California AG Rob Bonta issued letters to eight large pharmacy chains and five health data companies reminding the companies of their obligations to comply with California’s Confidentiality of Medical Information Act (CMIA) and new requirements from Assembly Bill (AB 352), that went into effect on July 1, 2024. The letters remind the pharmacies that the CMIA prohibits…

Read More

The FTC and Los Angeles District Attorney’s Office entered into a settlement with NGL Labs, LLC, and two of its co-founders (collectively, “NGL”), to resolve allegations that NGL violated the FTC Act, the Restore Online Shoppers’ Confidence Act, the Children’s Online Privacy Protection Rule (“COPPA Rule”), and California consumer protection laws by making false and deceptive claims in…

Read More

Arkansas AG Tim Griffin has filed a lawsuit against PDD Holdings Inc. and WhaleCo Inc., d/b/a Temu, alleging that Temu’s popular online shopping app operates as malware that is designed to gain unauthorized access to users’ data in violation of the state’s Deceptive Trade Practices Act and the Personal Information Protection Act. According to the complaint,…

Read More

Texas AG Ken Paxton has launched an initiative focused on “aggressive enforcement of Texas privacy laws,” and tasked a large team within the office’s Consumer Protection Division with ramping up enforcement of the state’s Data Privacy and Security Act (DPSA), Identify Theft Enforcement and Protection Act, Data Broker Law, and Biometric Identifier Act, as well…

Read More

Both the Texas and New Jersey AG offices have made moves to bolster their regulatory enforcement teams. In Texas, recent developments indicate that the AG’s office has increased its recruitment of privacy attorneys for the newly formed Data Privacy and Security Team, tasked with enforcing the Texas Data Privacy and Security Act (TDPSA). Enacted on…

Read More