Perkins on Privacy
Perkins on Privacy
Perkins on Privacy keeps you informed about the latest developments in privacy and data security law. Our insights are provided by Perkins Coie's Privacy & Security practice, recognized by Chambers as a leading firm in the field.
SEC Dismisses Cyber Disclosure Case Against SolarWinds and CISO
Key Takeaways
- The SEC’s agreement with defendants to dismiss, with prejudice, its case against SolarWinds Corporation (SolarWinds) and its chief information security officer (CISO) signals a retreat from aggressive, novel enforcement theories in cybersecurity disclosure cases.
- Although technical cybersecurity violations without investor harm
Preparing for the California Cyber Audit Regulations
On September 23, 2025, the California Privacy Protection Agency confirmed that their cyber audit regulations will at long last go into effect on January 1, 2026.
You can be forgiven for losing track since these were first proposed in September 2023, but now is the time to start considering how they will apply to your company and budgeting for that impact.
2025 Breach Notification Law Update
State Updates, Security Mandates, and the Federal Regulatory Horizon
FTC Files New “AI Washing” Case
On August 25, 2025, the Federal Trade Commission filed a complaint against Air AI, alleging the company and its owners made overblown claims about the availability and capabilities of its artificial intelligence (AI) tools to replace human sales representatives, as well as deceptive claims about the busi
VPPA Litigation Update: California’s Ruling in Video Game Context, D.C. Circuit’s Take on Consumer Definition
Can buying a video game on a website using pixel technology make you a Video Privacy Protection Act (VPPA) plaintiff?
Texas Broadens State’s TCPA Rules and Increases Litigation Risks for Marketers
Texas has enacted amendments to its state version of the federal Telephone Consumer Protection Act (Tex. Bus. & Comm.
Free Speech Coalition v. Paxton: What the Supreme Court’s Age Verification Decision Could Mean for All Websites—Not Just Adult Ones
On June 27, 2025, the United States Supreme Court weighed in on the ongoing debate about age verification requirements for websites, holding that it is constitutional for a state to require websites that have a significant portion of adult content to implement commercial age verification systems.
Can Providers Be Sued for Mistaken CSAM Reports? Maybe, Says New Ruling
Can a communications provider be held liable when it reports to the National Center for Missing and Exploited Children (NCMEC) an image the provider believes to be child sexual abuse material based on signals provided by NCMEC?
Montana’s Consumer Data Privacy Law Update: SB 297’s Sweeping Changes at a Glance
CPPA Signals Significant Revisions Ahead
Going into the Friday, April 4, 2025, meeting, the CPPA seemed poised to move forward far-reaching privacy regulations on RAs, cybersecurity audits, and ADMT.
Privacy Law Recap 2024: Class Actions and Mass Arbitrations
Massachusetts Supreme Court Decision Raises Bar for Website “Wiretap” Suits
In recent months, a wave of lawsuits has swept across the nation, targeting websites for allegedly violating state wiretapping laws through their use of tracking software.
Fasten Your Seatbelts: CPPA Proposes Rules on Automated Decision-Making and Cybersecurity Audits and Finalizes Data Broker Regulations
After much anticipation, on November 8, the California Privacy Protection Agency (CPPA) Board voted to advance proposed regulations for insurance, cybersecurity audits, risk assessments, and automated decision-making technology (ADMT) to formal rulemaking.
FTC and State Coalition Settle Data Breach Cases with Marriott
