On January 6, 2023, the Federal Communications Commission released a Notice of Proposed Rulemaking with updates to its data breach rules and reporting requirements.
WilmerHale Privacy and Cybersecurity Law
WilmerHale’s Cybersecurity, Privacy and Communications Practice (CPC) represents sophisticated, high-profile clients on a wide range of challenges—from routine matters to cutting-edge issues where the law is unclear and the enforcement risks are high. Our internationally recognized team, composed of lawyers from different practice areas and offices, possesses a mix of counseling, regulatory, litigation, enforcement and transactional knowledge. This blog's authors are members of the CPC team.
Blog Authors
Latest from WilmerHale Privacy and Cybersecurity Law
California AG Announces Investigative Sweep of Mobile Applications for CCPA Compliance
In a press release on January 27, 2023, California Attorney General Rob Bonta announced an investigative sweep focused on mobile applications’ compliance under the California Consumer Privacy Act, particularly with respect to effective processing of opt-out provisions.
State Comprehensive Privacy Law Update – January 30, 2023
2023 continues to be a busy year for state comprehensive privacy legislation. To date, we have seen at least 13 states propose some form of comprehensive privacy legislation.
State Comprehensive Privacy Law Update for 2023
The new year has already seen a flurry of state privacy law activity, with legislators in at least nine states (Indiana, Iowa, Kentucky, Massachusetts, Mississippi, New York, Oklahoma, Oregon, and Tennessee) proposing new comprehensive privacy legislation.
Settlement with Epic Games Highlights Continued Focus by Regulators on Unfair Privacy Practices, Teens, and User Interface Design
On December 19, the Federal Trade Commission reached two separate record-breaking settlements with Epic Games, Inc. over allegations, among others, that the Fortnite video game maker knowingly violated the Children’s Online Privacy Protection Act, engaged in unfair practices by publicly…
European Commission Announces Draft U.S. Adequacy Decision
On December 13, 2022, the European Commission initiated the process to adopt an adequacy decision for the EU-U.S. Data Privacy Framework. The draft adequacy decision follows President Biden’s October Executive Order 14086, which implemented binding safeguards and redress mechanisms, previously…
FTC Announces Six-Month Delay of Compliance Deadline for Updated Safeguards Rule
On November 15, the Federal Trade Commission announced a six-month delay of the deadline by which companies must comply with recent amendments to its Standards for Safeguarding Customer Information.
NYDFS Proposes a Second Amendment to its Cybersecurity Regulations
On November 9, the New York State Department of Financial Services formally proposed amendments to the Part 500 Cybersecurity Regulations. The Proposed Amendments, which if adopted would go into effect sometime in 2023, clarify existing requirements and provide more specificity…
Update on the EU-US Data Privacy Framework
On October 7, 2022, President Biden signed an Executive Order implementing the new trans-Atlantic EU-U.S. Data Privacy Framework. The EU-U.S. DPF, previously announced by President Biden and the European Commission President Ursula von der Leyen in March of 2022, aims…
Colorado Attorney General’s Office Publishes Proposed Rules for Colorado Privacy Act
On September 30, the Colorado Attorney General’s Office released proposed rules for the Colorado Privacy Act, which goes into effect on July 1, 2023. The Proposed Rules add significant details to the statutory requirements of the Colorado Privacy Act, which…