Michael Young

About Michael Young

Michael Young’s practice focuses primarily on data privacy and security as a member of the firm’s Technology, Privacy & IP Transactions Group.

[Read Bio]

FTC Announces New Cybersecurity Requirements, Privacy Rule Update

April 3, 2019 By Michael Young

In March, the Federal Trade Commission announced proposed updates to two key privacy and security regulations, the Safeguards Rule and Privacy Rule. Both rules implement regulations under the federal Gramm Leach Bliley Act, and the FTC seeks comments for both. The FTC’s proposed update to the Safeguards Rule would impose a number of information security […]

The FTC Decides to Uphold the CAN-SPAM Rule Without Any Changes

February 25, 2019 By Alexandra Rajic and Michael Young

On February 12, 2019, the Federal Trade Commission announced that it completed its first review of the CAN-SPAM Rule, a rule governing commercial e-mail. Based on its review, the FTC announced its decision, available here, to “retain the [R]ule in its present form.” The FTC reviewed public comments and proposals in making its determination. According […]

Illinois Supreme Court Empowers Claims Under Biometric Information Privacy Act

January 28, 2019 By Michael Young

In an opinion issued Friday, the Illinois Supreme Court handed a potentially significant victory to plaintiffs advancing claims under Illinois’ Biometric Information Privacy Act and seeking statutory damages under that law. The Court held that plaintiffs do not need to assert injury or harm outside of a relevant violation of the statute itself in order […]

California Legislature Amends CCPA

September 4, 2018 By Michael Young

Last Friday, the California Senate and Assembly passed SB-1121, amending the California Consumer Privacy Act (“CCPA”) as enacted in June. We previously issued an advisory following the June enactment, and will host a webinar discussing the law (as now amended) on September 12. This blog post highlights some of the key amendments to the CCPA. […]

CFPB Changes Annual Notice Requirement Under Reg. P

August 14, 2018 By Michael Young

On Friday, the Consumer Financial Protection Bureau announced its “finalized amendments” to Regulation P, an implementing regulation of the federal financial Gramm Leach Bliley Act. Regulation P governs the provision of privacy notices for covered financial institutions. In response to legislation passed by Congress in late 2015, the final rule issued Friday permits financial institutions […]