Compliance, Information and State law

Legal Blogging in the AI Era: Best Practices for 2025

Justia Legal Marketing & Technology blog

MARCH 4, 2025

Craft Engaging and Informative AI-Assisted Content Legal blog posts need to be well-researched, clear, and engaging to establish credibility and keep readers interested. However, while AI is a great tool, its essential to review all AI-generated content for accuracy, ethical considerations, and compliance with legal industry standards.

Estate planning

Estate planning Time-tracking Analytics Legal Database

The State of State Law Cybersecurity Requirements

Debevoise Data Blog

SEPTEMBER 30, 2021

Almost everyone working in cybersecurity compliance is aware that each U.S. state has its own set of breach notification requirements. What is less known is that many of these states also impose substantive cybersecurity requirements. Since then, approximately 23 states and Washington, D.C. Code Ann. § See 201 Mass.

State law

State law Law Law Compliance

European Data Protection Roundup – Q4 2024

Debevoise Data Blog

JANUARY 17, 2025

The decision considered that although pseudonymized information is personal data in the hands of the original data controller, it may not be personal data in the hands of third parties if they cannot identify individuals from it. The UK Upper Tribunal did not consider the provisions under the UK GDPR.

Data protection

Data protection Compliance Court State law

Webinars

Prep with Purpose: How to Build Better Trial Binders

MORE WEBINARS

Privacy Law: Status of Legal Practice Area in 2025

Martindale-Avvo

APRIL 30, 2025

In 1974, a pair of laws protected student academic records and put guardrails on the federal governments collection and use of personal information. These few federal laws apply to only some kinds of information. In recent years, most of the advances in privacy law have happened at the state level.

Law

Law Law Federal law Data protection

What If I Don’t Want to Litigate? Law Degree Alternatives: Exploring Unconventional Career Paths

The Barrister

MARCH 11, 2025

However, only 51% were working in law firms. Those finding were based from the Class of 2018 Study of Law School Employment & Satisfaction report; the information was collected from 1,477 graduates of ABA-accredited law schools in the United States between September and December 2021. 2 The ABA reported 7.6%

Litigator

Litigator Litigation Dispute resolution Mediator

Cybersecurity in the Remote Work Era: AI, Employees and an Integrated Defense – With SessionGuardian’s Jordan Ellington and Oren Leib, and Katten’s Trisha Sircar (TGIR Ep. 211)

3 Geeks and a Law Blog

JULY 11, 2023

Ellington explains that the impetus for creating SessionGuardian came from working with a law firm to secure their work with eDiscovery vendors and contract attorney staffing agencies. Ellington realized the technology could provide secure access to sensitive information from anywhere.

Law firm

Law firm Time-tracking Due diligence Attorney

Lessons Learned from 2024 and the Year Ahead in AI Litigation

Debevoise Data Blog

JANUARY 13, 2025

Digital Millennium Copyright Act (DMCA) claims typically argue that AI developers remove or omit copyright management information (CMI) like author names or copyright notices in their datasets and in generative AI outputs that utilize the copyrighted works in question. Meeting the DMCAs Statutory Requirements.

Litigator

Litigator Litigation Intellectual Property Defendant

Can You Practice Law in Multiple States? What Lawyers Should Know

Rocket Matter

MAY 21, 2025

However, many lawyers are interested in building a multi-state legal practice, whether for personal, professional, or financial reasons. Can you practice law in multiple states ? Fortunately, with the right information and the latest technology, you can grow your practice beyond your states borders.

Lawyer

Lawyer Law Law Time-tracking

Where to Begin With Data Governance Frameworks and How Software Can Help (Brandon Wiebe, GC & Head of Privacy, Transcend)

Technically Legal

SEPTEMBER 28, 2023

Brandon’s company is a privacy platform that helps legal and compliance teams automate data compliance tasks. Brandon explains that most data privacy laws, like the General Data Protection Regulation (GDPR) in the EU and U.S.

