcement of privacy laws, companies should prepare for a similar raising of the regulatory bar in AI and other tech areas, said Brownstein Hyatt lawyers in a blog post Wednesday.
As laws and enforcement continue in the privacy and AI space, companies must pay attention to detail, panelists said during a webinar that vendor TrustArc hosted Tuesday.
The Department of Health & Human Services’ latest Health Insurance Portability and Accountability Act settlement suggests the Trump administration will continue focusing on compliance with the HIPAA Security Rule, health care privacy attorneys told us in interviews.
Despite a modest fine, a settlement this week between Connecticut and online marketplace TicketNetwork over potential violations of the state's Data Privacy Act (CTDPA) (see 2507080010) includes significant takeaways, privacy professionals said. However, a consumer advocate said the $85,000 penalty -- the first under the CTDPA -- also shows how comprehensive privacy laws based on Connecticut's model don't do enough to protect consumers.
The Interactive Advertising Bureau on Wednesday announced compliance tool updates for digital advertising companies.