Data Privacy + Security Insider

Subscribe via RSS
Visit Blog

Blog Authors

Guest Contributor
Kevin Daly
Robinson+Cole's Data Privacy + Cybersecurity Team
Kathleen Dion
Jennifer Driscoll
Jennifer Driscoll
Conor Duffy
Linn Foster Freedman
Kathleen Healy
Daniel Lass
Sarah Mahon
Seth Orkand
Kathleen Porter
Kathryn Rattigan

Latest from Data Privacy + Security Insider

Novelty is a core requirement for any invention to be patentable. Put simply, your invention generally cannot have been publicly disclosed before the patent application’s effective filing date. In the United States, 35 U.S.C. § 102 includes a one-year grace period for certain public disclosures made before you file—many other jurisdictions do not have this

On February 5, 2026, a Massachusetts federal judge issued an order staying information-sharing between the IRS and ICE, as well as  a preliminary injunction prohibiting Kristi Noem, Secretary of the Department of Homeland Security, ICE, acting-Director Todd Lyons, and any DHS and ICE agent from “inspecting, viewing, using, copying, distributing, relying on, or otherwise acting

Until California’s legislature provides clearer guardrails, companies should expect continued class action activity under the California Invasion of Privacy Act (CIPA), targeting common website tracking technologies. Plaintiffs’ firms are actively testing how far this decades-old statute extends in the modern web environment, and courts have not reached a consensus. That uncertainty creates real litigation risk

In January, the General Services Administration’s (GSA) Office of the Chief Information Security Officer issued a new procedural guide, CIO-IT Security-21-112 Rev. 1, that sets expectations for protecting Controlled Unclassified Information (CUI) when it resides in nonfederal contractor systems. Although the document is internal guidance, it creates an approval framework that may soon determine

California resident Nathaniel Bee filed a lawsuit this week alleging that the ATP Tour’s website used third-party tracking technology that captured details on how visitors interacted with the site, including what content they viewed; how they navigated the website; and what type of device they used, without user consent in violation of the California Invasion

Security researchers at Huntress Labs have identified a vulnerability in SolarWinds’s Web Help Desk that threat actors are exploiting to allow them to execute code remotely.

The vulnerability was listed on the Cybersecurity and Infrastructure Security Agency’s known exploited vulnerabilities last week, and SolarWinds issued a warning, classifying it as a “critical severity” for users

On January 27, 2026, the Federal Trade Commission (FTC) signaled the agency’s reduced appetite for regulating artificial intelligence. At the Privacy State of the Union Conference in Washington, DC, FTC Bureau of Consumer Protection Director Chris Mufarrige stated there is “no appetite for anything AI-related” in the FTC’s rulemaking pipeline, while adding that the agency

Florida website tracking litigation is gaining momentum this year, with plaintiffs increasingly invoking the Florida Security of Communications Act (FSCA) to challenge common website analytics and advertising tools, especially where those tools allegedly capture and share sensitive user communications. The FSCA is an old state wiretap statute now aimed at modern website tracking. The FSCA