FPF ANPR Comment 10 17_submitted
1 1350 Eye Street NW, Suite 350, Washin gton, DC 20005 | 202 -768 -8950 | fpf.org October 17 , 202 5 Via Electronic Submission Acting Director Russell Vought Consumer Financial Protection Bureau 1700 G Street, NW Washington, DC 20552 Re: Comments on Personal Financial Data Rights Reconsideration (Docket No. CFPB – 202 5–0037 ) […]
Understanding the New Wave of Chatbot Legislation: California SB 243 and Beyond
As more states consider how to govern AI-powered chatbots, California’s SB 243 joins New York’s S-3008C as one of the first few enacted laws governing companion chatbots and stands out as the first to include protections tailored to minors. Signed by Governor Gavin Newsom this month, the law focuses on transparency and youth safety, requiring […]
The Draghi Dilemma: The Right and the Wrong Way to Undertake GDPR Reform
The following is a guest post to the FPF blog authored by Christopher Kuner, Visiting Fellow at the European Centre on Privacy and Cybersecurity at Maastricht University and FPF Senior Fellow. The guest post reflects the opinion of the author only and does not necessarily reflect the position or views of FPF and our stakeholder […]
FPF_CCPA Regulations Issue Brief
Comparison Chart: Risk Assessment (DPIA) Requirements in California, Colorado, and the EU California Colorado EU FPF Analysis: CA v. CO References California Consumer Privacy Act (CCPA) Cal. Civ. Code § 1798.185, subd. (a)(15) Colorado Privacy Act (CPA) Colo. Rev. Stat. § 6-1-1309 General Data Protection Regulation (GDPR) Article 35 This comparison chart focuses on the […]
Julie Brill
The State of State AI 2025 SUPPLEMENTAL
THE STATE OF STATE AI Legislative Approaches to AI in 2025 OCTOBER 2025 • SUPPLEMENTAL The Future of Privacy Forum (FPF) is a non-profit organization that serves as a catalyst for privacy leadership and scholarship, advancing principled data practices in support of emerging technologies. Learn more about FPF by visiting fpf.org . Justine Gluck Policy […]
Harriet Pearson
“Personality vs. Personalization” in AI Systems: Responsible Design and Risk Management (Part 4)
This post is the fourth and final blog post in a series on personality versus personalization in AI systems. Read Part 1 (exploring concepts), Part 2 (concrete uses and risks), and Part 3 (intersection with U.S. law). Conversational AI technologies are hyper-personalizing. Across sectors, companies are focused on offering personalized experiences that are tailored to […]
A Price to Pay: U.S. Lawmaker Efforts to Regulate Algorithmic and Data-Driven Pricing
“Algorithmic pricing,” “surveillance pricing,” “dynamic pricing”: in states across the U.S., lawmakers are introducing legislation to regulate a range of practices that use large amounts of data and algorithms to routinely inform decisions about the prices and products offered to consumers. These bills—targeting what this analysis collectively calls “data-driven pricing”—follow the Federal Trade Commission (FTC)’s […]
The “Neural Data” Goldilocks Problem: Defining “Neural Data” in U.S. State Privacy Laws
Co-authored by Chris Victory, FPF Intern As of halfway through 2025, four U.S. states have enacted laws regarding “neural data” or “neurotechnology data.” These laws, all of which amend existing state privacy laws, signify growing lawmaker interest in regulating what’s being considered a distinct, particularly sensitive kind of data: information about people’s thoughts, feelings, and […]