Alston & Bird Privacy, Cyber & Data Strategy Blog

Dutch DPA Fines Taxi App €100M Over Unlawful Transfers of Personal Data to Russia, Despite Use of EU Standard Contractual Clauses

May 10, 2026 By Alice Portnoy and Wim Nauwelaerts

On April 1, 2026, the Dutch Data Protection Authority (Autoriteit Persoonsgegevens, AP) imposed a €100 million fine on MLU B.V., the Dutch operator of the Yango taxi app. The AP found that personal data of EU users was unlawfully transferred to affiliated entities in Russia, despite the formal use of the EU Standard Contractual Clauses (SCCs). The decision highlights, once again, that SCCs alone are not sufficient if they are not correctly structured and supported by effective technical and … [Read more] about Dutch DPA Fines Taxi App €100M Over Unlawful Transfers of Personal Data to Russia, Despite Use of EU Standard Contractual Clauses

One Federal Privacy Bill to Rule Them All?

April 29, 2026 By Jennifer Everett, Jennifer Pike and Sara Pullen

On April 21, 2026, Republican lawmakers on the House Energy & Commerce Committee, including Congressman Brett Guthrie and Congressman John Joyce, M.D., Leader of the Energy and Commerce Data Privacy Working Group, introduced the “Securing and … [Read more] about One Federal Privacy Bill to Rule Them All?

Your AI Chats May Be Used Against You – CEO’s ChatGPT Records Appear in Judicial Opinion Concerning $250 Million Earnout

April 28, 2026 By Daniel Felz and Christian Seremetis

On March 16, 2026, the Delaware Court of Chancery issued an opinion finding that the CEO of a major gaming company followed guidance from ChatGPT (referred to here as the “AI Tool"”) to breach a $500 million acquisition agreement. This … [Read more] about Your AI Chats May Be Used Against You – CEO’s ChatGPT Records Appear in Judicial Opinion Concerning $250 Million Earnout

Your AI Scribe May Be Taking Notes (and Plaintiffs Are Too)

April 27, 2026 By Daniel Felz, Jennifer Everett, Jennifer Pike and Sara Pullen

On April 7, 2026, several plaintiffs (“Plaintiffs”) filed a putative class action complaint in the Northern District of California against Sutter Health, Memorial Health Services Inc. and Memorial Care Medical Foundation (the “Providers”). The … [Read more] about Your AI Scribe May Be Taking Notes (and Plaintiffs Are Too)

Challenge to Utah’s App Store Accountability Act Voluntarily Dismissed Following Statutory Amendments

April 27, 2026 By Maki DePalo and Hyun Jai Oh

On April 21, 2026, the Computer & Communications Industry Association (trade association) voluntarily dismissed its constitutional challenge to the Utah App Store Accountability Act (ASAA). The dismissal follows statutory amendments enacted … [Read more] about Challenge to Utah’s App Store Accountability Act Voluntarily Dismissed Following Statutory Amendments