On Tuesday, the New York Attorney General Letitia James announced a settlement with Dunkin’ Brands, Inc. over allegations that the company failed to adequately respond to years of cyberattacks that compromised customers’ online accounts.

According to the lawsuit, Dunkin’ customers with “DD Perks” accounts were first targeted in early 2015 in a series of “credential

Effective March 21, 2020, the New York SHIELD Act imposes data security requirements on most businesses that own or license computerized data that includes the “private information” (defined below) of New York residents. In sum, such businesses must develop, implement, and maintain reasonable safeguards to protect the security, confidentiality, and integrity of that private information.

Over the past few weeks, my colleagues have discussed some of the considerations for marketing around COVID-19, including claim substantiation and price gouging. In the next few posts, we are going to take a deeper dive into a few topics, beginning with telemarketing. Here are some points to keep in mind:

States of Emergency

New York’s efforts to pass the New York Privacy Act failed when the bill did not appear in the most recent legislative session. The bill, said to be “tougher,” “bolder,” and more “sweeping” than other privacy legislation, initially gained a number of Senate co-sponsors when Sen. Kevin Thomas introduced it, but no Assembly members signed