Yin Tydir

About Yin Tydir

Yin Zhao Tydir is an associate with Alston & Bird’s Technology & Privacy Group. Yin focuses on various data privacy and security issues across international jurisdictions, including the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), California Privacy Rights Act (CPRA), Virginia Consumer Data Protection Act (VCDPA), Colorado Privacy Act (CPA), and the privacy and security laws of China.

[Read Bio]

FTC Targets EdTech Data Practices in Final Order Following Major Student Data Breach

June 18, 2026 By Maki DePalo, Jennifer Everett, Yin Tydir and Lili Song

On June 5, 2026, the Federal Trade Commission (“FTC”) gave final approval to a modified consent order against Illuminate Education, Inc. (“EdTech Provider”), a K-12 software vendor, settling allegations that the EdTech Provider did not adequately protect the personal data of more than 10 million students. The action — which follows a public comment period […]

The World Data Organization: A New Player in Global Data Governance – What Businesses Need to Know

April 23, 2026 By Daniel Felz and Yin Tydir

On March 30, 2026, the World Data Organization (WDO) was officially launched in Beijing. The WDO describes itself as a non-governmental, non-profit organization headquartered in Beijing, with a stated mission of “bridging the data divide, unlocking data’s value, and powering the digital economy.” The WDO is a China-headquartered effort to address a governance gap: while […]

CPPA Opens Formal Public Comment Period for CCPA Proposed Regulations

December 2, 2024 By Dorian Simmons and Yin Tydir

On November 22, 2024, the California Privacy Protection Agency (the “CPPA”) issued a Notice of Proposed Rulemaking and opened the formal comment period for its proposed regulations on updates to existing California Consumer Privacy Act (the “CCPA”) regulations, cybersecurity audits, risk assessments, automated decisionmaking technology (ADMT) and the applicability of the CCPA to insurance companies. […]

CPPA Board Advances CCPA Regulations to Formal Rulemaking; Adopts New Data Broker Regulations

November 15, 2024 By David Keating, Dorian Simmons and Yin Tydir

On November 8, 2024, the California Privacy Protection Agency (the “CPPA”) Board advanced to formal rulemaking the California Consumer Privacy Act (“CCPA”) draft regulations on cybersecurity audits, risk assessments, automated decisionmaking technology (ADMT) and insurance. The CPPA Board also adopted the California Delete Act proposed regulations, which clarify data broker registration requirements and provide definitions […]

New York Attorney General Investigates Companies for Website Tags, Publishes Guidelines on Online Tracking Technologies

August 19, 2024 By Daniel Felz, Dorian Simmons, Lance Taubin, Rachel Lowe and Yin Tydir

On July 30, 2024, the New York Attorney General Letitia James announced she had completed an investigation into the tracking technology practices of popular websites, and used this to create website privacy guides on online tracking for New York businesses and consumers. These consist of a “Business Guide” and a “Consumer Guide.” The Business Guide […]