Perkins on Privacy
Perkins on Privacy
Perkins on Privacy keeps you informed about the latest developments in privacy and data security law. Our insights are provided by Perkins Coie's Privacy & Security practice, recognized by Chambers as a leading firm in the field.
SEC Dismisses Cyber Disclosure Case Against SolarWinds and CISO
Key Takeaways
- The SEC’s agreement with defendants to dismiss, with prejudice, its case against SolarWinds Corporation (SolarWinds) and its chief information security officer (CISO) signals a retreat from aggressive, novel enforcement theories in cybersecurity disclosure cases.
- Although technical cybersecurity violations without investor harm
President Trump Approves Short-Term Renewal of CISA 2015
Congress included in the appropriations bill of November 12, 2025, an extension of the Cybersecurity Information Sharing Act of 2015 (CISA 2015), 6 U.S.C. §§ 1501–10, through January 30, 2026.
House Bill Introduced to Shield the U.S. From Cybersecurity Risks Posed by Quantum Computing
Congress members have proposed legislation that would introduce new measures to enhance the United States’ cybersecurity resilience in the face of advancing quantum computing capabilities.
Preparing for the California Cyber Audit Regulations
On September 23, 2025, the California Privacy Protection Agency confirmed that their cyber audit regulations will at long last go into effect on January 1, 2026.
You can be forgiven for losing track since these were first proposed in September 2023, but now is the time to start considering how they will apply to your company and budgeting for that impact.
2025 Breach Notification Law Update
State Updates, Security Mandates, and the Federal Regulatory Horizon
“A New Era of Privacy Enforcement”: CPPA Signals Intensified Oversight while Advancing New Regulations
150 consumer complaints per week. A consortium of privacy regulators. “Hundreds of open investigations.”
California, Colorado, and Connecticut Launch Multi-State Investigative Sweep Focusing on Global Privacy Control
In a major move signaling the growing power of multi-state cooperation on privacy enforcement, the California Privacy Protection Agency (CPPA), alongside the Attorneys General of California, Colorado, and Connecticut (collectively, the “Coalition”), announced an investigative sweep targeting businesses that fail to honor
Privacy in Focus: California’s Legislative Session Closes with Major Changes
California’s legislature has once again taken center stage in the national privacy conversation, passing a flurry of privacy bills during a marathon session that stretched into the night of September 12.
CPPA Approves Cybersecurity, Automated Decisionmaking, and Risk Assessment Regulations
After years of drafting, discussions, and debates, the California Privacy Protection Agency (CPPA) Board reached a significant milestone in its efforts to bring to fruition regulations that have been in discussion by the CPPA Board for several years.
Mid-Year Recap: State Consumer Privacy Laws
With 2025 more than half over and many state legislatures adjourned for the year, we look back at significant legislative developments concerning state comprehensive consumer privacy laws.
Connecticut Pierces the GLBA Veil in Overhauling its Omnibus Privacy Law
The Connecticut Governor signed SB 1295 into law on June 25, 2025, again amending the Connecticut Data Privacy Act (CTDPA).
Coast to Coast: Privacy Enforcement Heats Up with Healthline and TicketNetwork Settlements
As the 2025 summer heat continues and as state privacy laws continue to mature, enforcement actions are beginning to shape the compliance landscape for businesses nationwide—from the coast of California to the shores of Connecticut.
The Slow Death of the CFPB Open Banking Rule?
Don’t Mind If I Do: Montana Says Hands Off Neural Data
In May 2025, Montana enacted Senate Bill 163 (SB 163), amending that state’s Genetic Information Privacy Act (MGIPA) to include protections for neurotechnology data—namely, data collected from the activity of the central or peripheral nervous system.