A recent decision by Hungary’s Data Protection Authority (NAIH) offers a deceptively modest outcome, a €5,000 fine, but sends a much stronger signal on the evolving expectations around data minimization under the GDPR and ultimately, the US State Privacy laws.
The decision reflects a strict, controller-centric approach, making clear that…
Continue Reading Data Minimization Under Scrutiny: Hungarian DPA Decision Signals Risk for U.S. EmployersGDPR Processing Begins at the Data Request: What a Spanish Supreme Court Decision Signals for U.S. Privacy Compliance
Data processing begins even before the data is received. A recent ruling of the Supreme…
Continue Reading GDPR Processing Begins at the Data Request: What a Spanish Supreme Court Decision Signals for U.S. Privacy ComplianceWhen AI Meets the FCRA: What the Eightfold Class Action Means for Employers and HR Technology Providers
An estimated 87% of companies now using AI-driven tools in their recruitment processes, and that…
Continue Reading When AI Meets the FCRA: What the Eightfold Class Action Means for Employers and HR Technology ProvidersAmong US states, California is the only one that treats employees as full “consumers,” providing…
Continue Reading Employee Privacy Rights Under CCPA: CalPrivacy Calls for CommentsSubscribe to Privacy Compliance & Data Security
The Latest
Your Website’s Pixels May Be Wiretaps: 10 Questions Every Business Should Ask About CIPA
The plaintiffs’ bar has been ramping up lawsuits under the California Invasion of Privacy Act (CIPA) and federal and state wiretapping statutes for years, and the wave is not receding.
Continue Reading Your Website’s Pixels May Be Wiretaps: 10 Questions Every Business Should Ask About CIPAThe plaintiffs’ bar has been ramping up lawsuits for alleged violations of state and federal wiretapping laws (e.g., California CIPA, Florida SCA, Federal ECPA) for many months now. Historically, the…
Continue Reading Your Cookie Banner Might Be Working Against You: Two Compliance Traps to AvoidFor Whom the Discovery Tolls: Your Privacy Notice May Help Time-Bar Website Wiretapping Claims
In a recent decision out of the Northern District of California, the court held that a website operator’s privacy policy, even one presented in a passive, browse wrap-style hyperlink, can…
Continue Reading For Whom the Discovery Tolls: Your Privacy Notice May Help Time-Bar Website Wiretapping ClaimsPlatform liability after Russmedia: Italian DPA Fines Platform for Allowing Phone Number in Sex Work Ads Without Consent
By Odia Kagan
How far does a platform’s responsibility extend when a user posts someone else’s personal data in a classified ad, especially one involving sensitive subject matter like sex…
Continue Reading Platform liability after Russmedia: Italian DPA Fines Platform for Allowing Phone Number in Sex Work Ads Without ConsentA new federal court decision denied a motion to dismiss in a case alleging Federal Electronic Communications Privacy Act (ECPA) claims arising from the sharing of health information through a…
Continue Reading Court Allows Sharing of Medical Information Claim to Proceed Under ECPAFTC’s New Strategic Plan: Reports of the Death of FTC Privacy Enforcement Have Been Greatly Exaggerated
The FTC just published its Strategic Plan for FY 2026–2030. What does it actually mean for privacy compliance? Quite a lot, as it turns out. Here’s a breakdown.
Telemarketing…
Continue Reading FTC’s New Strategic Plan: Reports of the Death of FTC Privacy Enforcement Have Been Greatly ExaggeratedWhat Hospitality HR, Operations and Leadership Need to Know About Data Privacy and AI
As hospitality businesses increasingly rely on digital tools, automation, biometrics, and AI‑enabled services, their collection and use of personal data has expanded significantly. With that expansion comes a corresponding rise…
Continue Reading What Hospitality HR, Operations and Leadership Need to Know About Data Privacy and AIOn March 18, 2026, Senator Marsha Blackburn (R-TN) introduced the TRUMP AMERICA AI Act: formally, The Republic Unifying Meritocratic Performance Advancing Machine Intelligence by Eliminating Regulatory Interstate Chaos Across…
Continue Reading TRUMP America AI Act Bill Sets Direction for Future US AI RegulationIn the wake of a number of lawsuits against AI companies regarding the possible involvement of their platforms in encouraging suicide and other criminal behavior, including homicide, California Senator Steve…
Continue Reading New Chatbot Toy Moratorium Bill Raises Questions on Chatbot RegulationsAbout this Blog
There is a complex web of federal and state statutes and regulations that govern the gathering, use, and retention of private information. Yet many companies and institutions often have only a vague understanding of their rights, obligations, and potential liability. Fox Rothschild attorneys have the necessary experience to address investigations, claims, and lawsuits alleging violations in the privacy arena.