As artificial intelligence (AI), particularly generative AI, becomes increasingly woven into our professional and personal lives—from personalized travel itineraries to reviewing resumes to summarizing investigation notes and reports—questions about who or what controls our data and how it’s used are ever present. AI systems survive and thrive on information and that intersection of AI and
Jackson Lewis P.C. Blogs
Latest from Jackson Lewis P.C.
AI-Related Job Impacts Clarity Act
A new Senate bill, the AI-Related Job Impacts Clarity Act (S. 3108), would create a federal reporting framework for how artificial intelligence (AI) is affecting employment in the United States.
The aim is to produce timely, public data on AI-driven layoffs, hiring, unfilled roles, and retraining, with the Department of Labor (through the Bureau of
When Big Doesn’t Mean Bulletproof: The Importance of Third-Party Service Provider Due Diligence
Leaders charged with safeguarding data privacy and cybersecurity often assume that size equates to security—that large, well-resourced organizations must have airtight defenses against cyberattacks and data breaches. It’s a natural assumption: mature enterprises tend to have robust policies, advanced technology, and deep security teams. Yet, as recent events remind us, even the biggest organizations can
Is a CCPA “Risk Assessment” Required When Using Dashcams?
Key Takeaways
- Outlines basic steps to determine whether a business may need to perform a risk assessment under the California Consumer Privacy Act (CCPA) in connection with its use of dashcams
- Provide a resource for exploring the basic requirements for conducting and reporting risk assessments
If you have not reviewed the recently approved, updated CCPA
AI Adoption Surges Among S&P 500 Companies—But So Do the Risks
According to Cybersecurity Dive, artificial intelligence is no longer experimental technology as more than 70% of S&P 500 companies now identify AI as a material risk in their public disclosures, according to a recent report from The Conference Board. In 2023, that percentage was 12%.
The article reports that major companies are no longer
Using Patient Photos in Marketing? OCR Settlement Highlights HIPAA Compliance Requirements
Businesses across many industries naturally want to showcase their satisfied customers. Whether it’s a university featuring successful graduates, a retailer highlighting happy shoppers, or a healthcare facility showcasing thriving patients, these real-world testimonials can be powerful marketing tools. However, when it comes to healthcare providers subject to HIPAA, using patient images and information for promotional
AI Notetaking Tools Under Fire: Lessons from the Otter.ai Class Action Complaint
The rapid adoption of AI notetaking and transcription tools has transformed how organizations (and individuals) capture, analyze, and share meeting and other content. But as these technologies expand, so too do the legal and compliance risks. A recent putative class action lawsuit filed in federal court in California against Otter.ai, a leading provider of AI
Harnessing AI Under ERISA: A Compliance and Oversight Guide for Retirement and Health Plan Fiduciaries
It is increasingly evident that artificial intelligence (AI) is reshaping all facets of business, and its impact on employee benefit plans is no exception. From automating plan administration to personalizing participant communications, AI introduces both new opportunities and new responsibilities for those overseeing Employee Retirement Income Security Act of 1974 (ERISA)-covered retirement and health plans
What Are the Immigration Impacts in Budget Reconciliation Bill H.R. 1?
The House of Representatives passed budget reconciliation bill H.R. 1, entitled “One Big Beautiful Bill Act,” that includes significant changes to the immigration fee structure. As the Senate prepares its version of the reconciliation bill, many of the immigration-related provisions are unchanged from the one passed by the House.
H.R. 1 aims to initiate
CCPA Compliance Reminder: Annual Update Requirement for Online Privacy Policies
For businesses subject to the California Consumer Privacy Act (CCPA), a compliance step often overlooked is the requirement to annually update the businesses online privacy policy. Under Cal. Civ. Code § 1798.130(a)(5), CCPA-covered businesses must among other things update their online privacy policies at least once every 12 months. Note that CCPA regulations establish content