Software

Software Data protection Compliance State law

EU Rules Restricting the International Transfers of Non-Personal Data

Inside Privacy

FEBRUARY 1, 2024

This regulation is directly applicable in all EU Member States since May 28, 2019. Note that the data localization prohibition in this Regulation applies to individual EU Member States’ laws; it does not preclude the EU from implementing data localization requirements.

Intellectual Property

Intellectual Property State law Court Compliance

Does Your Company Have a Data Privacy Plan? Here’s Where to Start

Percipient

OCTOBER 4, 2023

If your company handles consumer data and are wondering where to start with a data privacy compliance plan, the latest episode of the Technically Legal Podcast has some great, practical advice for just that. Brandon explains that most data privacy laws , like the General Data Protection Regulation (GDPR) in the EU and U.S.

Data protection

Data protection Compliance State law Software

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

3 Geeks and a Law Blog

SEPTEMBER 5, 2023

So there’s corporate and IP and employment and all of that, and our own internal privacy compliance as well. But we know that, for example, thinking about the privacy governance example, we know that AI systems can present risks and never touch personal information at all. Most recently, I think CPRA.

Time-tracking

Time-tracking Hearing Compliance e-records

NIS2: Revised EU Cyber Rules for Critical Infrastructure

Debevoise Data Blog

NOVEMBER 28, 2022

On 10 November 2022, the European Parliament approved the second network and information systems directive (“NIS2”). In this Debevoise Data Blog post, we explore who NIS2 will affect, its key provisions and steps that businesses can consider to enhance their compliance programs in anticipation of the changes.

Compliance

Compliance State law Law Law

EU Data Act Regulates Business-to-Business Contracts Relating to Access and Use of Data

Inside Privacy

FEBRUARY 21, 2024

For more information on the Data Act, see our previous blog post. Data” is defined broadly as “any digital representation of acts, facts or information and any compilation of such acts, facts or information, including in the form of sound, visual or audio-visual recording.”

Compliance

Compliance Court State law Law

The SEC Adopts Significant Cybersecurity Amendments to Reg S-P

Debevoise Data Blog

MAY 17, 2024

Firms will have either 18 or 24 months (depending on size) from the date of publication in the Federal Register to come into compliance. We discuss Reg S-P’s new and expanded requirements, as well as considerations for compliance, below. A comparison of Amended Reg S-P to the Proposed Amendments is available here. 17 CFR § 248.30(a)(3).

e-records

e-records Compliance e-filing Due diligence

Virginia Enacts Direct-to-Consumer Genetic Privacy Law as Numerous Other States Introduce Similar Bills

Inside Privacy

MARCH 31, 2023

SB 1087 similarly broadly defines “genetic data,” to include “any data that results from the analysis of a biological sample from a consumer, or from another element enabling equivalent information to be obtained, and concerns genetic material,” including uninterpreted data and any information “extrapolated, derived, or inferred therefrom.”

Law

Law Law Compliance State law

European Data Protection Roundup – November 2023

Debevoise Data Blog

DECEMBER 22, 2023

The Confederation of European Data Protection Organisations, a private organization, has published a paper on the data protection implications for both creators and end-users of generative AI models that is informative of potential consensus views on GDPR and AI.

Data protection

Data protection Time-tracking Compliance Machine learning

Debevoise Authors 2022 Edition of the PLI Privacy Law Answer Book

Debevoise Data Blog

DECEMBER 1, 2021

The Data Strategy and Security team at Debevoise & Plimpton LLP has authored the 2022 edition of the Privacy Law Answer Book (Practising Law Institute, 2021), a user-friendly guide to the laws and regulations that govern how companies collect, use, store and transfer the personal information of their consumers and employees.

Law

Law Law Data protection Litigator

The FTC’s Proposed Rulemaking Part 3 — Key Data Security Takeaways

Debevoise Data Blog

AUGUST 29, 2022

To prepare for potential FTC rulemaking regarding data security, businesses should continue to develop FTC compliance programs – including reasonable security safeguards and cybersecurity programs – by evaluating the FTC’s recent actions and guidance. In Part 3 of our Data Blog series, we focus on the FTC ANPR as it relates to data security.

