Privacy & Data Security

This blog post focuses on how the EU’s Artificial Intelligence Act (“AI Act”) regulates generative AI, which the AI Act refers to as General-Purpose AI (“GPAI”) Models.
As explained in our previous blog post, the AI Act generally relies on a risk-based approach. This means that different requirements apply depending on the level of

Veto for the California Consumer Privacy Act of 2018: opt-out preference signalOn September 20, 2024, California Governor Gavin Newsom vetoed a proposed law (Assembly Bill 3048) that would have strengthened protections under the California Consumer Privacy Act (CCPA) by requiring internet browsers and mobile operating systems to offer consumers the ability to exercise their privacy

The Colorado AI Act, set to take effect on February 1, 2026, introduces new consumer protection regulations for AI systems used by Colorado residents. It imposes disclosure requirements for public-facing AI systems and stricter obligations for high-risk AI systems – those which significantly impact decisions in areas like education, employment, and health care.

We covered

The United States government sued eBay for alleged violations of environmental regulations, claiming the online marketplace facilitated the sale of prohibited products in violation of the Clean Air Act (CAA), the Toxic Substances Control Act (TSCA), and the Federal Insecticide, Fungicide, and Rodenticide Act (FIFRA). According to the government’s complaint, eBay allowed third-party sellers to

Privacy & Data Security Blogs