United States: Data Protection

Subscribe

Privacy law and privacy regulation thought leadership, articles, podcasts, videos and webinars from expert sources across the legal world. Explore insights covering topics including GDPR, data protection, data privacy, and privacy protection.

What Do Employers Need To Know About Risk Assessments Under The California Consumer Privacy Act? (Video)

California employers face new compliance obligations under the CCPA requiring detailed risk assessments for routine HR data processing activities. From GPS tracking of fleet drivers to AI-assisted employment decisions, companies must now document and evaluate privacy risks across six specific processing categories. This analysis outlines a seven-step framework to help covered employers navigate these requirements and prepare for the January 2026 effective date.

United States Employment

LM

Littler Mendelson

State AG News: Data Privacy, Pricing, Environmental Regulation (June 18-24, 2026)

State Attorneys General across the country are taking decisive action on consumer protection, data privacy, and illegal gambling operations. From Arkansas hosting a fraud prevention summit to Kentucky cracking down on unlicensed prediction markets, these enforcement actions reveal how state AGs are addressing emerging threats to consumers in 2026.

United States Consumer

CM

Crowell & Moring LLP

Dechert Cyber Bits – Issue 98 – June 25, 2026

On June 2, 2026, Connecticut signed into law Public Act 26-15, the Connecticut Artificial Intelligence Responsibility and Transparency Act (“the CART Act”), making Connecticut the latest state to enact a comprehensive artificial intelligence...

United States Privacy

D

Dechert

State Attorneys General Signal Aggressive Enforcement Agenda

State attorneys general are intensifying enforcement around algorithmic pricing, children's online safety, and consumer protection, with new priorities emerging from the 2026 NAAG Spring Conference.

United States Consumer

HK

Holland & Knight

Vermont Amends Data Broker Law

United States Privacy

SM

Sheppard, Mullin, Richter & Hampton LLP

Open Banking Regulation In 2026: Federal Regulation Resurfaces As States Bring Data Sharing Into Focus

United States Finance

BS

Ballard Spahr LLP

Ankura CTIX FLASH Update – June 24, 2026

United States Technology

AC

Ankura Consulting Group LLC

Green Mountain State Joins In State Privacy Effective 2028

United States Privacy

JL

Jackson Lewis P.C.

Back On The App-eal: Fifth Circuit Revives Texas App Store Law

United States Media & IT

SM

Sheppard, Mullin, Richter & Hampton LLP

The State Of AI Policy, Privacy, And Compliance In The United States

United States Privacy

TS

Taft Stettinius & Hollister

Vermont Enacts Comprehensive Consumer Privacy Law

United States Privacy

MB

Mayer Brown

We Get Privacy — Episode 18: Preparing For The CCPA’s New Risk Assessment Rules (Video)

United States Privacy

JL

Jackson Lewis P.C.

Top Considerations For Setting Up Direct-to-Consumer Laboratory Testing Services

United States Healthcare

GP

Goodwin Procter LLP

Louisiana Enacts Nation’s Twenty-Second State Comprehensive Privacy Law

United States Privacy

W

WilmerHale

When The Microphone Lives On Your Face: Smart Glasses In The Workplace And The Clinic

United States Employment

DW

Dickinson Wright PLLC

Federal Court Vacates $100K H-1B Payment Requirement

United States Immigration

FL

Fennemore

USTR Recommends New Tariffs Following Forced Labor Investigations

United States International

BI

Buchanan Ingersoll & Rooney PC

AI Notetakers: Productivity Tool Or Emerging Legal Risk?

United States Technology

MB

Mayer Brown

Court Rejects Chapter 93A Claim For Lack Of Massachusetts Nexus In Kahoot! v. CPDLive

United States Litigation

GT

Greenberg Traurig, LLP

Delaware Joins The "Fun,” Amends State Consumer Privacy Law

On June 16, 2026, the Delaware State Legislature passed House Bill (HB) No. 380. If signed into law, the bill will amend the Delaware Personal Data Privacy Act (DPDPA).

United States Privacy

SR

McDermott Will & Schulte

Vermont Enacts Comprehensive Privacy Law

Vermont has enacted comprehensive privacy legislation that introduces several notable requirements, including mandatory AI training disclosures, expanded protections for minors under 18, and unique restrictions on access request responses.

