Insights < BACK TO ALL INSIGHTS
Ready, Set, Go: More States Adopt Privacy Laws
FEATURED
June 17, 2026
Ready, Set, Go: More States Adopt Privacy Laws
By: Nicole Kardell
Note the below chart was updated on June 17, 2026 to reflect recent developments. The number of U.S. states that have adopted privacy laws grows regularly. Fortunately, there seems to be quite a bit of crossover, at least when it comes to thresholds that companies must meet in order to trigger compliance requirements. We provide below a chart that summarizes these thresholds by state, including whether non-profits are exempted from compliance (a fairly common question we are asked). We also encourage you to review periodically the IAPPs useful tracker for state-by-state developments. Updated June 17, 2026
What are you looking for?
I Predict the FTC and Class Action Plaintiffs May Have a Problem with Prediction Market Influencers
June 11, 2026
I Predict the FTC and Class Action Plaintiffs May Have a Problem with Prediction Market Influencers
By: Michelle Cohen
Prediction markets are the hottest topic in gaming right now. Industry leaders Kalshi and Polymarket have provided substantial fodder for debates at the summer gaming conferences, in the gaming trade press, and in mainstream media. Most of that discussion focuses on state versus federal regulation, an issue that the U.S. Supreme Court will likely need to resolve. In the interim, as they promote their platforms…
Meta’s Bay State Blues: Mass. High Court Finds Another Crack in the Section 230 Shield
April 20, 2026
Meta’s Bay State Blues: Mass. High Court Finds Another Crack in the Section 230 Shield
By: Robert Ward
Meta’s Bay State Blues: Mass. High Court Finds Another Crack in the Section 230 Shield Mere weeks after juries in California and New Mexico returned multi-million-dollar verdicts against Meta Platforms, Inc., the social media company suffered another defeat. On April 10, the Massachusetts Supreme Judicial Court (SJC) rejected the social media company’s attempt to raise Section 230 of the Communications Decency Act as a shield…
Basic Data Privacy Hygiene and AI: Do What You Say and Say What You Do
April 10, 2023
Basic Data Privacy Hygiene and AI: Do What You Say and Say What You Do
By: Nicole Kardell
Our Privacy Team has been saying this for years –Do What You Say and Say What You Do.[1] It’s an enduring maxim and an important basic step that companies need to embrace in their data collection practices. It also fits in neatly with the concepts of Notice and Consent, which are the hallmarks of almost all data privacy laws. Remarks made recently in a keynote…
Pump The Brakes or Step on the Gas? An Analysis of Emerging AI Regulatory Frameworks
April 6, 2023
Pump The Brakes or Step on the Gas? An Analysis of Emerging AI Regulatory Frameworks
By: Abbey Block
Artificial Intelligence (“AI”) is growing exponentially and has infiltrated nearly every sector of society. Despite the technology’s growth, the US has yet to pass comprehensive federal legislation addressing its use, commercialization, and development. Although several states such as New York, Maryland, and Washington have implemented their own regulations, no such supervisory scheme has been broadly implemented on the federal level. In response to the largely…
A Review of Top-Rated AI Tech Companies Undermines the FTC’s Warning of Deception
March 22, 2023
A Review of Top-Rated AI Tech Companies Undermines the FTC’s Warning of Deception
By: Abbey Block
Artificial intelligence (“AI”) was once thought of as science fiction – something we could only see on a movie screen or read about in a comic book. But in recent years, the technology has become both accessible and popular, proliferating nearly every sector of society. From healthcare to the legal industry, AI technology has been praised for its…
Former Uber Security Chief Convicted of Federal Charges Stemming From 2016 Extortionate Data Breach
October 28, 2022
Former Uber Security Chief Convicted of Federal Charges Stemming From 2016 Extortionate Data Breach
By: Michelle Cohen
Uber’s former Chief Security Officer, Joe Sullivan, was convicted of two federal charges—obstruction of justice and misprision of a felony—for his role in covering up an extortionate data breach in 2016, which compromised more than 50 million personal records of Uber drivers and passengers, while the Federal Trade Commission (“FTC”) was probing Uber’s privacy protections. The San Francisco jury’s verdict marks a stunning development in…
New California Law Establishes Broad Protections for Children’s Online Privacy – Exceeding Federal Requirements
October 4, 2022
New California Law Establishes Broad Protections for Children’s Online Privacy – Exceeding Federal Requirements
By: Jake Gray
California made history in September as the first state to enact legislation that punishes technology companies for violations of minors’ privacy and for practices that jeopardize minors’ safety in an effort to prioritize “the privacy, safety, and well-being of children over commercial interests.” On September 15th, Governor Newsom signed The California Age-Appropriate Design Code Act (“the Act“) into law. The legislation, which was passed by…
