The California Privacy Protection Agency (the “CPPA”) has issued a Notice of Proposed Rulemaking, as anticipated, for amendments to regulations the California Attorney General promulgated in 2020, and to propose new regulations under the CPPA’s … [Read more] about California Privacy Protection Agency Initiates Notice and Comment Period for CCPA Regulations
Maryland Amends Data Breach and Reasonable Security Requirements
Maryland recently passed House Bill 962, amending Maryland’s Personal Information Protection Act (PIPA) (Md. Code Ann. Comm. Law 14-3504). As summarized below, House Bill 962 amends certain aspects of PIPA relating to breach notification and … [Read more] about Maryland Amends Data Breach and Reasonable Security Requirements
Belgian Supervisory Authority Sanctions News Media Company for Violating Cookie Rules
On May 25th, the Belgian Supervisory Authority (“GBA”) announced that it had imposed a fine of EUR 50,000 on a Belgium-based news media company for using cookies on its websites without complying with applicable cookie law requirements. The GBA … [Read more] about Belgian Supervisory Authority Sanctions News Media Company for Violating Cookie Rules
DOJ Issues New Policy on CFAA Prosecutions
Today, the Department of Justice (“DOJ”) updated its policy regarding charging violations under the Computer Fraud and Abuse Act (“CFAA”). This is the first update to the DOJ’s policy since 2014, and it is effective immediately. The policy states … [Read more] about DOJ Issues New Policy on CFAA Prosecutions
EDPB Issues Draft Guidelines on the Calculation of Administrative Fines
On May 16, 2022, the European Data Protection Board (‘EDPB’) published draft regulatory guidelines (‘draft guidance’) on the calculation of administrative fines for infringements of the EU General Data Protection Regulation (‘GDPR’). In the draft … [Read more] about EDPB Issues Draft Guidelines on the Calculation of Administrative Fines