On 7 December 2023, the Court of Justice of the European Union (CJEU) issued an important decision on how the GDPR governs AI-assisted decisions. The case arose in the financial services context, with the court holding that the GDPR’s AI rules apply … [Read more] about EU’s Highest Court Issues Major AI Decision With Wide-Reaching Impact
After a three-year investigation/enforcement action by the New York Department of Financial Services (“NYDFS”), NYDFS entered into a Consent Order with a large title insurer (the “Company”) for its violation of NYDFS’s Cybersecurity Regulation (23 … [Read more] about NYDFS Releases Consent Order in First Enforcement Action Brought Under the Cybersecurity Regulations
After a decade and a half under the current data breach notification rules for telecommunications carriers and telecommunications relay services (TRS) providers, the FCC recently unveiled plans to update and expand them. On November 22, 2023, the … [Read more] about FCC Plans to Update Data Breach Notification Rules
On December 8, 2023, following marathon negotiations, European Union (‘EU’) legislators reached a political agreement on the much-anticipated EU Artificial Intelligence Act (‘AI Act’). The AI Act is billed as the first comprehensive legal framework … [Read more] about Companies Prepare for Change as EU Legislators Agree on EU Artificial Intelligence Act
On December 8, 2023, the California Privacy Protection Agency (CPPA) will hold a board meeting seeking public comment on various privacy regulations. The meeting, which will take place on Zoom, will cover several topics listed in its published … [Read more] about CPPA Publishes Revised Cybersecurity Audit Regulations in Advance of Board Meeting