On May 27, 2022, Vermont Governor Phil Scott signed H.515, making Vermont the twenty-first state to enact legislation based on the National Association of Insurance Commissioners Insurance Data Security Model Law. This blog entry provides a summary of the legislation.
Latest from Privacy & Information Security Law Blog - Page 2
U.S. Issues Guidance to Companies Warning of Cybersecurity and Sanctions Risks Posed by IT Workers Directed by North Korea
On May 16, 2022, the U.S. Department of State, U.S. Department of Treasury, and the Federal Bureau of Investigation issued combined guidance on efforts by North Korean nationals to secure freelance engagements as remote information technology workers by posing as
California Attorney General Reminds Health App Providers of Obligations to Protect Reproductive Health Information
On May 26, 2022, California Attorney General Rob Bonta issued a press release reminding health app providers that California’s Confidentiality of Medical Information Act applies to mobile apps that are designed to store medical information, which includes health apps such
CNIL Unveils 2021 Annual Activity Report
The French Data Protection Authority recently published its Annual Activity Report for 2021.
Thailand’s Personal Data Protection Act Enters into Force
On June 1, 2022, Thailand’s Personal Data Protection Act entered into force after three years of delays.
Twitter to Pay $150 Million to Settle Allegations of Data Misuse
On May 25, 2022, Twitter reached a proposed $150 million settlement with the Department of Justice and the Federal Trade Commission to resolve allegations that the company deceptively used nonpublic user contact information obtained for account security purposes to serve
California Assembly Proposes Data Privacy Law for Workers
Assembly Bill 1651, or the Workplace Technology Accountability Act, a new bill proposed by California Assembly Member Ash Kalra, would regulate employers and their vendors regarding the use of employee data.
California Privacy Protection Agency Holds Pre-Rulemaking Stakeholder Sessions
On May 4-6, 2022, the California Privacy Protection Agency held via video conference several public pre-rulemaking stakeholder sessions regarding the California Privacy Rights Act.
FTC Announces Virtual Open Meeting to Discuss COPPA and Education Technology
On May 19, 2022, the Federal Trade Commission will hold a virtual open meeting. The meeting’s tentative agenda includes a vote by the FTC on a policy statement prioritizing the enforcement of the Children’s Online Privacy Protection Act as it
UK Announces Data Reform Bill
On May 10, 2022, as part of the Queen’s Speech, the UK government announced its intention to introduce a Data Reform Bill.