Menu
Our practice focus
Our industry focus
Other industries
Legal Insights that help shape strategy and drive compliance.
Privacy World
Connecticut Attorney General William Tong recently issued an advisory memorandum (“Advisory”) to all “State Officials, Agencies and Concerned Parties” about how existing Connecticut laws apply to artificial intelligence (“AI”). In the Advisory, Attorney General Tong hints at enforcement priorities and offers businesses a roadmap for compliance in describing how Connecticut’s civil rights, privacy and data...
April 2026 | Blog
On March 20, 2026, Oklahoma Governor Stitt signed the first new comprehensive state privacy law of 2026. The “Act relating to data privacy” is in force on January 1, 2027. In this post, we compare the new Oklahoma privacy law to the other 20 state consumer privacy laws already in force below. HOW THE OKLAHOMA...
March 2026 | Blog
Following unanimous votes by the California legislature and signature by the Governor, California enacted an Age-Appropriate Design Code Act (CAADCA) in September 2022 (codified at CA Civil Code Section 1798.99.28-32), as a measure purportedly “aimed at protecting the wellbeing, data, and privacy of children [under 18] using online platforms.” Industry group NetChoice soon turned to...
Privacy compliance has entered a new phase—one defined not only by high-profile enforcement actions but by the growing expectation that organizations implement and maintain mature information governance programs capable of validating true, system-level technical compliance rather than merely projecting the appearance of it. A spate of recent California enforcement actions makes clear that companies must...
Publication
December 2025 | Americas
The 2025 legislative cycle marked a pivotal year in US privacy law, defined not only by continued nationwide expansion into Artificial Intelligence (AI) governance, children’s and teen privacy and online safety, as well as emerging data categories, but by a major restructuring of California’s privacy enforcement infrastructure. California’s introduction of the Delete Request and Opt-out Platform...
December 2025 | Blog
We have previously covered the recent changes to the California Consumer Privacy Act (CCPA) regulations, and summarized the changes companies need to make to be 2026-ready under them and other state consumer privacy laws that have recently or will soon become effective. In a recent guidance document, CalPrivacy highlights “seven things businesses should know and prepare for,”...
November 2025 | Blog
The California Consumer Privacy Act (CCPA) requires that privacy notices be updated annually, and that the detailed disclosures it proscribes be in those notices reflect the 12-month period prior to the effective (posting) date. Interestingly, failure to make annual updates was one of several alleged CCPA violations that resulted in a recent $1.35 Million administrative...
October 2025 | Blog
On September 25, the California Privacy Protection Agency (CPPA) Board advanced OAL-approved updates to the California Consumer Privacy Act (CCPA), the process of which we covered in detail here and here, that include long-awaited regulations on cybersecurity audits, risk assessments, and automated decision-making technology (ADMT). The CPPA Board also approved a $1.35 Million settlement with Tractor...
Late yesterday day afternoon, Colorado’s House of Representatives passed, in a 48-14 vote, a bill that delays the in-force date for Colorado’s landmark 2024 AI law (CO Rev Stat §§ 6-1-1701 — 6-1-1707 (COAIA)) until June 30, 2026. After first voting in favor of an amendment delaying the in-force date until October 1, 2026, the...
August 2025 | Blog
Inside AI Policy reports that a survey of U.S. office workers indicates that across industries approximately half of survey respondents said that they do or would use AI contrary to company policy to make their job easier, including 42% of security sector workers. The study published on August 20, 2025 by CalypsoAI, found that while...
On October 6, 2025, the “Preventing Access to U.S. Sensitive Personal Data and Government Related Data by Countries or Concern or Covered Persons” Rule released by the U.S. Department of Justice (DOJ) (DOJ Rule) will be fully in force. Is your organization ready? During the first half of 2025, numerous clients reached out to find...
Query:{"PerPage":12,"Page":1,"Keyword":null,"FilterGroups":[{"FilterType":2,"FilterValues":["077c4c91c4fa4651b2cdec14f5e6d0f8 "],"HideFilter":false}],"DocumentTypes":["insightsItemText","blogPost"],"SortField":{"FieldName":"itemDateSortDesc","SortType":5},"SortDescending":true,"FutureItems":null,"Exclude":null,"Fields":["nodeName","titleOverride","excerpt","pageDescription","searchKeywords","nameSynonyms","lastNameNormalized"],"ParentPageId":null,"ParentPageIds":null,"OverrideHideFromSearch":false};
{ Category: content, LuceneQuery: +(__NodeTypeAlias:insightsitemtext __NodeTypeAlias:blogpost) -(+hideFromSearch:"1") +(relatedPeople:077c4c91c4fa4651b2cdec14f5e6d0f8) }
Insights at the Intersection of Law and AI.
Comprehensive regulatory framework for investment security and national interests.
Helping organizations align purpose with performance through practical ESG insights and solutions.
Explore our sector-specific legal blogs, where we regularly share insights and updates on the latest legal developments.
Subscribe to our legal insights directly to your inbox.
