As previously discussed on the Alston & Bird Privacy Blog, the European Commission High-Level Expert Group on Artificial Intelligence released on April 8, 2019 the final version of its Ethics Guidelines for Trustworthy AI. The Guidelines, although not legally binding, are important because they represent the first significant government-initiated effort to influence the use of […]
New York, Model Cybersecurity Law Influence Other States
In March 2017, New York’s path breaking cybersecurity law for financial services companies went into effect. Influenced by the New York law (“New York Part 500”), the National Association of Insurance Commissioners adopted an “insurance data security” model law 668 late in 2017. Today, in 2019, it is clear that model law 668 is indeed […]
Oregon Extends Data Breach Notification Obligations to Third Parties
On May 24, 2019, Oregon Governor Kate Brown signed into law Senate Bill 684 (SB 684). SB 684 amends the Oregon Consumer Identity Theft Protection Act (“OCITPA”) by extending data breach notification obligations to vendors and by broadening the definition of “personal information” to include information used to access an online account. SB684 extends breach […]
Nevada Law Gives Consumers Right to Opt Out of Sale of Personal Information
On May 29, 2019, Nevada Governor Steve Sisolak signed into law Senate Bill 220, an act that amends Nevada’s existing online privacy notice law. This amendment will make Nevada the first state to join California in granting consumers the right to opt out of the sale of their personal information. While providing similar rights to […]
Legislative Roundup: New Laws Passed in Arkansas, Oklahoma, and Maryland That Revise Cyber Security Measures
Arkansas In April, Arkansas’ Governor signed H.B. 1943 as Act 1030 expanding the scope of personal information, as used in the Personal Information Protection Act, to include “biometric data.” The Bill defines “biometric data” as “data generated by automatic measurements of an individual’s biological characteristics, including without limitation: (a) Fingerprints, (b) Faceprint, (c) A […]