Joseph J. Lazzarotti of JacksonLewis writes: When Colorado enacted the Colorado Privacy Act (CPA), it included “biometric data that may be processed for the purpose of uniquely identifying an individual.” However, the CPA as originally drafted did not cover the personal data of individuals acting in a commercial or employment context. Last week, Colorado amended the CPA…
Uganda’s Sweeping Surveillance State Is Built on National ID Cards
Olivia Solon reports: Nick Opiyo had just ordered lunch in a Kampala restaurant on the last working day before Christmas when armed, uniformed security forces swarmed his table, handcuffed him, covered his head with a sack he says smelled of blood, and bundled him into an unmarked van. His laptop, phone, documents and car keys…
Google Database Reveals Thousands of Privacy Incidents
Joseph Cox reports: Google has accidentally collected childrens’ voice data, leaked the trips and home addresses of car pool users, and made YouTube recommendations based on users’ deleted watch history, among thousands of other employee-reported privacy incidents, according to a copy of an internal Google database which tracks six years worth of potential privacy and…
Kentucky Data Protection Act: What Businesses Need to Know
Natasha G. Kohne, Michelle A. Reed, Rachel Claire Kurzweil, and Joseph Hold of Akin Gump write: On April 4, 2024, Kentucky became the fifteenth state to enact a comprehensive data privacy law, with Governor Andy Beshear signing the Kentucky Consumer Data Protection Act (KCDPA) into law. The Kentucky law will go into effect on January 1, 2026….