The IAPP Westin Research Center compiled a list of privacy-related bills proposed in Congress to keep our members informed about developments within the federal privacy landscape. It divides the proposed the legislation into three categories: those introduced in the House of Representatives only,...

In exchange for our increasingly digital lives, Americans have turned over reams of data on our location, activity, preferences and even conversations.

A newsletter reported a powerful Catholic priest regularly used Grindr. Their source? “Commercially available app signal data”

We asked attorneys who draft, negotiate, or advise on technology-related contracts or legal matters about the concerns they have and the challenges they face.

The search giant announces a range of changes to its children's policies on Google and YouTube.

California is leading the way with strict new data privacy provisions and substantial fines for non-compliance from a new enforcement agency -- not everyone is ready.

We deserve meaningful privacy protections that no company can afford to omit from their products. We deserve a both/and approach: Privacy that is both meaningful and widely available.

Unrestrained data collection and selling doesn’t just harm citizens at home. It’s terrible foreign policy.

Does your company use fingerprinting or some facial recognition scanner as part of its clock-in, clock-out process? If your company has facilities or even some contacts with Illinois (and maybe other states in the future) you should pay heed to Illinois’s Biometric Information Privacy Act (BIPA) that is the subject of a new class action and has been the source of many prior lawsuits.

Sen. Roger Wicker (R., Miss.) plans Wednesday to introduce a bill for ensuring consumers’ control over personal data collected or processed by companies.

A Florida congresswoman is again attempting to update a national kids' online privacy law, but will her bill fall flat again among her peers?

Following California’s lead, two states recently enacted new privacy laws designed to protect consumers’ rights over their personal data. The Colorado Privacy Act and the Virginia Consumer Data Protection Act mimic California privacy laws and the EU General Data Protection Regulation (GDPR) by imposing stringent requirements on companies that collect or process personal data of state residents. Failure to comply may subject companies to enforcement actions and stiff fines and penalties by regulators.

The following infographics show the rapid growth of state-level privacy initiatives over this short period and offer links to bills by year to provide historical context.

Though Silicon Valley would prefer data federal privacy laws that are favorable to them to a patchwork of state laws, Big Tech appears to be putting more effort into lobbying at the state level as of late.

An enforcement provision allowing customers to sue businesses that misuse their personal data is a key stumbling point for state-level data privacy legislation.

Virginia, Florida, Arkansas and Maryland are among dozens of states that have introduced bills to curtail the power of Amazon, Google, Facebook and Twitter.

Introduction Despite its passage in 2008, class action litigation alleging violations of the Illinois Biometric Information Privacy Act (BIPA) has increased significantly in recent years and settle

Scholars suggest ways for the U.S. Congress to implement a federal data privacy policy.

Ballot measures were approved in California to restrict commercial use of user data and in Michigan to require warrants for searches of electronic information.

Privacy and security continue to be at the forefront for legislatures across the nation, despite (or perhaps because of) the COVID-19 pandemic.  In late May, with back-to-back amendments, Washing

Voters in California have passed Proposition 24, commonly referred to as the California Privacy Rights Act of 2020 (“CPRA”). Less than a year after the CCPA became effective, the voters’ approval of the CPRA will provide significant new rights to California consumers, create new compliance obligations for covered businesses, establish a new enforcement agency, and provide for data minimization and retention obligations, among other aspects. Below, we provide an overview of certain important aspects.

Michigan voters approved a state constitutional amendment that will require state and local law enforcement officers to get a warrant before searching through suspects’ electronic data.

Proposition 24, adopted by the state’s voters on November 3, creates The California Privacy Rights Act of 2020. As part of Prop. 24, there is being

The California Privacy Rights Act approved by state voters this week allows individuals to opt out of website tracking and data sharing. Michigan voters approved Proposal 2, which requires police to obtain search warrants before seizing  electronic dat...

The California Privacy Protection Agency will be the first of its kind tasked solely with enforcing privacy laws.

The CPRA institutes new privacy rights and further defines what constitutes “sensitive personal information,” a phrase referenced in the CCPA.

Businesses with operations in California should expect their data privacy compliance obligations to get a lot more complicated next year with the California Privacy Rights Act expected to pass in November.

California already has America’s strongest data privacy law. It may get even stronger.