Search results

[…] landmark legislation. Key themes include notice and consent, children’s data, data breach notifications, and the contentious possible reintroduction of data localization measures. The discussion will also unpack new concepts such as “significant data fiduciaries” and “consent managers.” Most importantly, the session will cover compliance challenges and how companies can navigate this transformative privacy regime. […]

[…] Online Data Privacy Act embraces substantive data minimization rules and takes effect this October. It joins laws like Washington’s My Health My Data (MHMD) law and the New York Child Protection Act (NYCPA) in embracing this new approach to data minimization, potentially raising considerable compliance challenges for companies engaged in any aspect of digital […]

[…] finalized pursuant to Executive Order 14117 (Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern), as well as the new national legal framework established by PADFAA (Protecting Americans’ Data from Foreign Adversaries Act) aimed at addressing national security risks of sensitive personal and U.S. government-related data. […]

[…] Washington, D.C. Enforcement of Privacy Laws: Trends and Takeaways Discussion Leads: Jameson Spivack and Bailey Sanchez SESSION DESCRIPTION With lingering uncertainty about federal regulators’ priorities in the new administration, agencies such as the FTC are likely to take a different enforcement approach than the Commission has pursued in the past four years. What will […]

[…] Washington, D.C. CONTINUED: Sovereignty, Localization, and Related Challenges to Effective Cybersecurity Discussion Leads: John Verdi and Jocelyn Aqua 1. Strategic response and governance: How are organizations managing new national cybersecurity obligations, is there cross-enterprise coordination and engagement– new programs, existing cyber and privacy governance structures ? How are companies prioritizing between local compliance, operational […]

[…] global AI regulatory conversation as legislators begin to draft, enact, and implement omnibus AI laws. For example, the EU AI Act implementation is reaching full speed, and new AI laws are either being adopted (South Korea), quickly advancing (Brazil), or being prepared (Japan and China). At the same time, some have suggested that fast-moving […]

[…] protections for consumer health data. New Y ork passed, but has not yet enacted, a broad bill similar to Washington State’ s My Health My Data Act. Virginia updated its Consumer Protection Act to prohibit obtaining, disclosing, selling, or disseminating any personally identifiable reproductive or sexual health information without a consumer’ s consent. How […]

[…] data protection leaders have had to strike a balance between calls for AI innovation and data privacy principles. This session will explore how organizations are responding to new challenges and how leaders are dealing with a new broader governance and digital responsibility agenda. 5–8 KEY DISCUSSION QUESTIONS 1. How has your organization’s approach to […]

[…] among Brazilian users.  In this context, the study emphasizes that while generative AI systems can produce multiple benefits, it is necessary to assess their potential for creating new privacy risks and exacerbating existing ones. For the ANPD, “the generative approach is distinct from other artificial intelligence as it possesses the ability to generate content […]

[…] to them upon request. The CFPB undertook a lengthy and extended process to issue these rules, and engaged with numerous stakeholders and closely monitored market developments to promote consumer interests, innovation, and competition. Ms. Strickland’s testimony lists a number of valuable aspects to the rule, including its treatment of consumer controls, screen scraping, security […]