Natasha Amlani Associate

Among the many open questions about large-language models (LLMs) and generative artificial intelligence (AI) are the legal risks that may result from AI-generated content.

The UK Online Safety Bill was passed by Parliament earlier this week and is expected to soon become law through royal assent.

The Global Online Safety Regulators Network (Network) issued a position statement on human rights and online safety regulation on September 13, 2023.

A new law in Mississippi will require vendors that offer digital resources in Mississippi schools to have content safety policies and moderation practices in place.

Following the Council of the European Union's approval earlier this week, the Digital Services Act has been officially adopted, starting the countdown to the law’s entry into force later this year.

The Communications Decency Act, 47 U.S.C. § 230 (CDA) establishes that entities known as interactive computer service providers are not liable for (1) communications or content posted by people who use their services, (2) their services’ design or structure, or whether and how to allow people to have accounts, and (3) discretionary decisions about removing or restricting access to certain objectionable content.

The California Attorney General’s Office released for public comment the long-awaited proposed regulations for the California Consumer Privacy Act (CCPA) on October 10, 2019.

Data has been called the world's most valuable resource, part of the Fourth Industrial Revolution, and the new oil—a trove of unrefined wealth just waiting to be tapped. Data is becoming a force across a variety of industries.

Against the background of lawsuits and debate about the role of communications service providers in moderating speech on their platforms, the U.S. Supreme Court has weighed in, affirming that private entities that host forums for speech are not state actors subject to constitutional requirements.

As more and larger data breaches come to light, states continue to update and expand their breach notification statutes, adding to the patchwork of notification obligations that now exists in every state.

A business that is subject to the CCPA will need to update its consumer-facing online privacy policy.

The U.S. Securities and Exchange Commission (SEC) Strategic Hub for Innovation and Financial Technology (FinHub) published a framework on April 3, 2019, for analyzing whether a digital asset is offered and sold as a security under the federal securities laws.

On April 9, 2019, the California Senate Judiciary committee voted to advance SB 561, which would expand the private right of action to any violation of the CCPA (not just for negligent breaches) and would eliminate a business’s 30-day right to cure.

When creating a privacy program, it is important to look ahead and think strategically about who your audience might be. For businesses that might find themselves under the scrutiny of regulators and judges because of a lawsuit, unwanted publicity, or data breach, it is critical to be able to demonstrate substantial compliance for the program they’ve implemented.

After conducting a data inventory a business should assess its risks by benchmarking its policies and practices with applicable privacy laws and regulations. Conducting a gap analysis is a critical tool in identifying compliance gaps and developing a plan to bridge those gaps.

For any company handling personal information (PI), an incident involving unauthorized access of the PI may be a question of when and not if. The question then becomes: what does the company need to do?

With the states taking the lead on privacy (see our tip here), the federal government is starting to get in on the action.

There is often an upsurge in hacking and online scams during the holidays, and businesses are not always prepared to respond. This tip includes five key steps you can take immediately to protect and defend against breaches.

The CCPA creates eight consumer rights, eight corresponding business obligations and three independent business obligations.

Does your company handle data analytics to target California consumers? If so, it is imperative that you pay close attention to the California Consumer Privacy Act (CCPA) that goes into effect on January 1, 2020. The CCPA goes well beyond the General Data Protection Regulation (GDPR); however, if you’ve achieved compliance with the GDPR, you are well on your way to achieving CCPA compliance.

The European Union (EU) recently adopted the Digital Services Act (DSA), fundamentally changing the legal landscape for online intermediaries doing business in the EU. The DSA builds on the e-Commerce Directive and regulates the obligations of online service providers that act as intermediaries in connecting consumers with third-party goods, services, or content.

Perkins Coie’s CCPA Week
The CCPA exempts processing of personal information “pursuant to” the Gramm-Leach-Bliley Act (GLBA). This webinar will explore the contours of this exemption and examines activities to which financial institutions might be subject to enforcement actions under the CCPA.

Privacy experts from Airbnb, Cisco, Michelin and Johnson & Johnson will share insights on driving global privacy compliance with OneTrust technology. Regulator and industry experts from the Information Commissioner's Office (ICO) and Perkins Coie will share insights on building privacy programs to scale to meet today's shifting regulatory environment. Product deep dive sessions will cover a wide variety of topics, including privacy program management, marketing and consent, vendor risk and incident and breach response.