As widely predicted, on July 30, 2024, the Senate passed the Kids Online Safety Act (KOSA) and the Children and Teens’ Online Privacy Protection Act (COPPA 2.0) in a bipartisan vote of 91-3. Echoing criticism from both civil liberties groups and industry, Senators Rand Paul (R-KY), Mike Lee (R-UT), and Ron Wyden (D-OR) voted no
Tracy Marshall
Tracy Marshall counsels international and domestic for-profit and non-profit clients on a range of privacy, data security, advertising, promotions, and intellectual property matters. She also advises on general corporate and transactional matters.
Tracy assists clients with compliance and advocates on their behalf. She is a Certified Information Privacy Professional (CIPP/US) through the International Association of Privacy Professionals (IAPP) and helps clients implement privacy, data security, and security breach response programs, develop internal and public-facing privacy policies to comply with applicable laws, respond to cyber and data security incidents, and manage relationships with service providers and third parties. Tracy advises on structuring and conducting email and text messaging campaigns, sweepstakes, contests, and other promotions, and she helps clients protect and enforce their intellectual property rights.
In addition, Tracy counsels clients on corporate matters and assists with structuring and negotiating a variety of transactions, including licensing, marketing, and outsourcing arrangements.
Tracy is frequently invited to speak at privacy, data security, telecommunications, and advertising conferences and is a contributor to Keller and Heckman’s Consumer Protection Connection blog and Beyond Telecom Law Blog.
Kids Task Force Issues Guidance for Protecting Minors Online
The interagency Kids Online Health and Safety Task Force, which was created last year and is led by the Department of Commerce (through the National Telecommunications and Information Administration) and the Department of Health and Human Services (through the Substance Abuse and Mental Health Services Administration), released a report on protecting minors online, Online Health …
Video Game Developer Settles Alleged Violations of Federal and State Privacy Laws Governing Children’s Data
On June 18, 2024, the California Attorney General (AG) and Los Angeles City Attorney jointly announced that video game developer and publisher Tilting Point Media LLC (Tilting Point) agreed to a $500,000 settlement for violations of the California Consumer Privacy Act (CCPA), Children’s Online Privacy Protection Act (COPPA), and California Unfair Competition Law (UCL) based…
State Privacy Bills Advance While Federal Bill Introduced
As we predicted in our assessment of U.S. advertising and privacy trends in February of this year, states have continued to adopt comprehensive privacy laws during their 2024 legislative sessions. To date, nineteen states (California, Colorado, Connecticut, Delaware, Florida, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Tennessee, Texas, Utah, and…
Children’s Online Privacy: KOSA and COPPA Updates
As expected, Congress’ renewed focus on expanding protections for minors online has resulted in legislative developments that attempt to mitigate harms while adhering to the Constitution’s free speech and preemption parameters. Last month, updates to both the Kids Online Safety Act (KOSA) and the Children’s Online Privacy Protection Act (COPPA) 2.0 bills were released…
Children’s Online Privacy: History, Debates, and Current Legislative Developments
During 2023, legislative, congressional, and executive actions aimed at protecting children and teens online took center stage. Such actions included: legislative attempts to raise the age of a “child” at both the federal and state levels for advertising and privacy purposes; bans on behavioral advertising targeting minors; efforts to restrict access to social media by…
AI Regulation: The Next Frontier
As the federal government continues to wrestle with the complex issue of regulating Artificial Intelligence (AI) in the wake of the release of President Biden’s Executive Order, states have already proposed or enacted AI regulation, and even more will attempt to tackle the issue in 2024. Two recent developments in AI regulation from California…
SEC Finalizes New Data Breach Reporting Rule; NIST Releases Cybersecurity Framework 2.0
How should companies respond to and report data security breaches nationally? What cybersecurity practices and procedures reflect current best practices? Two federal agency actions provide new rules and guidance and show that the cybersecurity landscape is changing. First, the U.S. Securities and Exchange Commission (SEC) adopted new rules earlier this month that will (among other…
FTC Seeks Comments on Proposed Facial Age Mechanism under COPPA
The Children’s Online Privacy Protection Act Rule (COPPA Rule) requires that online sites and services directed to children under 13 obtain parental consent before collecting or using children’s personal information and lists existing methods for such consent. Now the Federal Trade Commission (FTC) is seeking comments on whether it should expand its parental consent methods…
FTC Publishes Updated Endorsement Guides
After an extended public comment period, the Federal Trade Commission (FTC) adopted revised Guides Concerning the Use of Endorsements and Testimonials in Advertising (Endorsement Guides) on June 29, 2023. As we previously posted, the FTC voted to publish proposed revisions for public comment in May 2022. The updated Endorsement Guides and companion FAQs, which…