Overview of the Texas Responsible AI Governance Act
In June 2024, Texas Governor Abbott signed HB 149 for the Texas Responsible Artificial Intelligence Governance Act (TRAIGA, or the Act) into law, which will go into effect on January 1, 2026. With this law, Texas joins California, Colorado and Utah in implementing AI-specific state laws. While TRAIGA was originally provided a comprehensive AI framework, […]
Overview of New York’s Child Data Protection Act
In June 2024, New York Governor Kathy Hochul signed the New York Child Data Protection Act (Act) into law, which will go into effect on June 20, 2025. Per the Act’s justification, “[c]hildren now live much of their lives online,” including learning, socializing, shopping. They also “make mistakes online, and they discover who they are […]
DOJ Issues Final Rule on US Bulk Sensitive Data
The International Emergency Economic Powers Act (IEEPA) vests the President with authority to deal with extraordinary threats to national security and foreign policy that have their source in part or in whole outside of the United States. Acting pursuant to the IEEPA, President Biden issued Executive Order 14117, “Preventing Access to Americans’ Bulk Sensitive Personal […]
The Do’s and Don’ts of DSARs: A Practical Guide for Responding to Data Subject Access Requests
Handling data subject access requests (DSARs) isn’t as easy as ticking a compliance checkbox. It can be a test of an entity’s data organization, internal communication, and understanding of legal requirements. Between navigating jurisdictional nuances and meeting strict deadlines, the DSAR response process can quickly unravel without a clear plan. In this guide, we suggest […]
FTC finalizes changes to COPPA Rule, expands online protections for children
On January 16, 2025, the Federal Trade Commission (FTC) announced that it had finalized changes to the Children’s Online Privacy Protection Act (COPPA) Rule to strengthen key protections for children’s online privacy and impose new requirements around the collection, use, and disclosure of children’s personal information. What led to this update? In 1998, Congress enacted […]
Hoyoverse, developer of Genshin Impact, to pay $20 million to settle FTC complaint
On January 17, the Federal Trade Commission (FTC) announced a proposed settlement with Cognosphere Pte. Ltd and its subsidiary Cognosphere, LLC, doing business as Hoyoverse, developer of gacha video games such as Genshin Impact and Zenless Zone Zero, over allegations that Hoyoverse’s loot boxes and children’s data collection practices violated various federal laws. What is […]
HHS releases proposed rule to modify HIPAA Security Rule requirements
On December 27, 2024, the U.S. Department of Health and Human Services (HHS), through its Office for Civil Rights (OCR), announced a proposed rule that would modify the security requirements imposed by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule. The proposed rule, if adopted, would modify the HIPAA Security Rule […]
Comparing EU and US AI legislation: déjà vu to 2020
This article was initially published in Reuters and Thomson Reuters Westlaw Today. Lily Li of Metaverse Law discusses the landscape for AI legislation, with the passage of the European Union’s AI Act while states pass AI bills with differing thresholds, coverage and subject matter. The landscape for EU and US AI legislation feels […]
The Illinois Human Rights Act Addresses the Use of AI In Employment Decisions
Artificial intelligence (AI) is becoming an integral part of business operations, including hiring and managing employees. As these systems become more involved in our daily lives, legislators are taking note. On August 9, 2024, Illinois Governor J.B. Pritzker signed Bill 3773 into law, regulating the use of AI in employment decisions. This law joins […]
Metaverse Law Presents at #RISK DIGITAL UK/EU
Metaverse Law’s Lily Li recently spoke at the #Risk Digital UK/EU global livestream last week for two sessions: “A New Era of AI Governance” and “The Role of Technology in Modern Governance, Risk and Compliance.” Lily’s presentations included an overview about artificial intelligence risks and discussed the latest developments in European Union and United States […]