Blog Archives

Maryland’s New Approach to Data Minimization Creates Unique Compliance Issues

On May 9, 2024, Governor Wes Moore signed the Maryland Online Data Privacy Act (MODPA) making Maryland the seventeenth state to enact a comprehensive data privacy law. The law takes effect October 1, 2025, but it does not apply to

Tagged with: , , , , , ,
Posted in Legislation, Privacy

Biden Administration’s Voluntary AI Safety Agreement

The Biden administration announced that it brokered a voluntary agreement with several of the biggest technology and artificial intelligence (AI) companies.  The agreement, available here, has the companies taking a number of actions intended to encourage safe, secure, and trustworthy

Tagged with: , , , ,
Posted in Artificial Intelligence

Artificial Intelligence Systems, Profiling, and the New U.S. State Privacy Laws

The rapid spread of Artificial Intelligence (AI) systems in recent years has overlapped with the enactment of comprehensive privacy laws by multiple U.S. states.  Aside from being generally applicable to AI systems in the same way as they are to

Tagged with: , , , , ,
Posted in Artificial Intelligence, Legislation, Privacy, Regulations

The Biden Administration’s Blueprint for an AI Bill of Rights

As the use of artificial intelligence (AI) rapidly expands throughout the private sector and government, the Biden administration has published a report titled A Blueprint for an AI Bill of Rights. A summary is available at https://www.whitehouse.gov/ostp/ai-bill-of-rights/ and the full

Tagged with: , , ,
Posted in Artificial Intelligence

NIST Issues New Artificial Intelligence Risk Management Framework

The National Institute of Standards and Technology (NIST) recently released version 1.0 of its Artificial Intelligence Risk Management Framework. The framework is available at https://nvlpubs.nist.gov/nistpubs/ai/NIST.AI.100-1.pdf, and a full set of supporting documents is available at https://www.nist.gov/itl/ai-risk-management-framework.  There is an emerging

Tagged with: , , , ,
Posted in Artificial Intelligence

Federal Agencies Announce a New 36-Hour Cybersecurity Incident Rule Reporting Requirement

On November 18, 2021, the Office of the Comptroller of the Currency (“OCC”),  the Board of Governors of the Federal Reserve System (“Board”), and the Federal Deposit Insurance Corporation (“FDIC”) (collectively, the “Agencies”) issued a new rule (the “Rule”) that

Tagged with: , , , , , , , , , ,
Posted in Data Breach, Policies and Procedures, Regulations, Standards

FTC’s Amended Safeguards Rule Imposes Significant Requirements on Covered Entities

On October 27, 2021, the Federal Trade Commission (“FTC”) announced new updates to the Gramm-Leach-Bliley Act (“GLBA”) by amending the Standards for Safeguarding Customer Information, known as the “Safeguards Rule,” and issuing a final rule (the “Final Rule”). The Safeguards

Tagged with: , , , , ,
Posted in FTC, GLBA, Regulations

Introduction to the Virginia Consumer Data Protection Act – Part II

This is the second installment of our summary of the Virginia Consumer Data Protection Act (“VCDPA”).  In our first post, we covered the goals of the law as well as its applicability and thresholds, what qualifies as personal data, the

Tagged with: , , , , , , ,
Posted in Data Security, Legislation, Privacy, Regulations, VCDPA

Introduction to the Virginia Consumer Data Protection Act – Part I

Virginia recently joined California in enacting a comprehensive data protection law intended to protect the privacy of its residents. The Virginia Consumer Data Protection Act (the “VCDPA”) is scheduled to take effect on January 1, 2023, so impacted businesses have

Tagged with: , , , , , , , ,
Posted in Data Security, Legislation, Privacy, Regulations, VCDPA

Democrats and Republicans Introduce Competing COVID-19 Data Privacy Bills

Responding to widespread calls for uniform rules and restrictions regarding the collection and use of individuals’ COVID-19-related health information, Congressional Republicans and Democrats have each recently introduced their own versions of federal COVID-19 data privacy bills.  Although both parties’ bills

Tagged with: , , , ,
Posted in Legislation, Privacy, Regulations
About Cyber Law Monitor
In the new digital world, individuals and businesses are almost entirely dependent on computer technology and electronic communications to function on a daily basis. Although the power of modern technology is a source of opportunity and inspiration—it also poses huge challenges, from protecting privacy and securing proprietary data to adhering to fast-changing statutory and regulatory requirements. The Cyber Law Monitor blog covers privacy, data security, technology, and cyber space. It tracks major legal and policy developments and provides analysis of current events.
Subscribe For Updates

cyberlawmonitor

Cozen O’Connor Blogs