United States: Data Protection

Subscribe
Privacy law and privacy regulation thought leadership, articles, podcasts, videos and webinars from expert sources across the legal world. Explore insights covering topics including GDPR, data protection, data privacy, and privacy protection.
Article
Health-e Law Episode 27 | Emerging Cybersecurity Threats In Healthcare With Erik Pupo (Podcast)
In this episode of Health-e Law, partner Sara Shanti and Erik Pupo from Guidehouse explore the critical intersection of healthcare data sharing and cybersecurity vulnerabilities. As healthcare systems embrace greater connectivity through initiatives like TEFCA, they face mounting cybersecurity challenges that demand proactive strategies and robust protection measures.
United States Healthcare
SM
Sheppard, Mullin, Richter & Hampton LLP
Article
New Jersey Enacts New Data Broker Registration Requirements And Sensitive Data Restrictions
New Jersey has enacted one of the nation's most stringent data broker laws, requiring entities that sell consumer information to register with the state and pay annual fees ranging from $5,000 to $1.5 million. The legislation also prohibits the sale of sensitive data by virtually any entity, regardless of consumer consent, raising significant compliance challenges and potential constitutional questions for businesses operating in the commercial data marketplace.
United States Privacy
ZwillGen PLLC
Article
It Reads Your Email, Files Your Claims, And Never Asks Permission — The Privacy Law Of AI Agents
Sara Jodka explores the emerging privacy challenges posed by autonomous AI agents that access sensitive business data and operate across multiple regulatory frameworks. The article examines how these AI systems navigate complex compliance requirements while handling tasks like email processing and claims filing. What regulatory gaps exist when AI agents cross industry boundaries, and how should businesses adapt their privacy practices?
United States Privacy
DW
Dickinson Wright PLLC
Article
Internalizing AI Governance: The Practical Thinking So Far
As artificial intelligence tools proliferate across organizations, companies face mounting regulatory pressures and legal risks while seeking to harness AI's productivity benefits. How can businesses move beyond static governance policies to create practical, repeatable processes that actually guide AI deployment decisions? This framework offers actionable strategies for building living AI governance systems that balance innovation with risk management.
United States Privacy
TS
Taft Stettinius & Hollister
Article
Vermont And New Jersey Data Broker Laws Add To Expanding State Privacy Patchwork
Vermont and New Jersey have enacted sweeping data broker legislation that imposes registration requirements, disclosure obligations, and substantial penalties on businesses that collect and sell consumer personal data without direct relationships. How will these new frameworks reshape the data brokerage industry and what immediate compliance steps must affected companies take?
United States Privacy
DL
Davis+Gilbert LLP
Article
New Obstacles For Healthcare: Federal And State National Security Regulations Increasingly Target Health Data
Federal and state regulations are creating a complex, multi-layered framework for protecting American health and genomic data, forcing healthcare organizations to navigate overlapping compliance obligations. Life sciences companies, clinical laboratories, telehealth platforms, and consumer health brands now face the challenge of determining which regulations apply to their operations and how to effectively allocate compliance resources across this evolving landscape.
United States Government
KD
Kelley Drye & Warren LLP
Article
Help Wanted! CIPA Law Reform On The Horizon?
Senate Bill 690 proposes significant amendments to California's Invasion of Privacy Act (CIPA), specifically targeting the law's application to website tracking technologies and pen register/trap and trace devices. The legislation aims to curtail what sponsors describe as abusive litigation by exempting commercial website tracking tools from CIPA's reach and eliminating private rights of action for certain violations. With a two-year retroactive provision, the bill represents a major shift in how California
United States Privacy
KM
Klein Moynihan Turco LLP
Article
New Jersey Bans The Sale Of Sensitive Data And Creates A New Data Broker Registry
New Jersey has enacted groundbreaking legislation that prohibits the sale of sensitive consumer data and establishes a comprehensive public registry for data brokers and data collectors. The law introduces strict civil penalties of $50,000 per record for violations and creates a novel "data collector" category that extends regulatory reach to companies with direct consumer relationships who share data with brokers. With tiered annual registration fees reaching up to $1.5 million and immediate enforcement pr
United States Privacy
SR
McDermott Will & Schulte
Article
The Class Action Weekly Wire – Episode 155: Mid-Year Class Action Settlement Review & Analysis (Podcast)
Duane Morris partners Jerry Maatman and Jennifer Riley analyze unprecedented class action settlement data from the first half of 2026, revealing over $53 billion in settlements and examining the sectors driving this historic surge in corporate litigation exposure. The discussion explores billion-dollar landmark cases, emerging trends in antitrust and data privacy, and what these patterns signal for the remainder of the year.
United States Litigation
DM
Duane Morris LLP
Article
Privacy Lawsuits And Demands: Definitely Not Just For Lawyers (Thanks, AI)
Generative AI is transforming privacy litigation economics by enabling pro se litigants to mass-produce lawsuits targeting common website technologies like cookies, analytics, and tracking tools. These AI-assisted plaintiffs can replicate existing legal theories without needing clients or legal representation, fundamentally changing the cost-benefit calculus for businesses facing privacy claims. Understanding your website's technology stack and litigation exposure has become critical as this new wave of aut
United States Litigation
ZwillGen PLLC
Article
The Amended Children’s Online Privacy Protection Act (COPPA) Regulations: What Your Business Needs To Know
The Federal Trade Commission has finalized major amendments to the Children's Online Privacy Protection Act (COPPA), introducing stricter requirements for businesses that collect data from children under 13. With the April 22, 2026 compliance deadline now passed, companies must navigate expanded definitions of personal information, enhanced notice requirements, new consent mechanisms, and mandatory data retention policies that fundamentally reshape how online services interact with young users.
United States Privacy
FH
Foley Hoag LLP
See more