When HHS Secretary Robert F. Kennedy, Jr. announced on September 3, 2025, that the Department would launch an aggressive crackdown on information blocking, it signaled a turning point in federal health IT policy. For years, patients, innovators, and providers alike have complained that electronic health information (EHI) was locked behind unnecessary barriers, whether technical,
Australia: Scraping the barrel – when data scraping breaches the Privacy Act
What is data scraping?
Data scraping is an automated process through which computer programs extract vast amounts of data from the internet at a faster rate than manual data collection methods.
Some businesses scrape data for internal purposes, such as generating leads, or to create products and services available for public use, such as price
Colorado Gives Businesses Breathing Room Before AI Act Takes Effect
Colorado legislators have approved a five-month delay for the implementation of the Colorado Artificial Intelligence Act (the Act), moving the start date from Feb. 1, 2026, to June 30, 2026.
The decision follows a special legislative session called because of concerns stemming from compliance costs, industry lobbying, and fiscal impacts on businesses and the state.
U.S. Federal Court Allows CIPA Class Action Against AI Customer Service Provider to Proceed
On August 11, 2025, the U.S. District Court for the Northern District of California denied a motion to dismiss a California Invasion of Privacy Act (CIPA) class action lawsuit filed against ConverseNow Technologies, Inc. ConverseNow offers restaurants an AI-powered virtual assistant to process and manage customer phone calls, drive-thru orders, and text messaging conversations. In
Dark Skies for Small Businesses Caught in Social Media Net
A new Mississippi law, known as the Walker Montgomery Protecting Children Online Act, has prompted several companies to block Mississippi IP addresses from accessing their platforms. In fact, social media company Bluesky posted a response to the enactment of the law on its website. Bluesky explained the decision to make their app unavailable to Mississippi
Pseudonymised data could fall outside data protection law – introducing the “means reasonably likely” assessment
The Court of Justice of the European Union (CJEU) has delivered its judgment on case C 413/23 P European Data Protection Supervisor (EDPS) v Single Resolution Board (SRB). The CJEU has confirmed that pseudonymised data will not be personal data in all cases. This will be a welcome confirmation for innovative uses of data, including training AI models. The question
New CCPA Rules: What Businesses Need to Know
Attention Privacy World Readers! Do you need CLE? We have some options for you!
September 17, 2025, at 1:00 pm ET
Join Julia Jacobson, Partner (New York), and Kyle Dull, Senior Associate (New York), for “Survey of U.S. Data Privacy Laws,” a Strafford Live CLE Webinar.
For more information: https://www.sp-04.com/r/products/tllspdzsna
(We have a limited number of complimentary passes. Please contact julia.jacobson@squirepb.com by September 12.)
October 8,
AI Notetaking Tools Under Fire: Lessons from the Otter.ai Class Action Complaint
The rapid adoption of AI notetaking and transcription tools has transformed how organizations (and individuals) capture, analyze, and share meeting and other content. But as these technologies expand, so too do the legal and compliance risks. A recent putative class action lawsuit filed in federal court in California against Otter.ai, a leading provider of AI
State Privacy and AI Law Updates – A Live Legal Briefing You Won’t Want to Miss
Date: September 10, 2025 at 12:00 PM EDT
Format: Live Video
Duration: 1 Hour
Description: With limited federal regulation on consumer protection, data privacy, and AI, states are stepping in, creating a patchwork of laws that vary widely in scope and enforcement. While California and Colorado set high standards, other states like Maryland, Minnesota, and Oregon are