Florida, Texas, Arkansas and Missouri should investigate data privacy claims at crisis pregnancy centers in their states, the Electronic Frontier Foundation said Thursday.
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching on the title or by clicking on the hyperlinked reference number.
Legislators from other states have told Vermont Rep. Monique Priestley (D) that they'd like to see someone enact a comprehensive privacy law with a private right of action (PRA), Priestley said in a livestreamed interview Tuesday with Daniel Solove, a George Washington University Law School professor.
A Pennsylvania House Committee teed up a potentially imminent floor vote on a comprehensive privacy bill. The Commerce Committee voted unanimously by voice Tuesday to advance HB-78 to the floor. At a livestreamed meeting, the committee also adopted by voice an amendment to delay by six months the proposed effective date to one year after it’s enacted.
Digital advertisers "are still grappling with defining the boundaries of sensitive personal information, such as health data and minors’ information,” according to an Interactive Advertising Bureau survey released Monday.
Kentucky tweaked its comprehensive privacy law to flesh out an exemption for data subject to the Health Insurance Portability and Accountability Act (HIPAA). Gov. Andy Beshear (D) signed the amendment (HB-473) to the 2024 privacy law Saturday after it passed the legislature unanimously (see 2503130017).
The Massachusetts Senate will try to reach consensus on comprehensive privacy legislation this spring, two state senators told us. Privacy Daily has counted eight comprehensive privacy bills so far in the Massachusetts legislature, with four apiece in the House and the Senate.
As the Vermont Senate Institutions Committee cleared a comprehensive privacy bill (S-71) in a 5-0 vote Friday, Chair Wendy Harrison (D) reminded colleagues that the legislature is in the “middle of the process.” A day earlier, the panel replaced the legislation's language with that of an industry-favored bill (S-93), which consumer privacy advocates have called weak (see 2503130053).
The Department of Health and Human Services should withdraw the Biden administration’s proposed Health Insurance Portability and Accountability Act (HIPAA) Security Rule and issue less onerous regulations for healthcare cybersecurity, medical groups said in comments.
The Latvian Data State Inspectorate published a list of data processing activities that don't require data protection assessments. The guidelines aim to give organizations a practical and clear approach to risk identification and management, the privacy watchdog said.