New York state health data privacy legislation could soon hit the governor’s desk after the Assembly and Senate quickly passed bills this week. Despite Republican opposition on the Assembly floor Wednesday, members voted 95-41 to pass S-929, the Senate version that was substituted forA-2141. The effectively same bills have been compared to Washington state’s My Health My Data law. The Senate passed S-929 on Tuesday after bypassing its committee process (see 2501210068). Republicans and the Computer & Communications Industry Association (CCIA) raised concerns with the legislation, which is supported by the American Civil Liberties Union (ACLU).
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching on the title or by clicking on the hyperlinked reference number.
The FTC’s new requirement that companies obtain separate parental consent when collecting children’s data for nonessential business purposes is a key change compliance professionals should fully understand, attorneys said Tuesday.
Almost all comprehensive state privacy laws include enforcement language against AI-related discrimination, so additional efforts to regulate automated decisions could be redundant, Minnesota Rep. Steve Elkins (D) told Privacy Daily in a recent interview.
The New York Senate voted 49-10 Tuesday to approve a sweeping health privacy bill (S-929) similar to Washington state’s My Health My Data law.
The early weeks of January have brought a blizzard of state bills focused on protecting kids online, including requiring age verification on porn and social media websites. Some industry groups have long raised privacy concerns with such mandates, arguing they could require that users submit sensitive information confirming their age or parental status to consent to a child’s access.
A unanimous U.S. Supreme Court on Friday upheld a law forcing ByteDance to divest TikTok, citing Congress’ “well-supported national security concerns.”
The FTC trumpeted two big enforcement actions as part of a flurry of announcements in the days before Monday's inauguration of President-elect Donald Trump. The FTC on Thursday proposed a nonmonetary settlement with GM and OnStar over allegations the companies collected and sold consumers’ location data without proper consent. The commission on Friday announced a settlement of $20 million with the maker of the videogame Genshin Impact over allegations of violating a child privacy law. The FTC also revealed a long-awaited update to children’s online privacy rules Thursday (see 2501160068).
New technologies such as the use of pixels have led to a surge -- beginning in 2022 -- of litigation involving older privacy laws because newer legislation lacks a private right of action, privacy lawyers said during a webinar Wednesday.
U.K. regulator Ofcom Thursday issued industry guidance detailing how apps and sites can implement effective age checks to keep children from encountering online porn and protect them from other harmful content. Pornography providers have until July to introduce age checks, it said. The office also published a statement on age assurance and children's access, and warned that its age assurance enforcement program is open for business.