Privacy & Data Protection
GDPR, CCPA, state privacy laws, data breach litigation, and data governance
Congress Splits Over Section 702 Surveillance Reform as 2026 Expiration Looms
US lawmakers debate reforms to Section 702 surveillance law, highlighting sharp divides and privacy concerns as the program faces 2026 expiration. Legal, compliance teams on alert.
Alabama Enacts Business-Friendly Consumer Data Privacy Law
Alabama becomes the 21st state with a consumer data privacy law, focusing on business-friendly provisions and new compliance obligations for companies handling personal data.
Federal Judge Backs $56M Flo Health Privacy Settlement
A federal court has tentatively approved a $56 million settlement over privacy claims against Flo Health and Google for sharing sensitive menstrual app data without consent.
Mozilla unveils Thunderbolt: Open-source AI with a privacy focus
Mozilla launches Thunderbolt, an open-source AI platform for enterprises, aiming to deliver data privacy not offered by proprietary rivals like OpenAI and Microsoft.
Federal Judge Lets CNN Privacy Lawsuit Over Adtech Tracking Move Forward
A federal judge has denied CNN's attempt to dismiss a privacy class action alleging undisclosed user data sharing with Microsoft and adtech partners, keeping the CIPA suit alive.
Google Chrome Under Scrutiny for Fingerprinting Privacy Gap
Privacy experts warn Google Chrome's lack of fingerprinting protection could expose organizations to tracking risks and compliance challenges under GDPR, CCPA.
Virginia Bans Sale of Precise Geolocation Data Under VCDPA
Virginia amends its Consumer Data Protection Act to ban selling precise geolocation data, intensifying compliance obligations for data controllers and privacy professionals.
Microsoft Recall Faces Renewed Scrutiny Over AI Privacy Risks
Microsoft's Recall AI feature, reintroduced with new security, faces fresh criticism as researchers expose ongoing privacy and cybersecurity vulnerabilities.
Federal Data Privacy Bill Eyes Nationwide Standard, Faces Uphill Path
A new federal data privacy bill introduced in Congress on April 14 could preempt state laws, but legislative hurdles mean its future remains uncertain.
Lawsuits Surge Over Faulty Cookie Banners and Wiretapping Claims
Over 1,000 lawsuits allege wiretapping violations from faulty cookie consent banners. Legal teams must watch for pitfalls as regulators target opt-out compliance.
FTC Sets Enforcement Priorities in 2026–2030 Strategic Plan
The FTC released its 2026–2030 Strategic Plan, outlining enforcement and operational goals with new focus on children's online safety and fair competition.
Nebraska and Maryland Advance AI Laws Targeting Privacy, Chatbots, and Pricing
Nebraska and Maryland pass new AI laws impacting data privacy, chatbot safety, and consumer protection. Legal, tech, and in-house counsel must prepare for regulatory changes by April 2026.
Italian Regulator Fines Bakeca for Exposing Phone Numbers in Sex Work Ads
Italy's Garante fined Bakeca S.r.l. for publishing sex work ads with personal phone numbers without consent, signaling stricter platform compliance expectations under EU data law.
Thousands Barred at EU Borders by Automated Entry/Exit System
EU's automated Entry/Exit System leads to over 24,000 entry refusals and longer airport waits, raising legal risks for travelers and compliance concerns for legal teams.
India's New Data Law: Hurdles for Legal Teams vs EU's GDPR
India’s new digital data law, the DPDP Act, creates tough compliance hurdles for legal teams, diverging from the GDPR in scope, penalties, and implementation timelines.
Meta’s Muse Spark AI Raises Health Data Privacy and Liability Flags
Meta’s Muse Spark AI requests raw health data and gives inaccurate advice, spurring privacy and liability concerns under GDPR, HIPAA, and regulatory scrutiny in US/EU.
China Moves to Regulate AI Virtual Humans, Protect Personality Rights
China's draft regulations target AI digital humans, mandating labeling and consent to safeguard personality rights and curb misuse. Legal professionals must track this evolving framework.
Australia Releases Draft Children’s Privacy Code With Strict Consent Rules
Australia published a draft Children’s Online Privacy Code with tougher consent, age, and data rules. Public input is open until June 5, 2026. Legal and compliance teams should prepare.
Federal Judge Sends Wiretap Dispute Back to Pennsylvania State Court
A Pennsylvania federal court remanded wiretap and privacy claims to state court, clarifying forum options for legal teams. Recent state rulings also bolster defense arguments.
COPPA Rewrites: CLE to Guide Legal Teams on New Parental Consent Rules
Greenberg Traurig hosts a CLE on April 28, 2026, dissecting COPPA's tougher parental consent, new state laws, and recent FTC enforcement for children’s privacy online.