On May 25, 2026, a new Memorandum of Understanding between the UK AI Security Institute and the Australian AI Safety Institute was announced, aimed at strengthening bilateral cooperation on AI security and safety.Continue Reading ›
Privacy & Information Security Law Blog
Global Privacy and Cybersecurity Law Updates and Analysis
Latest from Privacy & Information Security Law Blog
FTC Announces Settlements With Three Marketing Firms Over Allegations of Deceptive Statements About Active Listening AI-Powered Services
On May 21, 2026, the FTC announced settlements with three marketing firms, requiring them to pay a total of $930,000 to settle allegations that they deceived customers by falsely claiming to offer an AI-powered service that could target localized ads based on conversations captured from consumers’ smart devices, and that consumers had opted into such…
Cybersecurity Authorities Issue Joint Guidance on the Adoption of Agentic AI Systems
On May 1, 2026, the cybersecurity authorities of Australia, Canada, New Zealand, United States and the United Kingdom published joint guidance on the secure adoption of agentic artificial intelligence systems.Continue Reading ›
Colorado AI Act Amended and Effective Date Delayed
On May 14, 2026, Colorado Governor Polis signed SB 189, which revises Colorado’s original AI law and delays the effective date from June 30, 2026, to January 1, 2027, while significantly scaling back its original requirements.Continue Reading ›
European Commission Releases Draft Guidelines on High-Risk AI Under the EU AI Act
On May 19, 2026, the European Commission published draft guidelines on the classification of high-risk AI systems under the EU AI Act.Continue Reading ›
Texas AG Announces Lawsuit Against Netflix for Alleged Misrepresentations Regarding User Data
On May 11, 2026, the Texas Attorney General announced a lawsuit against Netflix, Inc. under the Texas Deceptive Trade Practices Act, alleging that the company collected personal information, including that of children, based on misleading and deceptive disclosures and engaged in dark patterns by designing its platform to be addictive.Continue Reading ›
UK ICO Recommends Targeted Changes to PECR Rules for Online Advertising
On May 18, 2026, the UK Information Commissioner’s Office announced that it had provided advice to the UK government on possible changes to the Privacy and Electronic Communications Regulations in relation to online advertisingContinue Reading ›
California AG Announces Record $12.75M Settlement with GM over CCPA Data Minimization and Purpose Limitation Violations
On May 8, 2026, the California Attorney General announced a record $12.75 million settlement with General Motors to resolve allegations that it illegally sold Californians’ location and driving behavior data without adequate notice or consent, in violation of the California Consumer Privacy Act and California’s Unfair Competition Law.Continue Reading ›
Illinois Department of Human Rights Issues Regulations Governing the Use of AI in Employment Decisions
Illinois Department of Human Rights recently issued regulations governing the use of Artificial Intelligence (AI) in making employment decisions.Continue Reading ›
Delta Dental Agrees to $2.25 Million Settlement with NYDFS Over MOVEit Data Breach Response
On April 30, 2026, the New York State Department of Financial Services announced a $2.25 million settlement with Delta Dental following a cybersecurity incident that led to violations of the agency’s Cybersecurity Regulation.Continue Reading ›