Compliance and State law - Legal Tech Connection

Legal Blogging in the AI Era: Best Practices for 2025

Justia Legal Marketing & Technology blog

MARCH 4, 2025

However, while AI is a great tool, its essential to review all AI-generated content for accuracy, ethical considerations, and compliance with legal industry standards. Fact-Checking : Prior to publication, AI cross-references your content with reliable legal databases to check the accuracy and timeliness of the laws referenced.

Estate planning

Estate planning Time-tracking Analytics Compliance

The State of State Law Cybersecurity Requirements

Debevoise Data Blog

SEPTEMBER 30, 2021

Almost everyone working in cybersecurity compliance is aware that each U.S. state has its own set of breach notification requirements. What is less known is that many of these states also impose substantive cybersecurity requirements. Emerging Themes of State Law Cybersecurity Requirements Taking all these U.S.

State law

State law Law Law Compliance

Justia Legal Guides: International Law Center

Justia Legal Marketing & Technology blog

OCTOBER 13, 2023

While an executive agreement may not fall within the Supremacy Clause, it still may preempt state laws due to federal power over foreign affairs. obligations under international law. Enforcing compliance with those principles can be even more difficult.

International law

International law Law Law Court

Webinars

The New Way of Conducting Patent Research: Proven Strategies For Efficient Due Diligence

AI for Paralegals: Everything You Need to Know (and How to Use It Safely)

The Tech-Savvy Paralegals Playbook: How To Leverage AI

Uncovering The Hidden Connections: A Patent Family Survival Guide

MORE WEBINARS

What If I Don’t Want to Litigate? Law Degree Alternatives: Exploring Unconventional Career Paths

The Barrister

MARCH 11, 2025

of law graduates secured full-time jobs where bar passage was either required or advantageous. 3 In this context, “advantageous” refers to positions where having passed the bar exam or holding a law degree provides a significant benefit or edge, even if it isn’t strictly required for the role. In 2022, 84.6%

Litigation

Litigation Litigator Dispute resolution Mediator

EU Rules Restricting the International Transfers of Non-Personal Data

Inside Privacy

FEBRUARY 1, 2024

This regulation is directly applicable in all EU Member States since May 28, 2019. Note that the data localization prohibition in this Regulation applies to individual EU Member States’ laws; it does not preclude the EU from implementing data localization requirements.

Intellectual Property

Intellectual Property State law Court Compliance

Webcast – Cybersecurity and AI Whistleblowers

Debevoise Data Blog

DECEMBER 15, 2021

The webinar will address: Recent updates to New York State law; Announcements by the SEC and CFPB; The U.S. During the webcast, we will discuss how recent developments have caused companies to review their whistleblower policies and procedures, especially in the areas of cybersecurity and AI.

Litigator

Litigator Litigation Compliance State law

EU Data Act Regulates Business-to-Business Contracts Relating to Access and Use of Data

Inside Privacy

FEBRUARY 21, 2024

This is an ever-evolving area, and we will continue to monitor developments in this area (such as the UK’s proposed Digital Markets, Competition and Consumer Act which would introduce new rules prohibiting unfair commercial practices with substantial penalties for non-compliance).

Compliance

Compliance Court State law Law

Law Firm Coronavirus Response Centers

Legal Expert Connections

MARCH 19, 2020

The article should not be used as a substitute for legal advice from a licensed attorney in your state. Every situation is different and circumstances vary widely depending on the governing state law, policy provisions, and related considerations.

Law firm

Law firm Law Law Legal advice

Face Forward Part 2: Proposed Legislation and Strategies for Compliant Use of Facial Recognition

Debevoise Data Blog

OCTOBER 26, 2021

This would seem to eliminate not just the possibility of compliance-by-signage but also the possibility of online consent. This approach can be a hard sell for lawyers talking to their business-side clients, for whom being a compliance volunteer is rarely popular. Compliance. Has the company obtained those individuals’ consent?

