New Year Brings Trio of U.S. Breach Notification Amendments

By Andreas Kaltsounis on January 7, 2020 Posted in Breach Notification

Along with the California Consumer Privacy Act, the new year brought us a trio of updated breach notification laws, in Oregon, Texas and Illinois. The Oregon law is of the most interest because it is the first to require that vendors notify the state’s attorney general of breaches in some cases. It also requires a … Continue Reading

Nevada Enacts Online Privacy Policy Law; Illinois ‘Right to Know’ Bill Carried Over

By David Kitchen, Alan L. Friel and Melinda L. McLellan on July 25, 2017 Posted in Enforcement, Online Privacy, State Legislation

Nevada recently became the latest state to pass a law requiring operators of websites and online services to post a public notice regarding their privacy practices. California was the first state to pass such a law in 2004, and Delaware enacted a similar law effective January 1, 2016. Similar to its predecessors, the new Nevada … Continue Reading

Washington State Passes Legislation Governing the Use of Biometric Information

By Melinda L. McLellan and Robyn M. Feldstein on June 8, 2017 Posted in Privacy Litigation, Retail Industry, State Legislation

Effective July 23, 2017, Washington will join Illinois and Texas as the third U.S. state to impose statutory restrictions on how businesses collect, use, disclose and retain biometric information. House Bill 1493 applies to entities that “enroll a biometric identifier in a database for a commercial purpose” and includes requirements to provide notice to individuals … Continue Reading