Perkins on Privacy
Perkins on Privacy
Perkins on Privacy keeps you informed about the latest developments in privacy and data security law. Our insights are provided by Perkins Coie's Privacy & Security practice, recognized by Chambers as a leading firm in the field.
SEC Dismisses Cyber Disclosure Case Against SolarWinds and CISO
Key Takeaways
- The SEC’s agreement with defendants to dismiss, with prejudice, its case against SolarWinds Corporation (SolarWinds) and its chief information security officer (CISO) signals a retreat from aggressive, novel enforcement theories in cybersecurity disclosure cases.
- Although technical cybersecurity violations without investor harm
President Trump Approves Short-Term Renewal of CISA 2015
Congress included in the appropriations bill of November 12, 2025, an extension of the Cybersecurity Information Sharing Act of 2015 (CISA 2015), 6 U.S.C. §§ 1501–10, through January 30, 2026.
House Bill Introduced to Shield the U.S. From Cybersecurity Risks Posed by Quantum Computing
Congress members have proposed legislation that would introduce new measures to enhance the United States’ cybersecurity resilience in the face of advancing quantum computing capabilities.
Preparing for the California Cyber Audit Regulations
On September 23, 2025, the California Privacy Protection Agency confirmed that their cyber audit regulations will at long last go into effect on January 1, 2026.
You can be forgiven for losing track since these were first proposed in September 2023, but now is the time to start considering how they will apply to your company and budgeting for that impact.
2025 Breach Notification Law Update
State Updates, Security Mandates, and the Federal Regulatory Horizon
DOJ Posts New FAQ for the “Bulk Data” Rule
The U.S. Department of Justice (DOJ) “Data Security Program” (DSP), also known as the “Sensitive Data Rule” or “Bulk Data Rule,” has prompted numerous questions about its scope and application.
Salt Typhoon Cyberattacks: Updated Threat Assessment and Recommended Mitigations
Key Takeaways
FTC Files New “AI Washing” Case
On August 25, 2025, the Federal Trade Commission filed a complaint against Air AI, alleging the company and its owners made overblown claims about the availability and capabilities of its artificial intelligence (AI) tools to replace human sales representatives, as well as deceptive claims about the busi
Connecticut Pierces the GLBA Veil in Overhauling its Omnibus Privacy Law
The Connecticut Governor signed SB 1295 into law on June 25, 2025, again amending the Connecticut Data Privacy Act (CTDPA).
Free Speech Coalition v. Paxton: What the Supreme Court’s Age Verification Decision Could Mean for All Websites—Not Just Adult Ones
On June 27, 2025, the United States Supreme Court weighed in on the ongoing debate about age verification requirements for websites, holding that it is constitutional for a state to require websites that have a significant portion of adult content to implement commercial age verification systems.
The Slow Death of the CFPB Open Banking Rule?
Montana’s Consumer Data Privacy Law Update: SB 297’s Sweeping Changes at a Glance
FTC Enforcement Priorities Take Shape With Resource Cuts in Mind
Perkins Coie partner Janis Kestenbaum says the FTC is keeping the pressure on strong consumer protection enforcement despite the Trump administration’s deregulatory agenda.
Privacy Law Recap 2024: Data Security
Continued cyberthreats drove expanded data security and breach notification requirements in 2024. Although sectors deemed high-risk saw significant activity, we also saw proposed regulations that stand to have a significant impact on a wide swath of private companies in the year to come.
This Update outlines highlights of data security law in 2024.