Tennessee, Montana, Iowa, and Indiana have each recently passed a consumer privacy statute in recent weeks. These laws follow the same trend started by California’s Consumer Privacy Act by granting consumers the right to know whether a company is processing their data; the right to access that data, obtain a copy, and to have it

Bloomberg Law reported this week that California Attorney General Xavier Becerra expects to issue draft regulations for the California Consumer Privacy Act (CCPA) in October. Bloomberg reported that AG Becerra told reporters the regulations would be published next month. Businesses and consumers will then be able to submit public comments to the regulations. Bloomberg also

On January 8, 2019, the California Department of Justice hosted the first in a series of six public forums on the California Consumer Protection Act (CCPA). The forums offer the public an opportunity for comment in advance of the drafting of regulations by the state Attorney General’s office. These regulations are seen as being particularly significant given the rushed legislative process resulting in a perceived lack of clarity in several key provisions of the CCPA.
Continue Reading California AG’s Office Begins CCPA Rulemaking Process with Series of Public Forums

Massachusetts Attorney General Maura Healey recently announced that her office will be launching a new online data breach reporting portal for companies to use to report data breaches to her office pursuant to the Massachusetts data breach notification statute.

The use of the portal is voluntary and does not relieve companies of their statutory obligations,

CoPilot Provider Support Services, Inc. (CoPilot), which provides health care companies with billing and insurance support services, has settled allegations by the New York Attorney General of failing to notify individuals of a data breach in a reasonable time for $130,000.

CoPilot began investigating an unauthorized access to, and downloading of its reimbursement records through

PayPal agreed to pay $175,000 and strengthen its privacy and security disclosures in a settlement agreement reached with the Texas Attorney General’s office (the “AG’s office”). The AG’s office claimed that PayPal failed to explain to users of its Venmo mobile money transfer app how users’ personal information would be used and shared.

PayPal acquired