New York Assemblymember Alex Bores (D) expects his AI safety bill, the Responsible AI Safety and Education (RAISE) Act, could be revised through the chapter-amendment process, the legislator told Privacy Daily on Wednesday. “We’re open to amendments that … strengthen or clarify the bill.”

Colorado will reconsider its comprehensive AI law during a special session this month, Gov. Jared Polis (D) announced Wednesday, as expected (see 2505300046).

Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching the title or clicking on the hyperlinked reference number.

Businesses should map their automated decision-making technology (ADMT), review and revise privacy policies, plan for cybersecurity audits and review vendor contracts in response to California Privacy Protection Agency rules adopted July 24, some privacy law practices advised in recent client alerts. The rules are expected to be finalized without changes shortly.

The expansion of data broker liability in states like Texas and California has companies considering multistate compliance approaches, privacy attorneys told us in interviews.

Though the White House’s plans to collaborate with tech companies in building a health data-sharing system could ultimately result in a beneficial network, its current lack of clarity and transparency about data protections is concerning, consumer advocates said.

The Senate Privacy Subcommittee is focused on the Judiciary Committee’s jurisdiction over privacy legislation, but expect collaboration with the Senate Commerce Committee, Sen. Marsha Blackburn, R-Tenn., told us Thursday. Other senators offered views on the White House's plans to work with tech companies to build a healthcare data-sharing system (see 2507310067).

Meta violated the California Invasion of Privacy Act (CIPA) when it intentionally eavesdropped on users of the health app Flo Health and received sensitive data on users' menstrual cycles and reproductive health, said a federal jury decision Friday that was posted Monday. The plaintiffs alleged Flo transmitted their personal information without user consent to the social media platform and other third parties for commercial purposes.

The U.S. has set itself on a "fundamentally divergent path" from the EU by focusing on deregulation and national security in the new White House AI Action Plan (see 2507230058), Pinsent Mason AI and intellectual property attorney Cerys Wyn Davies blogged Thursday.

Mississippi's attorney general asked the U.S. Supreme Court Wednesday to let stand a state law that requires parental consent for those younger than 18 to create accounts with certain digital service providers. AG Lynn Fitch (R) argued that the 5th U.S. Circuit Court of Appeals, which on July 17 allowed the previously-enjoined law to go into effect with a stay on a lower court's injunction, had "compelling, independent merits grounds for issuing the stay."