Privacy & Cyber Regulatory Enforcement

New York Attorney General Investigates Companies for Website Tags, Publishes Guidelines on Online Tracking Technologies

August 19, 2024 By Daniel Felz, Dorian Simmons, Lance Taubin, Rachel Lowe and Yin Tydir

On July 30, 2024, the New York Attorney General Letitia James announced she had completed an investigation into the tracking technology practices of popular websites, and used this to create website privacy guides on online tracking for New York businesses and consumers. These consist of a “Business Guide” and a “Consumer Guide.” The Business Guide […]

New York AG Seeks Comments on Rulemaking for Minors’ Online Protection Laws

August 12, 2024 By Maki DePalo, Dorian Simmons and Hyun Jai Oh

On August 1, 2024, New York Attorney General (“AG”) Letitia James issued two advanced notices of proposed rulemaking (“ANPRs”) for the Stop Addictive Feeds Exploitation (SAFE) for Kids Act (the “SAFE Act”) and the Child Data Protection Act (the “CDPA”), both of which New York Governor Kathy Hochul signed into law on June 20, 2024. […]

Dutch Data Protection Authority Warns that Using AI Chatbots Can Lead to Personal Data Breaches

August 9, 2024 By Wim Nauwelaerts

On August 6th, the Dutch Data Protection Authority (DPA) issued guidance cautioning companies about the potential data protection risks associated with the use of Artificial Intelligence (AI)-powered chatbots. In its guidance, the DPA reports that it has recently received several notifications of personal data breaches caused by employees sharing personal data with a chatbot that […]

Senate Passes Bill for Kids Online Safety and Privacy Act

August 7, 2024 By Maki DePalo, Jennifer Everett and Hyun Jai Oh

On July 30, 2024, in a 91-3 vote, the U.S. Senate passed the bill for the Kids Online Safety and Privacy Act (the “Bill”). The Bill, which combines the bills for the Kids Online Safety Act (“KOSA”) and the Children and Teens’ Online Privacy Protection Act (“CTOPPA”), aims to expand online safety and privacy protections […]

U.S. Court Rules Against Online Travel Booking Company in Web-Scraping Case

July 26, 2024 By Kim Peretti and Alysa Austin

On July 18, 2024, a federal jury in Delaware found that an online travel booking company violated the Computer Fraud and Abuse Act (CFAA) by accessing portions of a European airline’s website without permission and “with intent to defraud” the airline. In particular, the jury unanimously found that the online travel company violated the CFAA […]