Ad Law Access

Updates on advertising law and privacy law trends, issues, and developments

Health and Fitness Apps and IoT Technologies Should Take Note: FTC Expands Interpretation of its Health Breach Notification Rule

In an aggressive expansion of its security and privacy enforcement programs, on September 15, 2021, the FTC issued what it characterized as a “ Policy Statement ” reinterpreting an old rule about personal health…

Manufacturing “Smart” Devices? NIST Security Has Recommendations

Regulatory interest in Internet of Things (“IoT”) devices is growing, partly in response to concerns about device security. In January, for example, California’s IoT Law ( SB 327 ) went into effect. This law requires…

Massachusetts Imposes Additional Data Breach Notification Requirements

On January 10, 2019, Massachusetts Governor Charlie Baker signed into law the Massachusetts’s Data Breach Notification Act, which amends Massachusetts data breach reporting laws. The new law, available here, amends…

CTIA Launches Internet of Things Cybersecurity Certification

Last month, CTIA, the wireless industry association, launched an initiative through which wireless-connected Internet of Things (“IoT”) devices can be certified for cybersecurity readiness. According to the CTIA…

Worlds Collide: FTC Answers CPSC’s Request for Written Comments on IoT and Product Hazards

If you follow our blog, you know that we often write about issues involving the FTC and the CPSC, but we usually do not write about both in the same post. Now those worlds have collided. The staff of the FTC’s Bureau…