Compliance

Compliance Federal law Data protection Machine learning

The SEC Adopts Significant Cybersecurity Amendments to Reg S-P

Debevoise Data Blog

MAY 17, 2024

Firms will have either 18 or 24 months (depending on size) from the date of publication in the Federal Register to come into compliance. We discuss Reg S-P’s new and expanded requirements, as well as considerations for compliance, below. Takeaways Review and Update Policies and Procedures for Upcoming Compliance Dates.

e-records

e-records Compliance e-filing Due diligence

Virginia Enacts Direct-to-Consumer Genetic Privacy Law as Numerous Other States Introduce Similar Bills

Inside Privacy

MARCH 31, 2023

These laws also contain exemptions related to clinical research and for PHI collected by a covered entity or business associate subject to HIPAA, and similarly exempt deidentified data, though we note the scope of each state laws’ exemptions are not identical.

Law

Law Law Compliance State law

Getting Ready for 2023: What Companies Can Do Now to Prepare for New Privacy Laws

Debevoise Data Blog

DECEMBER 16, 2021

These developments have companies understandably concerned about complying with a patchwork of state laws. The new privacy laws differ with respect to when these assessments must be conducted and whether and how results must be submitted. In addition, the Colorado Privacy Act (“ColoPA”) takes effect on July 1, 2023.

Data protection

Data protection Compliance Law Law

The Right of Publicity in Board Games

Brett Trout

MARCH 15, 2024

Unlike the right of privacy, which is protected by the Constitution and specific federal statutes, the right of publicity is a patchwork of state and common law. This means your rights to your name, image, and likeness vary depending on which state law applies. Plan on having expansions to your game?

Intellectual Property

Intellectual Property Lawsuit Compliance State law

The FTC’s Proposed Rulemaking Part 3 — Key Data Security Takeaways

Debevoise Data Blog

AUGUST 29, 2022

To prepare for potential FTC rulemaking regarding data security, businesses should continue to develop FTC compliance programs – including reasonable security safeguards and cybersecurity programs – by evaluating the FTC’s recent actions and guidance. In Part 3 of our Data Blog series, we focus on the FTC ANPR as it relates to data security.

Due diligence

Due diligence Compliance Software State law

Connecticut’s Next Generation Data Privacy Law

Debevoise Data Blog

MAY 23, 2022

Here, we highlight key aspects of the CTPA with a focus on the provisions that companies should consider in their compliance preparations. We also provide an overview of the CTPA’s enforcement mechanisms and explain how the CTPA modifies prior laws’ safe harbor with a nod towards prosecutorial discretion. CTPA § 4(b). CTPA § 12(a)(6).

Law

Law Law Compliance Attorney

Swapping Bots for Lawyers Via App: DoNotPay

Advocate's Studio

OCTOBER 15, 2018

Does DoNotPay violate state laws on the unauthorized practice of law? Browder certainly maintains that he has been addressing concerns and making updates to improve information and to ensure compliance with applicable laws. Good question and one that is not yet resolved.

Lawyer

Lawyer Hearing Court Legal advice

Utah Joins the Comprehensive State Privacy Law Club

Debevoise Data Blog

APRIL 29, 2022

Bottom Line : While the narrower scope of consumer rights under the UCPA may ease compliance burdens, companies will need to determine whether they will be able to take a standardized approach for offering consumer rights under the UCPA and State Privacy Laws, or whether they will need to address rights on a state-by-state basis.

Law

Law Law Data protection Attorney

Face Forward: Strategies for Complying with Facial Recognition Laws

Debevoise Data Blog

OCTOBER 18, 2021

State Laws Permitting but Regulating Collection and Use of Biometric Identifiers, including Facial Data. As noted, currently, only Illinois, Washington, and Texas have laws at the state level that aim to expressly and comprehensively address biometric privacy.

