Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching on the title or by clicking on the hyperlinked reference number.
Collaboration is needed among tech industry experts, parents, legislators and others in the conversation about protecting children online, said Alabama lawmakers at a House State Government Committee hearing Tuesday. The panel agreed to work on an app store age-verification bill (SB-187) over the summer and bring back an updated bill next session.
A California Assembly committee cleared a surveillance pricing bill Tuesday that would prohibit companies from using personal data to set customized prices for consumers.
The California Privacy Protection Agency (CPPA) dressed down national menswear retailer Todd Snyder with a $345,178 fine Tuesday for alleged violations of the California Consumer Privacy Act (CCPA). Closely following CPPA action last March against Honda, the Todd Snyder case is more than an enforcement action. It also “highlights a trend by this agency of looking beyond surface compliance with the CCPA,” Wiley privacy attorney Joan Stewart told us. The agency’s board adopted the enforcement decision May 1.
Louisiana legislators on Monday cleared privacy legislation requiring app stores to verify ages. Also at the House Commerce Committee hearing, the sponsor of a bill on protecting genomic data voluntarily deferred her own measure.
EU plans for cutting red tape in measures such as the General Data Protection Regulation (GDPR) and AI Act, if done pragmatically, will help rather than hamper innovation, lawyers and academics told us.
Maine should follow “where the puck’s going” on comprehensive privacy laws in the states, said the legislature's joint Judiciary Committee House Chair Amy Kuhn (D) during the panel's hearing Monday. That means adopting a bill, like Kuhn’s LD-1822, based on data minimization rather than notice and consent, she said. However, two alternative Maine privacy bills would follow the approach included in state privacy laws prior to Maryland’s comprehensive law.
A disconnect exists between legislatures, the privacy laws they create and the litigation that results from them, said panelists during a Federal Communications Bar Association (FCBA) event on privacy litigation trends Thursday. Instead, this ecosystem results in great confusion, prompting a rise in privacy law-related cases, they said.
An Irish Data Protection Commission (DPC) decision to fine TikTok $600 million for General Data Protection Regulation (GDPR) breaches (see 2505020001) highlights the increasing scrutiny on transfers to and from a broader range of countries than just the U.S., EU and U.K., IAPP Research Director Joe Jones said Friday.
Lobbying numbers show the tech industry backed up its public support for the Take It Down Act with Q1 2025 spending focused in part on the deepfake porn bill.