Due diligence

Due diligence Compliance Software State law

Swapping Bots for Lawyers Via App: DoNotPay

Advocate's Studio

OCTOBER 15, 2018

The ChatBot – a conversational interface that prompts a user to provide information that can then be leveraged by the AI to provide answers or actions – allowed users to select one of several defenses to the ticket, enter details and send an appeal generated by the app to the appropriate legal authority.

Lawyer

Lawyer Hearing Court Legal advice

Getting Ready for 2023: What Companies Can Do Now to Prepare for New Privacy Laws

Debevoise Data Blog

DECEMBER 16, 2021

These developments have companies understandably concerned about complying with a patchwork of state laws. This means that businesses must be prepared to respond to consumer requests based on information collected on or after January 1, 2022. laws and regulations. How can companies prepare?

Data protection

Data protection Compliance Law Law

Recently Enacted AI Law in Colorado: Yet Another Reason to Implement an AI Governance Program

Debevoise Data Blog

JUNE 11, 2024

state law developments all reinforce the incentives for companies to adopt AI governance programs. Create a roadmap for compliance. It will take time to modify contractual arrangements between deployers and developers to ensure that all of the required information is provided. Modify contracts. Modify contracts.

Law

Law Law Compliance Attorney

Your Go-To Contract Risk Assessment Checklist

Percipient

MAY 8, 2025

Contracts often involve sensitive information. If personal or regulated data is involved, the agreement should also follow relevant privacy laws, including: GDPR (General Data Protection Regulation Europe) HIPAA (Health Insurance Portability and Accountability Act U.S.) Does the contract meet legal and compliance standards?

Intellectual Property

Intellectual Property Dispute resolution Time-tracking Data protection

Connecticut’s Next Generation Data Privacy Law

Debevoise Data Blog

MAY 23, 2022

Here, we highlight key aspects of the CTPA with a focus on the provisions that companies should consider in their compliance preparations. We also provide an overview of the CTPA’s enforcement mechanisms and explain how the CTPA modifies prior laws’ safe harbor with a nod towards prosecutorial discretion. CTPA § 4(b). CTPA § 12(a)(6).

Law

Law Law Compliance Attorney

The Right of Publicity in Board Games

Brett Trout

MARCH 15, 2024

While it appears the dispute is settled and the creators may have indeed obtained all of the necessary releases, very little information has been publicly disseminated about the issue, so any opinion on the matter is little more than conjecture at this point. Even if what you want to do is legal in your state, it may not be legal in another.

Intellectual Property

Intellectual Property Lawsuit Compliance State law

Cybersecurity in the Remote Work Era: AI, Employees and an Integrated Defense – With SessionGuardian’s Jordan Ellington and Oren Leib, and Katten’s Trisha Sircar (TGIR Ep. 211)

Legal Tech Monitor

JULY 11, 2023

Ellington explains that the impetus for creating SessionGuardian came from working with a law firm to secure their work with eDiscovery vendors and contract attorney staffing agencies. Ellington realized the technology could provide secure access to sensitive information from anywhere.

Law firm

Law firm Time-tracking Due diligence Attorney

Face Forward: Strategies for Complying with Facial Recognition Laws

Debevoise Data Blog

OCTOBER 18, 2021

These laws do not target facial recognition in particular but regulate the use of biometric information (which includes many forms of facial data) among the many types of personal data that they cover. The law contains two main requirements. Jurisdictions vary on whether photographs are covered as a form of biometric data.

Law

Law Law Court Time-tracking

Utah Joins the Comprehensive State Privacy Law Club

Debevoise Data Blog

APRIL 29, 2022

the business shall inform the consumer … [of] any rights the consumer may have to appeal the decision.” The UCPA also contrasts with the CCPA/CPRA, which will require risk assessments with respect to businesses processing of personal information and a specific analysis of the benefits and risks of such processing.

