It was a busy week for HB 9 in Tallahassee. There was a strike-all amendment, several proposed unfriendly amendments, a House Judiciary Committee meeting, a second strike-all, more unfriendly amendments, and a date for a House floor vote. This post will summarize what happened and provide a roadmap for the final two weeks of the Florida legislative session.
Continue Reading HB 9 Moves to House Floor, Democratic Opposition Emerges

In my last post, I wrote about my impression that legislators and staff do not intend for HB 9 to apply to companies that merely “receive” personal information (i.e., those that do not engage in buying or selling personal information). Based on that understanding, I suggested the second threshold of the bill’s scope be

Last week, HB 9 (the leading privacy bill on the House side of the Florida legislature) made its first of two committee stops in the House Commerce Committee. The bill passed unanimously. Just as important, however, the hearing revealed a potential misunderstanding as to the scope of the bill.

This blog post will dive into HB 9’s scope in greater depth, as that may be the most significant issue for companies wondering whether the bill would apply to them. The post will offer suggestions to bridge the disconnect and it will make suggestions to address other concerns many companies have with HB 9. The post ends with an analysis of what to expect next with HB 9 and its Senate counterpart.

Continue Reading The Future Comes Into Focus For HB 9

The Florida House of Representatives has introduced its version of a comprehensive privacy law (HB 9 – no fancy acronym, unlike the FPPA in the Senate).  This blog post will explain the key differences between the House and Senate versions. I also propose two changes to the private right of action that would mitigate the risk of professional plaintiffs filing gotcha lawsuits. The post ends with a roadmap of what to expect moving forward in this legislative session.

Continue Reading Comparing Florida’s Two Leading Privacy Bills

This blog post will summarize Senate Bill 1864, released on Friday, which is the first “comprehensive” privacy bill to be released in advance of the 2022 Florida legislative session. This is a long post, so I begin with a “too long, didn’t read” section that I’ve found helpful in articles I’ve read. I then describe the FPPA in detail, but by pulling various pieces of the 34-page law together by subject matter. I close with some personal opinions about this bill and what we can expect in the upcoming legislative session.

Continue Reading Will The FPPA Be Florida’s First Comprehensive Privacy Law?

New regulatory activity may help companies experience fewer ransomware attacks and could impact whether ransoms can be paid to threat actors. The activity includes guidance and sanctions by the Department of Treasury (“Treasury”) and a host of resources provided by the Health and Human Services Office for Civil Rights. This post describes the activity, its impact on companies that experience a ransomware attack, and practical takeaways for in-house counsel.

Continue Reading To Pay or Not To Pay: What New Regulatory Activity Means for Ransomware Victims