United States: Data Protection

Subscribe

Privacy law and privacy regulation thought leadership, articles, podcasts, videos and webinars from expert sources across the legal world. Explore insights covering topics including GDPR, data protection, data privacy, and privacy protection.

California Enacts 30-Day Data Breach Notification Deadline

On October 3, California Governor Gavin Newsom signed Senate Bill 446, which strengthens California's existing data-breach disclosure requirements.

United States Privacy

SM

Sheppard Mullin Richter & Hampton

WhatsApp Lawsuit vs. Meta: Access Governance, Culture & The Enforcement Horizon

As part of our Accountability in 2025 focus, TC's Cybersecurity, Privacy and Data Governance team is examining how a recent whistleblower suit against Meta is shifting the regulatory conversation...

United States Technology

TC

Thompson Coburn LLP

Esports' Surge Requires Navigating A Privacy Compliance Maze

The 2025 Esports World Cup attracted hundreds of millions of viewers,featured record-breaking prize pools, and showcased elite competition.

Worldwide Privacy

GP

Goodwin Procter LLP

Understanding The CCPA's New Risk Assessment Requirements – Part 1

The California Privacy Protection Agency (CPPA) has adopted significant updates to the California Consumer Privacy Act (CCPA) regulations, which were formally approved by the California Office of Administrative Law...

United States Privacy

JL

Jackson Lewis P.C.

GALA Releases Third Edition Of Guide To Privacy Laws Related To Advertising

Worldwide Media & IT

GA

Global Advertising Lawyers Alliance (GALA)

The Class Action Weekly Wire – Episode 122: Data Breach Class Action Dismissed For Plaintiffs' Failure To Allege Concrete Injury (Video)

United States Litigation

DM

Duane Morris LLP

Smart Investing For Smart Buildings: The Data And Cyber Considerations For Connected Real Estate

United States Real Estate

RG

Ropes & Gray LLP

California Sets 30 Day Deadline For Data Breach Notifications

United States Privacy

JL

Jackson Lewis P.C.

Using A Risk-Mindset Approach To Unlock The Potential Of Quantum Computing

Worldwide Technology

MB

Mayer Brown

AI Governance Best Practices For Legal Teams

United States Technology

OG

Outside GC

Data Security Program Rule Covering Access To U.S. Sensitive Personal Data Now Fully Effective

United States Privacy

RJ

Roth Jackson

From Expense To Advantage: Breaking The Cost Barrier To Innovation

United States Privacy

AC

Ankura Consulting Group LLC

The EU Data Act: What The "Switching" Requirement Means For Cloud Service Providers

United States Privacy

CO

Cozen O'Connor

Slalom Through Sensitive Data: Utah Skis Into Consumer Privacy Protection

United States Privacy

BB

Bass, Berry & Sims

Still On The Fence About Hiring A Lawyer? Here's Why Timing Matters (Video)

United States Law Practice

C

Crowley Law LLC

One Size Doesn't Fit All: Customizing Dispute Resolution For Commercial Contracts

United States Litigation

J

JAMS

Control, Creativity, Closure: The Mediation Advantage

United States Litigation

J

JAMS

Speaking Sustainability - Legal & Regulatory Updates | August 2025

United States Commercial

AG

Akin Gump Strauss Hauer & Feld LLP

Resolving Construction Conflicts Efficiently: A Guided Mediation Approach

United States Litigation

J

JAMS

Using Patient Photos In Marketing? OCR Settlement Highlights HIPAA Compliance Requirements

Businesses across many industries naturally want to showcase their satisfied customers. Whether it's a university featuring successful graduates, a retailer highlighting happy shoppers...

United States Healthcare

JL

Jackson Lewis P.C.

California Privacy Protection Agency Drops First-Ever Enforcement Lawsuit, Fines Tractor Supply Company $1.35M

On September 26, 2025, the California Privacy Protection Agency (CPPA) entered a stipulated order fining Tractor Supply Company (TSC), a rural lifestyle retailer, $1.35 million for deficient privacy measures

United States Privacy

KL

Herbert Smith Freehills Kramer LLP

Privacy By Design, Profit By Strategy: Thoughts From Dayton's Startup Week

Last month, I had the opportunity to speak to entrepreneurs at Launch Dayton's Startup Week regarding the positive effects that strong privacy and data governance practices have on business.

United States Privacy

TS

Taft Stettinius & Hollister

North Carolina Federal Dismisses Class Action Based On No Injury Stemming From Bojangles Data Breach

On September 30, 2025, in Dougherty, et al. v. Bojangles' Restaurants, Inc., No. 25-CV-00065, 2025 U.S. Dist. LEXIS 194879 (W.D.N.C. Sept. 30, 2025), Judge Kenneth D. Bell of the U.S. District Court for the Western District of North Carolina dismissed a class action.

United States Litigation

DM

Duane Morris LLP

October 6 Data Security Program Deadline Looms

United States Privacy

W

WilmerHale

California Privacy Protection Agency Levies Record $1.35 Million Fine

United States Privacy

BT

Barnes & Thornburg LLP

Now In Effect: Maryland Law Raises Bar On Sensitive Data, Data Minimization And Children's Privacy

United States Privacy

MP

Manatt, Phelps & Phillips LLP

California Privacy Regulations On ADMT, Cybersecurity Audits, And Risk Assessments Receive Final Approval

United States Privacy

SM

Sheppard Mullin Richter & Hampton

AGs Fight To Keep Kids SAFE

United States Privacy

KD

Kelley Drye & Warren LLP

IP & TMT Quarterly Review Third Quarter 2025

MB

Mayer Brown

National Institutes Of Health Announces New Restrictions On The Sharing Of Human Biospecimens With China And Other "Countries Of Concern"

United States Healthcare

RG

Ropes & Gray LLP

Rising Global Regulation For Artificial Intelligence

United States Technology

JD

Jones Day

CJEU Clarifies Requirements and Definition of Pseudonymisation

United States Privacy

BB

Baker Botts LLP

Texas Provides Small Businesses With Limited Immunity For Some Data Breaches

United States Technology

SH

Shook, Hardy & Bacon

National Institutes Of Health Announces New Restrictions On The Sharing Of Human Biospecimens With China And Other "Countries Of Concern"

On September 24, 2025, the National Institutes of Health ("NIH") published a policy entitled "Enhancing Security Measures for Human Biospecimens" (the "Policy").

