Key Point: Several states have enacted their own ‘mini-TCPA’ laws—state-level variants of the federal Telephone Consumer Protection Act (TCPA) that impose additional restrictions on telemarketing—and the past year has brought …
The Latest
CISA Announces Rescheduled Virtual Town Hall Meetings for CIRCIA Rulemaking
Key point: CISA’s virtual town hall meetings for CIRCIA rulemaking have been rescheduled for June 15-18, 2026.
On May 26, 2026, CISA announced the dates for the rescheduled CIRCIA rulemaking…
Key point: Colorado has repealed and replaced the Colorado AI Act, amid years of skepticism from industry critics.
On May 14, Colorado Governor Jared Polis signed SB 26-189 into law…
Utah SB 275’s “Digital Identity Bill of Rights”: What It Could Mean for Businesses
Key point: The Utah legislature just passed a first-of-its-kind digital identity law that gives residents new rights over what personal information they share when verifying their identity. If your business …
Subscribe to Byte Back
Points Well Taken: The Privacy Side of Loyalty Programs and Promotions
Key point: Whether your business runs a retail loyalty program, a restaurant rewards app, a software referral campaign, or an online sweepstakes, these programs often collect customer information, and that …
Navigating Cyber Disclosures in 2026: A Limited Renewal of CISA 2015, and “Take Two” on Finalizing CIRCIA’s Reporting Regulations
Key point: 2026 may be a pivotal year for organizations to monitor cyber incident reporting requirements—the voluntary sharing allowed under CISA 2015 remains available, but only through September, and regulations …
Heppner v. Claude: Landmark Privilege Waiver by AI Ruling—Key Takeaways for Lawyers and Clients
A recent ruling by the Southern District Court of New York sets a historical precedent for the use of generative AI platforms in the legal profession. The court found that…
Website Compliance Must-Dos for 2026: What Legal and Business Teams Should Revisit Now
With three new state privacy laws that took effect on January 1, 2026 (Indiana, Kentucky, and Rhode Island), adding to an extensive list of others, many organizations are discovering that…
In October 2023, California passed the Delete Act, which, in addition to requiring data brokers to register with the state, directed Cal Privacy (f/k/a the California Privacy Protection Agency…
GSA Joins the CUI Compliance Movement: What Non-Defense Contractors Need to Know
Key point: Historically, civilian‑agency contractors who handled Controlled Unclassified Information (CUI) enjoyed an informal compliance environment, with a requirement to adhere to NIST SP 800‑171 often framed as self‑attestation. That …
About Byte Back Data Privacy & Cybersecurity
Husch Blackwell’s Data Privacy, Security and Breach Response team helps clients navigate complex statutes and regulations surrounding privacy and information security. With deep subject matter expertise, our attorneys handle data security incidents; regulatory issues regarding federal and state privacy laws, such as HIPAA, FERPA, COPPA, GLBA and CCPA; international privacy law compliance, such as GDPR; and data security litigation matters. Learn more about the practice.


