Alston & Bird Privacy, Cyber & Data Strategy Blog

May Flowers Bring Fresh Insight from CalPrivacy

May 19, 2026 By Cynthia Cole and John Lesko

Increased scrutiny of data brokers, rapid scaling of enforcement operations and active opposition to federal privacy preemption are in bloom in the Golden State. On May 1, 2026, the California Privacy Protection Agency (the “Agency”) Board (the “Board”) held a public meeting to review and discuss enforcement activities, legislative developments, and international data transfer issues. Key Takeaways The Board emphasized the following priorities: Data broker scrutiny is intensifying … [Read more] about May Flowers Bring Fresh Insight from CalPrivacy

Colorado Replaces Landmark AI Act—Creating New Trails for AI Rules and Private AI Litigation

May 14, 2026 By Daniel Felz, Cynthia Cole and Anna von Spakovsky

On May 12, 2026, the Colorado legislature passed SB 26-189, which repeals and replaces its landmark Artificial Intelligence Act. Colorado is doing away with the concept of “algorithmic discrimination” and moving instead to a notice- and … [Read more] about Colorado Replaces Landmark AI Act—Creating New Trails for AI Rules and Private AI Litigation

Your AI Therapist May Need a Lawyer: Pennsylvania Brings Suit Against Chatbot Developer

May 14, 2026 By Jennifer Everett, Sean Sullivan, Jennifer Pike, Sara Pullen and Jonathan Jagoda

Our Health Care Group investigates a lawsuit against Character.AI that raises legal risks for AI platforms presenting themselves as licensed professionals and signals tightening regulatory scrutiny. AI chatbot developers could face regulatory … [Read more] about Your AI Therapist May Need a Lawyer: Pennsylvania Brings Suit Against Chatbot Developer

UK Cyber Security Breaches Survey 2025/2026: Key Takeaways

May 14, 2026 By Hanna Hewitt and Kelly Hagedorn

The UK Government has published its 2025/2026 Cyber Security Breaches Survey, which is drawn from information received from thousands of UK businesses. The 2025/2026 survey paints a picture of a cyber threat landscape that is stable in its scale … [Read more] about UK Cyber Security Breaches Survey 2025/2026: Key Takeaways

The Era of AI-Driven Data Breaches Has Arrived

May 13, 2026 By Amanda Wellen, Ashley Miller and Donald Houser

A recent lawsuit signals the rapid convergence of issues relating to artificial intelligence, vendor‑managed platforms, and individual arbitration in the data breach ecosystem. In Woodard v. OpenAI, Inc. & Mixpanel, Inc., Case No. 3:25-cv-10301 … [Read more] about The Era of AI-Driven Data Breaches Has Arrived