A California bill to set notification deadlines for data breaches passed the Senate unanimously on Thursday and could be headed to the governor’s desk soon. The Senate passed SB-446 on May 28 and it’s been sailing through the Assembly on consent agendas since then (see 2508200033). Meanwhile, state fiscal hawks advanced many privacy and AI bills, while holding back some others, at committee meetings Friday.
Organizations outside of health care may feel less comfortable complying with a new Colorado law than entities already covered by the Health Insurance Portability and Accountability Act (HIPAA), Aleksandra Vold, a BakerHostetler health privacy attorney, told Privacy Daily.
California privacy enforcers may soon be “counting clicks” to make sure it doesn’t take more steps for consumers to opt out than to opt in, warned privacy attorney Webb McArthur on a Hudson Cook webinar Tuesday.
It’s time to start “operationalizing the laundry list of requirements currently in the Colorado AI Act because it looks like a last-minute reprieve is unlikely,” said Denver-based privacy attorney Josh Hansen of Shook Hardy, as state legislators returned for the fifth day of their special session Monday.
By the second day of a whirlwind special session in Colorado, state legislators had halved the number of proposals to amend the Colorado AI Act to two. On Thursday, House and Senate Business committees approved a variety of amendments to a pair of leading AI proposals before advancing them to each chamber’s Appropriations Committee.
One of the easiest requirements for enforcers to check for violations under new California Privacy Protection Agency (CPPA) rules is also simple for vigilant businesses to avoid, privacy lawyer David Stauss said during a Troutman webinar Thursday. As such, companies should immediately start displaying on websites that they are honoring universal opt-out preference signals, he said. Separately, Hintze privacy attorney Sam Castic warned that new risk assessment requirements go beyond rules in other states.
A California bill that sets data-breach notification deadlines will go to the Assembly floor and is racing toward passage by the legislature. At a livestreamed hearing Wednesday, the Assembly Appropriations Committee voted unanimously to add SB-446 by Sen. Melissa Hurtado (D) to the Assembly consent calendar, which is reserved for noncontroversial bills.
With a fight brewing over the future of Colorado AI regulation, Gov. Jared Polis (D) sees “clear motivation in the legislature” to craft a balanced policy, he said in an emailed statement prior to the special session starting Thursday. Colorado lawmakers plan to weigh four proposals to amend or repeal the state’s comprehensive AI law. Senate Majority Leader Robert Rodriguez (D) and Rep. Brianna Titone (D), who co-authored the Colorado AI Act, rallied support for their proposed “Colorado AI Sunshine Act” at a livestreamed press conference Wednesday.
California fiscal hawks added multiple privacy bills to the Senate Appropriations Committee’s suspense file during a livestreamed meeting Monday. A state finance official raised red flags on measures involving data-driven pricing and AI chatbots.
Amid rising regulatory scrutiny over AI-based therapy, Texas Attorney General Ken Paxton (R) opened a probe into Meta, Character.AI and other chatbot platforms “for potentially engaging in deceptive trade practices and misleadingly marketing themselves as mental health tools,” the AG’s office said Monday.