Law

Law Law Data protection Attorney

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

Legal Tech Monitor

SEPTEMBER 4, 2023

So there’s corporate and IP and employment and all of that, and our own internal privacy compliance as well. But we know that, for example, thinking about the privacy governance example, we know that AI systems can present risks and never touch personal information at all. Most recently, I think CPRA.

Time-tracking

Time-tracking Hearing Compliance e-records

The Tax Season Survival Guide for Law Firms

Lawmatics

APRIL 11, 2023

However, provided certain criteria are met, some attorney and law firm payments are recorded in Box 10 of Form 1099-MISC and not on Form 1099-NEC. A partnership is required to file Form 1065 to disclose information about its operations but is not taxed. IRS Form 1065. IRS Form 1040-ES. Late filings.

Law firm

Law firm e-filing Law Law

Are Electronic Signatures Legal?

Clio

MARCH 14, 2024

This federal law was designed to create a consistent standard in the regulation of electronic signatures in the US, as well as to help encourage cross-border transactions in certain circumstances (which are made easier when contracts and documents may be signed electronically). Consider the following when weighing your options: Compliance.

e-records

e-records e-filing Client Intake Court

What the ADPPA Means for U.S. Data Regulation

Debevoise Data Blog

JULY 12, 2022

Even if not enacted, its provisions are likely to influence a future federal privacy law. And, in many ways, the ADPPA may set a new minimum standard that will shape any state laws passed to fill the void left by the lack of a federal privacy law. We’ve previously written about the development of U.S. ADPPA § 2(8).

State law

State law Federal law Compliance Data protection

Face Forward Part 2: Proposed Legislation and Strategies for Compliant Use of Facial Recognition

Debevoise Data Blog

OCTOBER 26, 2021

Federal and State Legislation There is currently no federal law that specifically regulates biometric privacy. Among other proposed federal legislation, the National Biometric Information Privacy Act of 2020 died in Congress last year. It would also prohibit disclosure of such data, with limited exceptions.

Compliance

Compliance Federal law Data protection Machine learning

California Restricts Insurers’ Use of AI and Big Data

Debevoise Data Blog

JULY 5, 2022

The Bulletin goes on to describe recent examples of alleged unfair discrimination being investigated by the Department, including (1) subjecting claims from certain inner-city ZIP Codes for special scrutiny, (2) using facial recognition in claims decisions, and (3) collecting personal information that is unrelated to the risk being underwritten.

Due diligence

Due diligence Compliance State law Litigator

A New Era of FTC Privacy and Cybersecurity Oversight: Top Ten Things Companies Should Know When Assessing FTC Compliance and Exposure

Debevoise Data Blog

JANUARY 14, 2022

Companies developing Federal Trade Commission (“FTC”) compliance programs, or under investigation by the FTC’s Bureau of Consumer Protection, should be aware of significant developments impacting the Commission’s regulatory authority and enforcement priorities.

Compliance

Compliance Court Litigator Litigation

New Privacy Legislation in the U.S.: The Patchwork Problem Grows

Debevoise Data Blog

JULY 9, 2021

Colorado has just adopted a brand-new data privacy law and Nevada has just significantly amended its law. These changes add rights for consumers, and compliance obligations for businesses, that take the U.S. further in the direction of European-style privacy law. SB 260 is enforceable only by the Attorney General.

Data protection

Data protection Attorney Compliance State law

Treasury’s Post-2024 RFI Report on AI in Financial Services – Uses, Opportunities, and Risks

Debevoise Data Blog

JANUARY 23, 2025

The Report summarizes key themes from comments from a variety of industry stakeholders (respondents) in response to Treasurys June 2024 Request for Information (RFI), and recommends several next steps for financial regulators, financial services firms, and government agencies more broadly for coordination purposes. Inconsistent State Laws.

Compliance

Compliance Intellectual Property Due diligence e-records

Building a Digital Future: Is America Ready for a Federal Digital Bill of Rights?

