Keypoint: In only its second public enforcement settlement, the California Attorney General announced a $375,000 fine along with injunctive relief.

On February 21, 2024, the California Attorney General announced that it had reached a settlement with a company, resolving allegations that the company violated the California Consumer Privacy Act (CCPA) and California Online Privacy Protection Act (CalOPPA). This is only the second time the Attorney General’s office has publicly announced a settlement. In August 2022, the office announced a settlement over allegations that a company failed to disclose that it was selling consumers’ personal information and failed to process opt-out requests via user-enabled global privacy controls.

In announcing the enforcement action, Attorney General Bonta stated “I hope today’s settlement serves as a wakeup call to businesses: The CCPA has been in effect for over four years now, and businesses must comply with this important privacy law. Violations cannot be cured, and my office will hold businesses accountable if they sell data without protecting consumers’ rights.”

In the below article we provide a brief overview of the settlement.

Keypoint: In our first regular update on the happenings of US artificial intelligence law, we provide an overview of proposed state AI-related private sector bills.

Below is our first regular update on the status of US artificial intelligence laws. In this update, we provide an overview of proposed state artificial intelligence bills impacting the private sector and links to recent firm articles on various AI-related issues.

Keypoint: Based on the appellate court’s ruling, the new CCPA regulations are enforceable immediately instead of on March 29, 2024.

On February 9, 2024, a three-judge panel of the California Court of Appeals issued an order overruling a California trial court decision and holding that the new CCPA regulations approved by the Office of Administrative

For the second year in a row, we are releasing our State Biometric Privacy Law Tracker. The tracker, which compliments our State Privacy Law Tracker and State Children’s Privacy Law Tracker, identifies the states that are considering biometric privacy legislation and provides helpful links to the bills. Bookmark the page and use it

Keypoint: Courts resolved six motions to dismiss wiretapping claims based on session replay technology in January, while two VPPA decisions highlight balance struck by courts. A new privacy litigation theory based on “pen registries” has emerged as well.

Welcome to the tenth installment in our monthly data privacy litigation report. We prepare these reports to provide updates on how courts in the United States have handled emerging data privacy trends. In this post, we examine one chat-based wiretapping claim and six session replay technology (SRT) based wiretapping claims. These decisions demonstrate how courts are still inconsistent in how they resolve wiretapping claims, even in cases where the plaintiff and SRT vendor are the same. We also look at two VPPA decisions that reflect the balance courts have struck in resolving VPPA decisions. Finally, we look at a new emerging trend based on “pen registry” technology (which is commonly associated with logging what phone numbers a monitored phone dials).

There are many courts currently handling data privacy cases across the nation. Although illustrative, this update is not intended to be exhaustive. If there is another area of data privacy litigation about which you would like to know more, please reach out. The contents provided below are time-sensitive and subject to change. If you are not already subscribed to our blog, consider doing so to stay updated. If you are interested in tracking developments between blog posts, consider following us on LinkedIn.

Keypoint: The 2024 state legislative session picks up where the 2023 session left off with lawmakers already pursuing consumer, children’s, biometric, and consumer health data privacy bills as well as data broker bills.

We are back for our fifth year of tracking proposed state privacy legislation and fourth year of providing weekly updates. As in past years, we will track proposed consumer data privacy legislation through our weekly updates and State Privacy Law Tracker map. We also already released our State Children’s Privacy Law Tracker map and summary of the status of proposed bills.

Last year, we also tracked proposed biometric, consumer health, data broker, algorithmic discrimination, and automated employment decision tools bills. This year, we will continue to track all of those bills but we are changing our format to bring you even more useful information. Here’s what is changing:

First, instead of providing historical information in a long blog post, we will provide the same information on bill tracking charts. This will hopefully streamline and consolidate the information into a more digestible format.

Second, in the coming weeks, we will make available expanded bill tracking charts to clients through a new client portal. Stay tuned for more information.

Finally, with the rapidly expanding number of algorithmic discrimination bills being filed, we are creating a separate update email to track those bills as well as other AI-related bills and regulations. We also will provide a new tracker map for certain types of AI bills.

We hope that these alerts and maps combined with our monthly privacy litigation updates will provide you with the best all-around coverage of emerging US privacy law.

Now to our first weekly update. As always, the contents provided below are time-sensitive and subject to change. If you are not already subscribed to our blog, consider doing so to stay updated.