United States Privacy

FK

Frankfurt Kurnit Klein & Selz

Contract Architecture — Core AI Clauses For Vendor Agreements

AI vendor contracts require specialized provisions beyond standard SaaS agreements to address unique risks around data use, model training, and intellectual property. This article examines the essential contractual clauses that protect businesses when engaging AI vendors, from precise definitions of AI services and data categories to ownership rights, confidentiality protections, and AI-specific security safeguards.

United States Technology

Wa

Ward and Smith, P.A.

We Get Privacy — Episode 18: Preparing For The CCPA’s New Risk Assessment Rules (Video)

CCPA requirements are turning employers’ everyday data activity into potential compliance exposure. In this episode, Jackson Lewis Privacy, AI and Cybersecurity co-leaders Joe Lazzarotti and Damon Silver discuss...

United States Privacy

JL

Jackson Lewis P.C.

Green Mountains, Red Flags: Vermont’s New Privacy Law Casts A Wide Net

United States Privacy

SH

Shook, Hardy & Bacon

Connecticut Puts AI On Notice: Transparency And More

United States Employment

SM

Sheppard, Mullin, Richter & Hampton LLP

New Louisiana Data Privacy Act Set To Take Effect In 2027

United States Privacy

JL

Jackson Lewis P.C.

Updating New York’s Search Warrant Legislation For A Modern Era

United States Criminal

SG

Selendy Gay

Eli Lilly’s 340B Claims-Data Policy: What Covered Entities Need To Know

United States Healthcare

BI

Buchanan Ingersoll & Rooney PC

The Duane Morris Class Action Defense Blog’s 700th Post!

United States Litigation

DM

Duane Morris LLP

Vermont Strengthens Its Data Broker Law

United States Privacy

FK

Frankfurt Kurnit Klein & Selz

The Next Platform Shift Is Wearable. Is Your Privacy Program Ready?

United States Privacy

DW

Dickinson Wright PLLC

Pre-Contract Due Diligence And Operational Safeguards For AI Vendor Engagements

United States Technology

Wa

Ward and Smith, P.A.

South Carolina’s Audit Obligations Under The Age-Appropriate Design Code Act

United States Privacy

SM

Sheppard, Mullin, Richter & Hampton LLP

Vermont Strengthens Its Data Broker Law

Vermont has significantly strengthened its data broker registration law with amendments that expand the definition of covered businesses, impose know-your-customer obligations, and introduce substantial penalties including...

United States Privacy

FK

Frankfurt Kurnit Klein & Selz

The Next Platform Shift Is Wearable. Is Your Privacy Program Ready?

AI-enabled smart glasses and wearable devices are rapidly moving from experimental technology to everyday consumer products, raising critical questions about ambient surveillance, data collection, and architectural privacy failures.

United States Privacy

DW

Dickinson Wright PLLC

Pre-Contract Due Diligence And Operational Safeguards For AI Vendor Engagements

Organizations engaging AI vendors must conduct structured due diligence across data inventory, model governance, security programs, and subcontractor ecosystems before negotiating contract terms. This comprehensive pre-contract assessment maps vendor capabilities and risks to inform the specific protections, warranties, and operational controls that should be embedded in AI vendor agreements.

United States Technology

Wa

Ward and Smith, P.A.

South Carolina’s Audit Obligations Under The Age-Appropriate Design Code Act

South Carolina is one of many states that have passed laws similar to the UK’s age-appropriate design code. Like others, the law is intended to regulate design features viewed as harmful to children.

United States Privacy

SM

Sheppard, Mullin, Richter & Hampton LLP

The Privacy Playbook: Navigating CCPA, GDPR + Risk Assessments (Podcast)

United States Privacy

JL

Jackson Lewis P.C.

Illinois Employers May Expect Significantly Reduced Liability In BIPA Lawsuits

Illinois' Biometric Information Privacy Act has undergone significant changes following the Cothron v. White Castle decision, which initially allowed damages on a per-scan basis and created potential liability in the billions. The recent Seventh Circuit ruling in Clay v. Union Pacific Railroad Co. fundamentally reshapes the damages framework by confirming that the 2024 amendment applies retroactively, limiting recovery to a per-person basis rather than per-scan.

