Online Safety Act: Protecting Children from Harmful Content Online – Ofcom’s Guidance on Age Assurance for Part 3 Services

By Farah Mukaddam (UK), Marcus Evans (UK) & Rosie Nance on January 28, 2025

Ofcom has published its guidance for implementing age assurance measures for regulated service providers. User-to-user (U2U) services and search services take note: a decision not to implement highly effective age assurance measures means that your service may be deemed by…

Abstract neural network. Big data concept. Global database and artificial intelligence. Bright, colorful 3D illustration with bokeh effect

FTC finalizes COPPA rule amendments

By Steve Roosa (US), Philip Hodgkins (US), Susana Medeiros (US) & Wenda Tang (US) on January 22, 2025

On January 16, 2025, the Federal Trade Commission (FTC) announced significant amendments to the Children’s Online Privacy Protection Act (COPPA) Rule after a comprehensive review that began in 2019. This marks the first major update since 2013 and represents a…

$3 million HIPAA Settlement

By David Kessler (US) & Susan Ross (US) on January 21, 2025

On January 14, 2025, the U.S. Department of Health and Human Services (“HHS”) entered into a settlement agreement relating to alleged HIPAA regulation violations with Solara Medical Supplies LLC, a direct-to-consumer distributer of continuous glucose monitors, insulin pumps, and other…

New Horizons in Data Protection: Malaysia’s Personal Data Protection (Amendment) Act 2024

By Wilson Ang, Jeremy Lua & Terence De Silva on January 17, 2025

On 24 December 2024, Malaysia’s Minister of Digital stipulated the dates on which the provisions of the Malaysian Personal Data Protection (Amendment) Act 2024 (Amendment Act) will come into force. The Amendment Act will take effect in three…

CSA releases guidance on the use of artificial intelligence in capital markets

By Imran Ahmad (CA), Domenic Presta (CA), Thierry Dorval, Katherine Barbacki & Roxanne Caron (CA) on January 8, 2025

On December 5, 2024, the Canadian Securities Administrators (CSA) released CSA Staff Notice and Consultation 11-348 – Applicability of Canadian Securities Laws and the Use of Artificial Intelligence Systems in Capital Markets (the Notice). The Notice was…

The EDPB Opinion on training AI models using personal data and recent Garante fine – lawful deployment of LLMs

By Rosie Nance, Marcus Evans (UK) & Francesco Gelmetti on January 2, 2025

The final days of 2024 were very eventful in the world of AI and data protection: the European Data Protection Board (EDPB) published its Article 64 General Data Protection Regulation (GDPR) opinion on training AI models using…

Two HIPAA settlements, $1.6 million in penalties

By David Kessler (US) & Susan Ross (US) on December 20, 2024

On December 4, 2024, HHS announced an agreement with Gulf Coast Pain Consultants calling for payment of $1.1 million in civil penalties due to alleged lack of compliance with HIPAA’s security requirements. Two days later, HHS announced an agreement with…

Facial recognition and privacy: Updated OAIC guidance

By Lisa Fitzgerald on December 11, 2024

The Office of the Australian Information Commissioner (OAIC) has issued guidance to private sector organisations who are considering using facial recognition technology (FRT) for identification purposes in commercial or retail settings. The guidance follows a determination of the Privacy Commissioner…

Australian Privacy Alert: Parliament passes major and meaningful privacy law reform

By Lisa Fitzgerald on December 11, 2024

On 29 November 2024, the first tranche of sweeping Australian privacy reforms under the Privacy and Other Legislation Amendment Bill 2024 (Cth) (Bill) passed both Houses of Parliament. We previously considered the Bill when it was tabled on 12 September…

NYDFS settles with insurance companies over failures in their cybersecurity programs

By Dan Pepper (US) & Remi Gambino (US) on December 5, 2024

On November 25, 2024, the New York State Department of Financial Services (“NYDFS”) announced it settled with two large insurance companies over allegations of inadequate data security practices in violation of New York’s cybersecurity regulation (23 NYCRR Part 500) (the…

Data Protection Report

Online Safety Act: Protecting Children from Harmful Content Online – Ofcom’s Guidance on Age Assurance for Part 3 Services

$3 million HIPAA Settlement

New Horizons in Data Protection: Malaysia’s Personal Data Protection (Amendment) Act 2024

CSA releases guidance on the use of artificial intelligence in capital markets

The EDPB Opinion on training AI models using personal data and recent Garante fine – lawful deployment of LLMs

Two HIPAA settlements, $1.6 million in penalties

Facial recognition and privacy: Updated OAIC guidance

Australian Privacy Alert: Parliament passes major and meaningful privacy law reform

NYDFS settles with insurance companies over failures in their cybersecurity programs

EU Platform on Sustainable Finance Report: Streamlining Sustainable Finance for SMEs

NSCC to Increase Clearing Hours

Acting SEC Chair Spotlights Changing Agency Priorities

US Regulatory Intelligence update - CFTC and SEC Adopt Amendments to Correct Errors in Private Fund Reporting

New UK Pensions Briefing | Pensions for growth: The government’s ambitious proposals

FCA sends a clear message on non-financial misconduct

New briefing | Asset management: Risk allocation and liability profiles in technology contracts and outsourcings for asset managers

I-SCAN

New Global Regulation Tomorrow Plus podcast: CCI disclosures

About

Topics

Archives