Jared Perlo reports: The long-running fight to rein in the government’s power to search Americans’ phone calls, emails and text messages without a warrant has gained new urgency on Capitol Hill over concerns that AI will supercharge state surveillance. Lawmakers are currently jockeying over reforms to a key law that enables warrantless monitoring of Americans’...

Hunton Andrews Kurth writes: On April 22, 2026, the House Energy & Commerce Committee announced the introduction of and intention to advance the “Securing and Establishing Consumer Uniform Rights and Enforcement over Data Act” (the “SECURE Data Act”). The SECURE Data Act, which was crafted by the majority committee members’ Privacy Working Group, would replace the...

Stetson Miller reports: The Supreme Court is set to hear a case on Monday that could determine if law enforcement’s use of geofence warrants violates the Fourth Amendment. The case was filed by a man named Okello Chatrie, who was convicted in a 2019 Virginia bank robbery after law enforcement obtained his digital location information...

Tech companies like Google, Facebook and Microsoft are ignoring data controls mandated under California law, researchers say. By: Colin Lecher A new audit has found that websites across the internet may be failing to abide by California privacy law, ignoring a requirement to not track visitors who set a privacy control. The report, from researchers...

Steve Alder reports: Tempus AI, a publicly traded healthcare artificial intelligence company, is facing multiple class action lawsuits over the alleged unauthorized collection and disclosure of genetic testing results, which were derived from genetic testing by Ambry Genetics Corporation (Ambry Genetics). Tempus AI used Ambry Genetics’ genetic database to train its AI models. Tempus AI...

FBI Milwaukee Public Affairs Officer Caroline Clancy (414) 489-3644 April 22, 2026 Dear Parents and Guardians, Over the course of the last few years, the FBI has observed a concerning increase in activity by online actors involved in predatory activity. These predators target children across the United States, including in Wisconsin. “764” is often used...

Hunton Andrews Kurth writes: On April 17, 2026, Alabama Governor Kay Ivey signed into law the Alabama Personal Data Protection Act (HB 351) (“APDPA” or “the Act”), making Alabama the twenty-first state to enact a comprehensive consumer privacy law. The law goes into effect on May 1, 2027. Alabama enacted the APDPA within an already maturing ecosystem...

Chris Smith writes: Incognito Mode is an internet browsing mode that most web browsers support to allow the user to visit websites without leaving traces on the computer, like browsing history. It’s a useful tool for visiting specific websites on a shared computer, or for testing websites and services in a different browser. However, Incognito...

Meredith Lee Hill, Jordain Carney, and Mia McCarthy report: Hill Republican leaders are finding themselves in a never-ending crisis over the fate of a government spy law that has unleashed a bitter, intraparty battle within the House while also threatening to derail a host of other GOP priorities. Republicans now have scant legislative days to...

Margaret Attridge reports: A federal judge Thursday indicated he would grant preliminary approval to a proposed $56 million class action settlement over a lawsuit that accused period tracking app Flo of sharing users’ highly sensitive information with third parties, including Google. “I have to get rid of this thing. No one has gotten paid. This...

Suzanne Smiley reports: The governor of Virginia on Monday signed a law banning the sale of citizens’ precise geolocation data, a sign of growing momentum for such laws at the state level. The legislation bars the sale of geolocation within a 1,750 foot radius, a buffer large enough to keep data brokers from pinpointing where...

There seem to be more news stories about data protection out of Kenya recently. This one appeared on CapitalFM: The Office of the Data Protection Commissioner (ODPC) has found St Luke’s Orthopaedic and Trauma Hospital liable for unlawfully disclosing a patient’s sensitive medical information and ordered it to pay Sh525,000 in compensation. In a ruling...

Joe Cadillic sent along this news story by Marianna Bacallao: College students who participate in walkouts could be suspended or expelled under a new measure passed by the Tennessee General Assembly on Monday. The Charlie Kirk Act, named for the late conservative activist, addresses free speech on college campuses. HB 1476/ SB 1741 would require colleges and...

Cyrus Farivar reports: Several Californians sued Sutter Health and MemorialCare this week over allegations that an AI transcription tool was used to record them without their consent, in violation of state and federal law. The proposed class-action lawsuit, filed on Wednesday in federal court in San Francisco, states that, within the past six months, the plaintiffs received...

The Standard reports: A medical intern at Princess Margaret Hospital has been suspended after allegedly posting photos containing patients’ information on a personal social media account, the Hospital Authority (HA) announced. The incident came to light after a complaint was filed on Friday, prompting the hospital to launch an immediate investigation. A spokesperson for the...

Odia Kagan of FoxRothschild writes: The Italian Data Protection Authority (Garante) recently fined online classifieds platform Bakeca S.r.l. after an unknown user published two ads, including an explicit offer for sex work, listing the phone number of a person who had nothing to do with the ads and never consented to their publication. The decision,...

Henry Aleksandrov reports: An Ohio man who became the first person in the country to be convicted under the federal revenge porn law would be able to eventually reintegrate into society after Ohio lawmakers introduced several bills, some of which were already passed by the legislators. Among the ways the bills would help the man...

Joseph Cox reports: The FBI was able to forensically extract copies of incoming Signal messages from a defendant’s iPhone, even after the app was deleted, because copies of the content were saved in the device’s push notification database, multiple people present for FBI testimony in a recent trial told 404 Media. The case involved a...

From the good folks at EPIC.org: Oklahoma and Alabama recently enacted “privacy” laws that fail to meaningfully protect consumers from the abuse of their personal data. Oklahama’s bill has been signed into law, and Alabama’s awaits the Governor’s signature. The bill mirrors laws in other states such as Virginia. EPIC and U.S. PIRG Education Fund released a report last year...

Ernesto Van der Sar writes: HBO has obtained a DMCA subpoena, ordering X Corp. to identify the person behind a Euphoria fan account that allegedly posted spoilers from unaired episodes of Season 3. The action comes just days before the show’s long-awaited premiere this weekend, but it remains unclear what the company plans to do...