United States Employment

MF

Masuda, Funai, Eifert & Mitchell, Ltd.

Connecticut Adopts Far-Reaching Amendments To Its Comprehensive Privacy Law

Connecticut is reshaping the national privacy landscape with its May 27, 2026 adoption of far-reaching amendments to its existing comprehensive privacy law. When a state enacts or revises a privacy law, it influences the shape and direction of U.S. privacy law because other states consider, and sometimes follow, the policy decisions embodied by the newly enacted or revised law.

United States Privacy

M

Mintz

Louisiana Joins The Second Line Of States With Comprehensive Privacy Laws

The Louisiana Data Privacy Act (LDPA) takes effect on January 1, 2027, and applies to businesses meeting specific thresholds for annual gross revenue, consumer data volume, or revenue derived from selling personal data.

United States Privacy

BB

Bass, Berry & Sims

The SECURE Data Act: A Federal Privacy Framework Moves Forward

The SECURE Data Act proposes a uniform federal privacy framework that would broadly preempt existing state consumer privacy laws, establishing a single national standard for data protection.

United States Privacy

FH

Finnegan, Henderson, Farabow, Garrett & Dunner, LLP

Labor & Employment World Cup 2026: Team Portugal Heads To Texas

Worldwide Employment

LM

Littler Mendelson

The TAKE IT DOWN Act Is Now In Full Effect: What Platforms Need To Know

United States Government

FH

Finnegan, Henderson, Farabow, Garrett & Dunner, LLP

Republican Data Privacy Bills Could Impact Employers, Benefit Advisors

United States Privacy

HB

Hall Benefits Law

FTC OkCupid Settlement: When Privacy Policies Don’t Match Company Practices

United States Privacy

Gouchev Law PLLC

The General Services Administration's LLM Rewrite Shifts The Problem To Implementation

United States Government

JW

Jones Walker

Health-e Law Episode 26, Part 2 | AI Adoption In Healthcare: Opportunities, Risks And The Future Of Care Delivery (Podcast)

United States Healthcare

SM

Sheppard, Mullin, Richter & Hampton LLP

A Dormant California License Plate Reader Law Is Driving Class Actions Against Retailers, Malls, And Property Owners

United States Privacy

FK

Frankfurt Kurnit Klein & Selz

Louisiana Enacts Comprehensive Privacy Law

United States Privacy

FK

Frankfurt Kurnit Klein & Selz

California’s Risk Assessment And Cybersecurity Audit Certification Requirements: What Companies Need To Know Now

United States Privacy

SA

Skadden Arps Slate Meagher & Flom

Practical Realities Of AI In International IP Arbitration

United States Litigation

B

Bracewell

Old Statutes, New Targets: How Plaintiffs Are Using Existing Privacy And Consumer Laws Against AI Companies

United States Litigation

ZwillGen PLLC

Not Going To California – Wiretap Claims Dismissed

United States Privacy

KM

Klein Moynihan Turco LLP

The Bayou Twist: Louisiana’s $25 Million Question

United States Privacy

SH

Shook, Hardy & Bacon

Labor & Employment World Cup 2026: Team Belgium Ready For Play In Seattle

United States Employment

LM

Littler Mendelson

Employer May Pursue Multiple Claims Against Competitor For Raiding Employees And Customers

United States Employment

PR

Proskauer Rose LLP

See more

Latest Videos

See more

What Do Employers Need To Know About Risk Assessments Under The California Consumer Privacy Act? (Video)

LM

Littler Mendelson

The Class Action Weekly Wire – Episode 149: Key Class Action Trends In The Insurance Industry (Video)

DM

Duane Morris LLP

When AI Crosses The Line: Deepfakes, Harassment, And Employer Liability (Video)

LS

Lowenstein Sandler

Consumer Counterpoint: Episode 17 – Genetic Information Privacy Act (Video)

SS

Seyfarth Shaw LLP

We Get Privacy — Episode 16: Unseen Risks — Smart Glasses And Wearable Tech In The Workplace (Video)

JL

Jackson Lewis P.C.

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More