Richmond Journal of Law and Technology

MARCH 7, 2025

California , mandating that law enforcement obtain a warrant before searching digital information and underscoring the critical need for privacy protections in the digital age. [1] 15] Data collection is an important tool essential to driving technological and global competition.

Compliance

Compliance Data protection Federal law Court

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

3 Geeks and a Law Blog

JUNE 28, 2023

Overall, it was an informative if sobering discussion on the state of the legal system’s preparedness for inevitable collisions with deep fake technology. But, you know, to me, it’s kind of a lot of it falls on counsel and, and then being educated enough to inform the bench about the technology that’s coming in.

Litigator

Litigator Litigation Court e-discovery

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

Legal Tech Monitor

JUNE 28, 2023

Overall, it was an informative if sobering discussion on the state of the legal system’s preparedness for inevitable collisions with deep fake technology. But, you know, to me, it’s kind of a lot of it falls on counsel and, and then being educated enough to inform the bench about the technology that’s coming in.

Litigator

Litigator Litigation Judge Court

Legal Blogging in the AI Era: Best Practices for 2025

The State of State Law Cybersecurity Requirements

Webinars

Trending Sources

European Data Protection Roundup – Q4 2024

Webinars

Privacy Law: Status of Legal Practice Area in 2025

What If I Don’t Want to Litigate? Law Degree Alternatives: Exploring Unconventional Career Paths

Cybersecurity in the Remote Work Era: AI, Employees and an Integrated Defense – With SessionGuardian’s Jordan Ellington and Oren Leib, and Katten’s Trisha Sircar (TGIR Ep. 211)

Lessons Learned from 2024 and the Year Ahead in AI Litigation

Can You Practice Law in Multiple States? What Lawyers Should Know

Where to Begin With Data Governance Frameworks and How Software Can Help (Brandon Wiebe, GC & Head of Privacy, Transcend)

EU Rules Restricting the International Transfers of Non-Personal Data

Does Your Company Have a Data Privacy Plan? Here’s Where to Start

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

NIS2: Revised EU Cyber Rules for Critical Infrastructure

EU Data Act Regulates Business-to-Business Contracts Relating to Access and Use of Data

The SEC Adopts Significant Cybersecurity Amendments to Reg S-P

Virginia Enacts Direct-to-Consumer Genetic Privacy Law as Numerous Other States Introduce Similar Bills

European Data Protection Roundup – November 2023

Debevoise Authors 2022 Edition of the PLI Privacy Law Answer Book

The FTC’s Proposed Rulemaking Part 3 — Key Data Security Takeaways

Swapping Bots for Lawyers Via App: DoNotPay

Getting Ready for 2023: What Companies Can Do Now to Prepare for New Privacy Laws

Recently Enacted AI Law in Colorado: Yet Another Reason to Implement an AI Governance Program

Your Go-To Contract Risk Assessment Checklist

Connecticut’s Next Generation Data Privacy Law

The Right of Publicity in Board Games

Cybersecurity in the Remote Work Era: AI, Employees and an Integrated Defense – With SessionGuardian’s Jordan Ellington and Oren Leib, and Katten’s Trisha Sircar (TGIR Ep. 211)

Face Forward: Strategies for Complying with Facial Recognition Laws

Utah Joins the Comprehensive State Privacy Law Club

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

The Tax Season Survival Guide for Law Firms

Are Electronic Signatures Legal?

What the ADPPA Means for U.S. Data Regulation

Face Forward Part 2: Proposed Legislation and Strategies for Compliant Use of Facial Recognition

California Restricts Insurers’ Use of AI and Big Data

A New Era of FTC Privacy and Cybersecurity Oversight: Top Ten Things Companies Should Know When Assessing FTC Compliance and Exposure

New Privacy Legislation in the U.S.: The Patchwork Problem Grows

Treasury’s Post-2024 RFI Report on AI in Financial Services – Uses, Opportunities, and Risks

Building a Digital Future: Is America Ready for a Federal Digital Bill of Rights?

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

Stay Connected