Artificial Intelligence

Key AI, Cybersecurity, and Privacy Takeaways from the NAIC 2026 Spring Meeting

April 1, 2026 By Dorian Simmons

From March 22–25, the National Association of Insurance Commissioners (“NAIC”) held its 2026 Spring National Meeting in San Diego, California. During the meeting, the Innovation, Cybersecurity, and Technology Committee, along with its working groups on Third-Party Data and Models, Big Data and Artificial Intelligence, and Cybersecurity, addressed key developments regarding oversight of third-party data and […]

California Jumps into AI Procurement with State Governing Principles in an Executive Order

April 1, 2026 By David Keating, Cynthia Cole, Daniel Felz and Santi Villar

On March 30, 2026, California Governor Gavin Newsom signed Executive Order N-5-26 (the “Order”), aimed at governing the responsible procurement and deployment of Generative Artificial Intelligence (“GenAI”) across California’s state government. The Order builds on the foundation laid by Executive Order N-12-23, issued in September 2023, by directing a series of actions across multiple state […]

Threat Actors Exploit Google’s Gemini to Accelerate Cyberattacks

March 3, 2026 By Seol Namgoong and Kim Peretti

Google Threat Intelligence Group (GTIG) recently reported that cybercriminals—in particular, state-sponsored threat actors from North Korea, Iran, China, and Russia—are misusing Gemini, Google’s large language model (LLM), to support all stages of their attack lifecycle. Specifically, GTIG observed threat actors using Gemini to code and script tasks, accelerate reconnaissance, research publicly known vulnerabilities, and enable […]

Spanish DPA Releases Agentic AI Guidance

February 23, 2026 By Alice Portnoy and Wim Nauwelaerts

On 18 February 2026, the Spanish Data Protection Authority (Agencia Española de Protección de Datos or ‘AEPD’) published an 81‑page guidance document on the privacy aspects of AI systems operating as agents – commonly referred to as ‘agentic AI’. The guidance is aimed at companies that process personal data under the EU General Data Protection […]

FTC Reverses Rytr Consent Order Amid Push for Federal AI Standards

February 3, 2026 By Kathleen Benway, Alex Brown, Jennifer Everett, Daniel Felz and Lili Song

On December 22, 2025, the Federal Trade Commission (FTC) set aside its 2024 consent order against Rytr, a generative AI-powered company, concluding that the original complaint “failed to satisfy the legal requirements of the FTC Act” and that the order unduly burdened AI innovation in violation of the Trump Administration’s January 2025 AI Executive Order […]