Law

Law Law Court Time-tracking

Cybersecurity in the Remote Work Era: AI, Employees and an Integrated Defense – With SessionGuardian’s Jordan Ellington and Oren Leib, and Katten’s Trisha Sircar (TGIR Ep. 211)

3 Geeks and a Law Blog

JULY 11, 2023

He announces SessionGuardian will offer free CLE courses on cybersecurity awareness and compliance. Firms should look beyond check-the-box compliance to make privacy and security central in their culture. Not all, I believe only one or two state laws in the US require it. But it’s really a commercial decision.

Law firm

Law firm Time-tracking Due diligence Attorney

Lessons Learned from 2024 and the Year Ahead in AI Litigation

Debevoise Data Blog

JANUARY 13, 2025

Although many of those complaints focused on the core copyright and trademark infringement theories present in the earliest AI lawsuits, plaintiffs have begun diversifying their claims to include false advertising and unfair competition, along with other state-law causes of action.

Litigation

Litigation Litigator Intellectual Property Defendant

The Tax Season Survival Guide for Law Firms

Lawmatics

APRIL 11, 2023

If an entity with more than one owner was formed as an LLC under state law, it is generally treated as a partnership for federal income tax purposes, and files Form 1065. The IRS penalizes filers for errors that could have been avoided through compliance with the tax rules, including deadlines. IRS Form 1040-ES. Late filings.

Law firm

Law firm e-filing Law Law

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

3 Geeks and a Law Blog

SEPTEMBER 5, 2023

So there’s corporate and IP and employment and all of that, and our own internal privacy compliance as well. And all of the other state laws have come out as a good example, privacy regulation that is much more specific and technical in nature. Most recently, I think CPRA. Can you elaborate a little bit on how pathfinders?

Time-tracking

Time-tracking Hearing Compliance e-records

European Data Protection Roundup – Q4 2024

Debevoise Data Blog

JANUARY 17, 2025

What to do : Businesses may want to start work to align ahead of the go live date, given the challenges of retrofitting compliance. In addition to the fine, the DPC issued a reprimand and an order for LinkedIn to bring its processing into compliance with the GDPR.

Data protection

Data protection Compliance Court State law

Are Electronic Signatures Legal?

Clio

MARCH 14, 2024

This federal law was designed to create a consistent standard in the regulation of electronic signatures in the US, as well as to help encourage cross-border transactions in certain circumstances (which are made easier when contracts and documents may be signed electronically). Consider the following when weighing your options: Compliance.

e-records

e-records e-filing Client Intake Court

What the ADPPA Means for U.S. Data Regulation

Debevoise Data Blog

JULY 12, 2022

Even if not enacted, its provisions are likely to influence a future federal privacy law. And, in many ways, the ADPPA may set a new minimum standard that will shape any state laws passed to fill the void left by the lack of a federal privacy law. We’ve previously written about the development of U.S. ADPPA § 302(a).

State law

State law Federal law Compliance Data protection

Cybersecurity in the Remote Work Era: AI, Employees and an Integrated Defense – With SessionGuardian’s Jordan Ellington and Oren Leib, and Katten’s Trisha Sircar (TGIR Ep. 211)

Legal Tech Monitor

JULY 11, 2023

He announces SessionGuardian will offer free CLE courses on cybersecurity awareness and compliance. Firms should look beyond check-the-box compliance to make privacy and security central in their culture. Not all, I believe only one or two state laws in the US require it. But it’s really a commercial decision.

Law firm

Law firm Time-tracking Due diligence Attorney

Where to Begin With Data Governance Frameworks and How Software Can Help (Brandon Wiebe, GC & Head of Privacy, Transcend)

Technically Legal

SEPTEMBER 28, 2023

Brandon’s company is a privacy platform that helps legal and compliance teams automate data compliance tasks. Brandon explains that most data privacy laws, like the General Data Protection Regulation (GDPR) in the EU and U.S.

Software

Software Data protection Compliance State law

Debevoise Authors 2022 Edition of the PLI Privacy Law Answer Book

Debevoise Data Blog

DECEMBER 1, 2021

Information Privacy Law. Topics in the 2022 Edition include: • An overview of U.S. A thorough overview of the book’s contents, this section provides a quick point of reference on several of the topics below with references to deeper discussions on each topic throughout the book. • Privacy Policies.

