Privacy & Cybersecurity Law Blog

On July 15, 2026, China’s Interim Measures for the Administration of AI-Based Anthropomorphic Interactive Services will take effect.   

On May 29, 2026, China issued the Regulations on Internet Content Multi-Channel Network Distribution Services, which will come into effect on September 1, 2026. 

As of June 19, 2026, organizations subject to UK data protection law are required comply with new requirements regarding data protection complaints.

On June 16, 2026, Vermont Governor Phil Scott signed into law House Bill H.211, which significantly amends Vermont’s existing data broker registration law by expanding compliance obligations, creating new consumer rights, enhancing registration requirements, adding data breach notification requirements, and strengthening enforcement and penalties for non-compliance.

On June 16, 2026, Vermont Governor Phil Scott signed into law Senate Bill S.71, the Vermont Data Privacy and Online Surveillance Act, making Vermont the 23^rd state with a comprehensive consumer privacy law.

Louisiana recently enacted the Louisiana Data Privacy Act, becoming the 22nd U.S. state to adopt a comprehensive consumer data privacy law.

On May 27, 2026, Connecticut enacted a comprehensive state artificial intelligence law establishing several regulatory frameworks that address companion chatbots, frontier model governance, and AI use in employment decisions, among other topics.

On April 29, 2026, China's Cyberspace Administration released an official Q&A document on personal data audits to help data handlers understand and comply with China’s personal data audit-related framework.

Effective June 5, 2026, Oregon Senate Bill 1587 prohibits any state government, local government or special government bodies from disclosing personally identifiable information to a data broker unless the data broker first provides a written attestation to the public body that the information will not be sold or otherwise transferred to any entity that will use the information to enforce federal immigration law.

On May 18. 2026, the U.S. Department of Health and Human Services announced a reorganization of its Office for Civil Rights, the agency responsible for enforcing health information privacy and security requirements and federal civil rights laws.