A California federal jury’s decision to hold Meta liable under the California Invasion of Privacy Act (CIPA) for the unauthorized receipt of sensitive health data gathered from Flo period-tracking app users, despite the tech giant's push to overturn the verdict, marks a significant win for Continue Reading
Privacy Daily | Minnesota’s Comprehensive Privacy Law Takes Effect, Includes Novel Right to Question
Minnesota’s new comprehensive privacy law that took effect Thursday, July 31, includes several unique and uncommon requirements, such as requiring companies to allow consumers to question their automated decisions. But many of the law's stipulations are already considered best practices. Zachary Continue Reading
Yahoo! Finance | Anne Wojcicki’s Bid To Buy Back 23AndMe May Not End a Legal Fight Over DNA Customer Data
Anne Wojcicki has reclaimed control of 23AndMe through a successful bid by TAMM Research Institute, a nonprofit controlled by Wojcicki – but this move could bring a new set of unique challenges. Gary Kibel, a partner in the Privacy, Technology + Data Security Practice Group at Davis+Gilbert, was Continue Reading
Network Advertising Initiative (NAI) | NAI Summit: Moving Privacy Forward
Quick Details Davis+Gilbert is proud to sponsor the 2025 NAI Summit: Moving Privacy Forward on May 21-22 in San Francisco, California. On Wednesday, May 21, Gary Kibel (Partner, Privacy, Technology + Data Security) will participate in a session titled "Are “Authorized Agent” Providers Continue Reading
Bloomberg Government | State Data Privacy Law Patchwork Expands by Eight States in 2025
Eight states have new privacy laws that further complicate the requirements consumer data companies must follow are taking effect in 2025. The new laws give consumers rights over their data, allowing them to know what information a company collects, the ability to request its deletion and now, Continue Reading
AdExchanger | Maryland Is The New State To Watch When It Comes To Data Privacy
There are now 19 states that have enacted comprehensive consumer data privacy laws, eight of which are currently in effect. When talk turns to the most impactful of these state privacy laws, the conversation usually starts and stops with California. However, recent developments should alter Continue Reading
The Maryland Online Data Privacy Act: Familiar Requirements, but Stricter Sensitive Data Mandates
The Bottom Line Maryland’s Legislature passed the Maryland Online Data Privacy Act of 2024 (MODPA) on April 6, 2024. While MODPA carries many similarities to other comprehensive state data privacy laws, it has some stricter parameters around the sharing of sensitive data. Pending Governor Continue Reading
2024 Privacy Issues: New Laws & Requirements Reshape Compliance
The Bottom Line As we step into 2024, the privacy regulation landscape continues to evolve rapidly, presenting significant challenges for businesses. We're seeing more privacy laws from individual states, which creates a complex web of compliance requirements across different regions. Continue Reading
Third Time’s A Charm – Adequacy Decision for EU-U.S. Data Privacy Framework Adopted by European Commission
The Bottom Line Years of anticipation culminated on July 10, 2023, when the European Commission adopted an adequacy decision (the Adequacy Decision) on the EU-U.S. Data Privacy Framework (the Framework). The Adequacy Decision is the result of a series of negotiations between the European Continue Reading
An (Im)Perfect 10: Indiana, Tennessee, Montana & Texas Pass Consumer Privacy Laws
The Bottom Line There are now 10 states with comprehensive privacy laws, with more on the way.Without federal legislation, a patchwork of state laws may be the standard going forward, much in the same way that data breach notification laws eventually became ubiquitous at the state level. In Continue Reading