Photo of Kim Phan

Kim is a privacy and data security lawyer who counsels companies in federal and state privacy and data security statutes and regulations. Her work encompasses strategic planning and guidance for companies to incorporate privacy and data security considerations throughout product development, marketing, and implementation.

On May 25, the Consumer Financial Protection Bureau (CFPB or Bureau) published a blog post, examining what it describes as the “practice of suppressing payment data.”

Per the blog post, the CFPB alleges that its research conducted in 2020 “uncovered that only about half of the largest credit card companies contribute data to credit

Register
Thursday, May 26 • 12:00 – 1:00 p.m. ET

California was the first state to enact a comprehensive state privacy bill with the California Consumer Privacy Act of 2018 (CCPA). Although the CCPA went into effect on January 1, 2020, it was significantly overhauled during California’s November 2020 General Election, when the California Privacy

On May 11, the Senate voted 51-50 to confirm Alvaro Bedoya as a member of the Federal Trade Commission (FTC), requiring Vice President Kamala Harris to cast the tie-breaking vote. Bedoya gives Democrats a 3-2 majority at the consumer protection agency.

Bedoya’s confirmation was not a sure thing. Republicans held up his nomination for eight

On April 28, the Connecticut House passed Senate Bill 6, an act concerning personal data privacy and online monitoring (SB 6 or Connecticut Act). The Senate unanimously passed SB 6 on April 20, and is now currently under consideration by Governor Ned Lamont. If the bill becomes law, it will go into effect on

On March 25, a huge sigh of relief was heard from businesses and organizations located throughout the United States and Europe after the U.S. and European Commission announced their agreement in principle on a new Trans-Atlantic Data Privacy Framework (Framework) to effectuate the cross-border transfer of personal data from the European Union (EU) to the

On March 24, Governor Spencer J. Cox signed the Utah Consumer Privacy Act (UCPA), making Utah the fourth state in the country to adopt a comprehensive privacy law. The UCPA is set to take effect on December 31, 2023, and this law’s substantive requirements closely mirror the Virginia Consumer Data Protection Act (VCDPA). The UCPA