The California Privacy Protection Agency (CPPA) Board met on July 24, 2025, and advanced several key initiatives with direct implications for businesses operating in California.
The meeting focused on finalizing regulations pertaining to automated decision-making, risk assessments, and cybersecurity audits; advancing the California Delete Act’s Delete Request and Opt-Out Platform (DROP) rulemaking applicable to data
On the heels of the California Attorney General’s largest California Consumer Privacy Act-related settlement yet, the Connecticut Office of the Attorney General has announced its first public enforcement action under the Connecticut Data Privacy Act (CTDPA).
Continue Reading Connecticut AG Fines Ticket Marketplace in State’s First CTDPA Privacy Law Enforcement Action
Greenberg Traurig Shareholders Chris Dodrill and Mikaela Shaw Masoudpour will present the CLE webinar, “Illinois Genetic Information Privacy Act (GIPA) Essentials: Compliance Strategies and Litigation Insights,” on Wednesday, April 23 at 1:00 p.m. EDT.
Continue Reading April 23 EVENT | Illinois Genetic Information Privacy Act (GIPA) Essentials: Compliance Strategies and Litigation Insights
GT Shareholder Darren Abernethy is featured on an episode of The Privacy Advisor Podcast, hosted by the International Association of Privacy Professionals (IAPP).
Amid the rapidly evolving landscape of U.S. state privacy laws, Darren discusses privacy litigation trends, shedding light on novel theories emerging from the plaintiff’s bar including issues related to pen registers, chatbots
Some 18 months on from the failed American Data Privacy and Protection Act (ADPPA), there is another proposed federal privacy law. House and Senate committee leads released a new proposal for the bipartisan American Privacy Records Act (APRA) on April 7. There is a lot of discussion around this bill, which is subject to change
On February 28 President Biden issued an Executive Order “to protect Americans’ sensitive personal data from exploitation by countries of concern.” (EO 14117, “Preventing Access to Americans’ Bulk Sensitive Personal Data by Countries of Concern.”)
On March 5 the National Security Division of the Department of Justice (DOJ) published an advanced notice of proposed rulemaking
Greenberg Traurig Data Privacy & Cybersecurity attorneys Gretchen Ramos, Darren Abernethy, and Zachary Schapiro will present the CLE webinar, “U.S. Consumer Health Data Privacy Laws in 2024: Washington’s My Health My Data Act and Related State and Federal Developments,” Tuesday, Feb. 27, 2024. State legislatures and the Federal Trade Commission have begun
Probably not.
Most modern state privacy laws attempt to carve out organizations that process de minimis amounts of personal information, or whose business activities do not monetize data. While the specific thresholds differ between states, many of the new statutes only apply to organizations that control or process personal information relating to at least 100,000
Following on the heels of a California Superior Court’s last minute ruling that stayed enforcement of the revised California Consumer Privacy Act (CCPA) regulations, as previously discussed on this blog, California’s data privacy regulators have responded in ways that confirm they are more committed than ever to holding businesses accountable for alleged violations