Law

Law Law Data protection Litigator

Does Your Company Have a Data Privacy Plan? Here’s Where to Start

Percipient

OCTOBER 4, 2023

If your company handles consumer data and are wondering where to start with a data privacy compliance plan, the latest episode of the Technically Legal Podcast has some great, practical advice for just that. Brandon explains that most data privacy laws , like the General Data Protection Regulation (GDPR) in the EU and U.S.

Data protection

Data protection Compliance State law Software

California Restricts Insurers’ Use of AI and Big Data

Debevoise Data Blog

JULY 5, 2022

Due Diligence Requirements : The Bulletin states that before utilizing any data collection method, fraud algorithm or rating/underwriting or marketing tool, insurers “must conduct their own due diligence to ensure full compliance with all applicable laws.”

Due diligence

Due diligence Compliance State law Litigator

New Privacy Legislation in the U.S.: The Patchwork Problem Grows

Debevoise Data Blog

JULY 9, 2021

Colorado has just adopted a brand-new data privacy law and Nevada has just significantly amended its law. These changes add rights for consumers, and compliance obligations for businesses, that take the U.S. further in the direction of European-style privacy law.

Data protection

Data protection Attorney Compliance State law

Spanish Data Protection Authority Issues Guidance on Data Spaces

Inside Privacy

MAY 12, 2023

In May 2023, the Spanish Supervisory Authority (“SA”) issued a detailed guidance paper on GDPR compliance in the context of data spaces. If you have questions about data spaces, we are happy to assist.

Data protection

Data protection Mediator Compliance State law

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

Legal Tech Monitor

SEPTEMBER 4, 2023

So there’s corporate and IP and employment and all of that, and our own internal privacy compliance as well. And all of the other state laws have come out as a good example, privacy regulation that is much more specific and technical in nature. Most recently, I think CPRA. Can you elaborate a little bit on how pathfinders?

Time-tracking

Time-tracking Hearing Compliance e-records

Recently Enacted AI Law in Colorado: Yet Another Reason to Implement an AI Governance Program

Debevoise Data Blog

JUNE 11, 2024

state law developments all reinforce the incentives for companies to adopt AI governance programs. Create a roadmap for compliance. Exemptions and Safe Harbors The Law provides carve-outs for various regulated entities. Moreover, violations are considered unfair trade practices under Colorado state law.

Law

Law Law Compliance Attorney

European Data Protection Roundup – November 2023

Debevoise Data Blog

DECEMBER 22, 2023

The intersection between GDPR compliance and AI has been the subject of detailed analysis in a previous blog post. Under EU law, vehicle manufacturers are legally obliged to provide certain third parties, such as repairers and spare parts distributors, with the necessary data to repair and maintain vehicles. UK and U.S.

Data protection

Data protection Time-tracking Compliance Machine learning

NIS2: Revised EU Cyber Rules for Critical Infrastructure

Debevoise Data Blog

NOVEMBER 28, 2022

In this Debevoise Data Blog post, we explore who NIS2 will affect, its key provisions and steps that businesses can consider to enhance their compliance programs in anticipation of the changes. Once implemented into Member State law, key obligations include: Incident Reporting: NIS2 establishes a two-stage reporting framework.

Compliance

Compliance State law Law Law

Treasury’s Post-2024 RFI Report on AI in Financial Services – Uses, Opportunities, and Risks

Debevoise Data Blog

JANUARY 23, 2025

For internal uses, respondents emphasized the growing role of AI in compliance, risk management, and operations, with generative AI in particular enhancing tasks like report creation, data analysis, and detecting anomalies in anti-money laundering and sanctions compliance. Inconsistent State Laws.

Compliance

Compliance Intellectual Property Due diligence e-records

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

3 Geeks and a Law Blog

JUNE 28, 2023

But I believe there are regulations coming out of Texas, Washington, and California, the California law might actually have sunsetted, earlier this year, but there are state laws coming up, kind of like data privacy regulations, which we often call a patchwork, because they’re slightly conflicting.

