Privacy & Cyber Regulatory Enforcement

Italian Supervisory Authority imposes 20 million EUR fine on controller outside of Europe

March 11, 2022 By Wim Nauwelaerts and Privacy, Cyber & Data Strategy Team

The Italian Garante per la Protezione dei dati Personali (‘Italian SA’) published a decision of February 10, 2022 in which it imposes a 20 million EUR fine on a company outside of Europe for violation of the EU General Data Protection Regulation (‘GDPR’). Clearview AI is a U.S.-based company that provides search engine services involving […]

President Biden Issues Executive Order Directing Coordinated Federal Approach to Digital Assets

March 9, 2022 By Kim Peretti and Kristen Bartolotta

As a result of the rise in digital assets, President Biden signed an Executive Order on March 9, 2022 ordering a review of the nation’s approach to cryptocurrency. The Executive Order on Ensuring Responsible Development of Digital Assets (the “Order”) contains both broad policy objectives and specific analysis to be conducted by the federal government. […]

Colorado Attorney General’s Office Issues Notice of Invitation for Informal Input on CPA Rulemaking

March 7, 2022 By Yin Tydir

On March 7, 2022, the Colorado Attorney General’s Office issued to the public an invitation to submit initial input on the Colorado Privacy Act (“CPA”) and future rulemaking. The Attorney General’s Office is accepting informal comments on any area on which it has the authority to adopt rules and provides examples of input in the […]

Senate Passes Significant Cyber Bill Requiring Cyber Incident Reporting

March 3, 2022 By Kim Peretti and Kristen Bartolotta

The Strengthening American Cybersecurity Act of 2022, a bill that narrowly failed to become law last year, was passed in the Senate on Tuesday, March 1 as a package of cybersecurity measures that would require operators of critical infrastructure and federal civilian agencies to report cyber incidents to the Department of Homeland Security’s Cybersecurity and […]

CPPA Expected Not to Meet CPRA Rulemaking Deadline

February 17, 2022 By David Keating and Dorian Simmons

At a board meeting held by the California Privacy Protection Agency (CPPA) on February 17, 2022, Executive Director Ashkan Soltani announced that the CPPA does not expect to meet the July 1, 2022, statutory deadline for adopting final regulations under the California Privacy Rights Act. The CPPA plans to schedule meetings in March and April […]