United States Healthcare

RG

Ropes & Gray LLP

Rising Global Regulation For Artificial Intelligence

Artificial intelligence ("AI") is a global subject of intense focus by governments, research institutions, investors, and corporations, ranging from start-ups to well-established industry leaders.

United States Technology

JD

Jones Day

CJEU Clarifies Requirements and Definition of Pseudonymisation

On September 4, 2025, the Court of Justice of the European Union ("CJEU"), delivered its judgment in European Data Protection Supervisor ("EDPS") v. Single Resolution Board ("SRB") (C-413/23 P).

United States Privacy

BB

Baker Botts LLP

Texas Provides Small Businesses With Limited Immunity For Some Data Breaches

Texas Gov. Greg Abbott recently signed a limited immunity bill, S.B. 2610, for companies that suffer a data breach. The law insulates small businesses from "exemplary damages"—e.g., punitive...

United States Technology

SH

Shook, Hardy & Bacon

Virginia Is For Lovers (Of Privacy): VCDPA Amendments Merge Components Of Consumer Data Health Laws To Better Protect Reproductive And Sexual Health Information

United States Privacy

TS

Taft Stettinius & Hollister

2025 Breach Notification Law Update

Cyber-security continues to draw interest from lawmakers and regulators on a variety of fronts. Similar to the trends of 2024, there were relatively few updates to state data breach laws...

United States Privacy

PC

Perkins Coie LLP

Minor Coordinates, Major Concerns: FTC Case Signals Collecting Location Data Isn't Child's Play

On September 2, 2025, the Federal Trade Commission filed a complaint and proposed order against toy manufacturer Apitor Technology Co., Ltd.

United States Privacy

PC

Perkins Coie LLP

REMINDER: Maryland Data Protection Law Comes Into Effect On October 1st

Well over a dozen U.S. states now have omnibus data protection laws in effect. On October 1, 2025, Maryland will join their ranks with the Maryland Online Data Privacy Act (the "MODPA").

United States Privacy

B

Benesch Friedlander Coplan & Aronoff LLP

DOJ Posts New FAQ For The "Bulk Data" Rule

The U.S. Department of Justice (DOJ) "Data Security Program" (DSP), also known as the "Sensitive Data Rule" or "Bulk Data Rule," has prompted numerous questions about its scope and application.

United States Privacy

PC

Perkins Coie LLP

Privacy, Data And Cybersecurity Quick Clicks | Issue 33

United States Privacy

KM

Katten Muchin Rosenman LLP

December 3, 2025 Deadline Approaching For Large Registered Investment Advisers To Comply With Amendments To Regulation S-P

United States Commercial

FH

Foley Hoag LLP

Dechert Cyber Bits - Issue 82 - September 25, 2025

Worldwide Privacy

D

Dechert

The Middle East's Big Bet On Artificial Intelligence And Data Security

United States Technology

CM

Crowell & Moring LLP

Are You Ready For October 1? Maryland's Data Privacy Law Sets New Standards For Compliance

United States Privacy

PC

Perkins Coie LLP

One To Watch: Maryland Privacy Law Effective October 1, 2025

United States Privacy

LS

Lowenstein Sandler

Order Up – The First FASCSA Order Has Been Issued By ODNI

United States Technology

SM

Sheppard Mullin Richter & Hampton

MrBeast Serves Up A Feast Of Issues For CARU

United States Media & IT

KD

Kelley Drye & Warren LLP

Wiley Consumer Protection Download (September 23, 2025)

United States Consumer

WR

Wiley Rein

The EU Data Act Is Here

United States Privacy

KM

Katten Muchin Rosenman LLP

Are You Making Informed Business Decisions Using Real-Time Data?

United States Commercial

KR

Kaufman Rossin

California, Colorado, And Connecticut Announce Coordinated Investigative Sweep To Enforce Compliance With The Global Privacy Control Signal

United States Privacy

B

Benesch Friedlander Coplan & Aronoff LLP

Houston At Ground Zero: Defending America's Critical Infrastructure From Cyber Threats (Video)

United States Technology

B

Bracewell

European General Court Confirms Validity Of The EU–U.S. Data Privacy Framework

United States Privacy

BB

Baker Botts LLP

The Golden State's Latest Guardrails For Consumer Privacy

United States Privacy

BB

Bass, Berry & Sims

See more

Latest Videos

See more

The Class Action Weekly Wire – Episode 122: Data Breach Class Action Dismissed For Plaintiffs' Failure To Allege Concrete Injury (Video)

DM

Duane Morris LLP

Houston At Ground Zero: Defending America's Critical Infrastructure From Cyber Threats (Video)

B

Bracewell

Introducing Consumer Counterpoint: A New Vidcast From Seyfarth (Video)

SS

Seyfarth Shaw LLP

2025 AI Legal Primer: What Do Businesses Need To Know About Rules And Risks? (Video)

G

Gamma Law

Live From Workplace Horizons 2025: Amidst Explosion In Data Privacy And Security Litigation, Prevention And Defense Best Practices Emerge (Video)

JL

Jackson Lewis P.C.

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More