Litigation

Litigation Litigator Court e-discovery

A New Era of FTC Privacy and Cybersecurity Oversight: Top Ten Things Companies Should Know When Assessing FTC Compliance and Exposure

Debevoise Data Blog

JANUARY 14, 2022

Companies developing Federal Trade Commission (“FTC”) compliance programs, or under investigation by the FTC’s Bureau of Consumer Protection, should be aware of significant developments impacting the Commission’s regulatory authority and enforcement priorities.

Compliance

Compliance Court Litigator Litigation

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

Legal Tech Monitor

JUNE 28, 2023

But I believe there are regulations coming out of Texas, Washington, and California, the California law might actually have sunsetted, earlier this year, but there are state laws coming up, kind of like data privacy regulations, which we often call a patchwork, because they’re slightly conflicting.

Litigation

Litigation Litigator Judge Court

Legal Blogging in the AI Era: Best Practices for 2025

The State of State Law Cybersecurity Requirements

Webinars

Trending Sources

Justia Legal Guides: International Law Center

Webinars

What If I Don’t Want to Litigate? Law Degree Alternatives: Exploring Unconventional Career Paths

EU Rules Restricting the International Transfers of Non-Personal Data

Webcast – Cybersecurity and AI Whistleblowers

EU Data Act Regulates Business-to-Business Contracts Relating to Access and Use of Data

Law Firm Coronavirus Response Centers

Face Forward Part 2: Proposed Legislation and Strategies for Compliant Use of Facial Recognition

The SEC Adopts Significant Cybersecurity Amendments to Reg S-P

Virginia Enacts Direct-to-Consumer Genetic Privacy Law as Numerous Other States Introduce Similar Bills

Getting Ready for 2023: What Companies Can Do Now to Prepare for New Privacy Laws

The Right of Publicity in Board Games

The FTC’s Proposed Rulemaking Part 3 — Key Data Security Takeaways

Connecticut’s Next Generation Data Privacy Law

Swapping Bots for Lawyers Via App: DoNotPay

Utah Joins the Comprehensive State Privacy Law Club

Face Forward: Strategies for Complying with Facial Recognition Laws

Cybersecurity in the Remote Work Era: AI, Employees and an Integrated Defense – With SessionGuardian’s Jordan Ellington and Oren Leib, and Katten’s Trisha Sircar (TGIR Ep. 211)

Lessons Learned from 2024 and the Year Ahead in AI Litigation

The Tax Season Survival Guide for Law Firms

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

European Data Protection Roundup – Q4 2024

Are Electronic Signatures Legal?

What the ADPPA Means for U.S. Data Regulation

Cybersecurity in the Remote Work Era: AI, Employees and an Integrated Defense – With SessionGuardian’s Jordan Ellington and Oren Leib, and Katten’s Trisha Sircar (TGIR Ep. 211)

Where to Begin With Data Governance Frameworks and How Software Can Help (Brandon Wiebe, GC & Head of Privacy, Transcend)

Debevoise Authors 2022 Edition of the PLI Privacy Law Answer Book

Does Your Company Have a Data Privacy Plan? Here’s Where to Start

California Restricts Insurers’ Use of AI and Big Data

New Privacy Legislation in the U.S.: The Patchwork Problem Grows

Spanish Data Protection Authority Issues Guidance on Data Spaces

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

Recently Enacted AI Law in Colorado: Yet Another Reason to Implement an AI Governance Program

European Data Protection Roundup – November 2023

NIS2: Revised EU Cyber Rules for Critical Infrastructure

Treasury’s Post-2024 RFI Report on AI in Financial Services – Uses, Opportunities, and Risks

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

A New Era of FTC Privacy and Cybersecurity Oversight: Top Ten Things Companies Should Know When Assessing FTC Compliance and Exposure

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

Stay Connected