• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

Privacy & Cyber Regulatory Enforcement

UK Publishes Software Security Code

May 15, 2025 By Hanna Hewitt and Kelly Hagedorn

Cyber security supply chain risks are growing, and attacks on vendors and other third parties cause severe disruption to businesses. For example, in recent years we have seen many incidents that have involved threat actors compromising third-party software used by a significant number of customers. With that background, on May 7, 2025, the National Cyber […]

Filed Under: Board Governance & Cyber Risk Management, European Privacy & Cybersecurity, Privacy & Cyber Regulatory Enforcement, Uncategorized Tagged With: Cyber resilience, Supply Chain, UK

CPPA Issues Revised Draft CCPA Regulations; Votes to Initiate Public Comment Period

May 9, 2025 By Dorian Simmons

On May 1, 2025, the California Privacy Protection Agency (“CPPA”) Board convened to discuss revisions to the California Consumer Privacy Act (“CCPA”) draft regulations on cybersecurity audits, risk assessments, automatic decisionmaking technology (“ADMT”), insurance, and updates to the existing CCPA regulations. The revisions were informed by comments received by the CPPA during the formal public […]

Filed Under: Adtech & Digital Tracking, AI Cybersecurity & Privacy, Artificial Intelligence (AI), Board Governance & Cyber Risk Management, California Privacy & the CCPA, Consumer Protection/FTC, Privacy & Cyber Regulatory Enforcement Tagged With: Artificial Intelligence, Behavioral Tracking, California Consumer Privacy Act (CCPA), California Privacy Protection Agency (CPPA), California Privacy Rights Act (CPRA), Cybersecurity, Federal Trade Commission (FTC), Tracking, US State Law

Additional Cybersecurity Requirements of NYDFS Part 500 Take Effect Today

May 1, 2025 By Kim Peretti and Lance Taubin

Today, on May 1, 2025, additional enhanced cybersecurity controls required by the Second Amendment to the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (23 NYCRR Part 500) (the “Second Amendment”) take effect.  Although the Second Amendment was originally adopted in November of 2023, NYDFS established a multi-year rollout of the Second Amendment’s requirements, […]

Filed Under: Board Governance & Cyber Risk Management, Privacy & Cyber Regulatory Enforcement Tagged With: Cybersecurity, Data Protection, NYDFS, Regulations

Arkansas Enacts Children and Teens’ Online Privacy Protection Act

April 25, 2025 By Maki DePalo and Hyun Jai Oh

On April 21, 2025, Arkansas Governor Sarah Huckabee Sanders signed into law the Arkansas Children and Teens’ Online Privacy Protection Act (Act), which will become effective on July 1, 2026. It draws inspiration from the federal Children and Teens’ Online Privacy Protection Act (COPPA 2.0) and provides stronger privacy protections for Arkansas residents under thirteen […]

Filed Under: Adtech & Digital Tracking, Privacy & Cyber Regulatory Enforcement, Privacy & Cybersecurity Litigation Tagged With: Behavioral Tracking, Data Protection, Privacy, US State Law

Ninth Circuit Addresses Personal Jurisdiction Based on E-Commerce Data Collection in En Banc Decision

April 24, 2025 By Rachel Lowe, Leila Knox and Jared Allen

A recent decision by the Ninth Circuit Court of Appeals in Briskin v. Shopify, Inc., No. 22-15815, could impact the scope of personal jurisdiction over e-commerce and other entities that utilize cookies to collect personal information from visitors to the entities’ websites, particularly in California.  Although the impact of the case remains to be seen, […]

Filed Under: Adtech & Digital Tracking, California Privacy & the CCPA, Privacy & Cyber Regulatory Enforcement, Privacy & Cybersecurity Litigation Tagged With: California Consumer Privacy Act (CCPA), Class Action, Litigation, Privacy

  • « Go to Previous Page
  • Page 1
  • Interim pages omitted …
  • Page 9
  • Page 10
  • Page 11
  • Page 12
  • Page 13
  • Interim pages omitted …
  • Page 132
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


RANSOMWARE FUSION CENTER
Click here to request access

THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up


Secondary Sidebar

Categories

Recent Posts

  • Five Eyes Issues Urgent Call to Action on AI-Driven Cyber Threats
  • DOJ Settles False Claims Act Case with LOGZONE Over Cybersecurity Deficiencies
  • FTC Targets EdTech Data Practices in Final Order Following Major Student Data Breach
  • New Executive Order Promotes AI Innovation While Strengthening Cybersecurity Defenses
  • Produce the Prompts: A Court Says Expert AI Inputs Are Fair Game in Discovery
Copyright © 2026 · Alston & Bird · All Rights Reserved. Privacy.