Photo of Gene Fishel

Gene is a member of the firm’s Regulatory Investigations, Strategy + Enforcement (RISE) practice, based in the Richmond office. He brings extensive regulatory experience, having most recently served as senior assistant attorney general and chief of the Computer Crime Section in the Office of the Attorney General of Virginia, and as special assistant U.S. attorney in the Eastern District of Virginia for 20 years.

Register Here
Wednesday, July 23 • 12:00 – 2:10 p.m. ET

Troutman Pepper Locke attorneys Dave Navetta, Gene Fishel, and Dan Waltz will participate in an upcoming CLE with myLawCLE discussing the evolving landscape of data privacy regulation across the United States. This panel discussion will offer an in-depth analysis of state-level data privacy laws, with a focus on pioneering regulations such as California’s Consumer Privacy Act and Virginia’s Consumer Data Protection Act, along with other notable state-specific legislative measures. Our panelists will explore the complexities of these laws, emphasizing key differences and similarities that affect both businesses and consumers.

One of many provisions in the “One Big Beautiful Bill Act,” passed by the U.S. House of Representatives, would place a 10-year “temporary pause” on states’ ability to regulate artificial intelligence (AI). Initially called a moratorium, Senate Republicans changed the characterization of the prohibition to ensure the provision’s passage during the reconciliation process. The changes were at least partially successful, as the proposed “temporary pause” overcame a procedural hurdle when the Senate parliamentarian concluded that it satisfies the “Byrd Rule” and may remain in the bill. The bill now heads to the Senate floor. If enacted, the temporary pause would mark the most significant federal action (or inaction) related to AI.

On April 29, Michigan Attorney General (AG) Dana Nessel filed a lawsuit against Roku, Inc. (Roku), the smart TV and device provider and streaming service, alleging that Roku collects and monetizes personal data from children without proper parental consent in violation of the Children’s Online Privacy Protection Act (COPPA) and other laws, including the Video Privacy Protection Act (VPPA) and the Michigan Consumer Protection Act.

On June 2, the Texas legislature passed the Texas Responsible Artificial Intelligence Governance Act, (TX AI Act or bill) which heads to the governor for his signature or veto. The bill will take effect January 1, 2026, if the governor signs it into law. It is the most comprehensive piece of AI governance legislation to pass a state legislature to date. If enacted, Texas will become the fourth state after Colorado, Utah, and California to pass AI-specific legislation.

Join us for a special crossover episode of The Consumer Finance Podcast and Regulatory Oversight, where Chris Willis, Kim Phan, and Gene Fishel delve into the evolving world of state AI legislation. As AI becomes a pivotal tool in the financial services industry, understanding the implications of new laws is crucial. This episode focuses on Colorado’s comprehensive AI law and its potential influence on other states, exploring key issues such as algorithmic discrimination, privacy, and cybersecurity. Gain insights into best practices for compliance and learn how state attorneys general are stepping up enforcement in the absence of federal action. Don’t miss this informative discussion bridging consumer finance and regulatory oversight.

RICHMOND – Samuel E. “Gene” Fishel, a member of Troutman Pepper Locke’s Regulatory Investigations, Strategy and Enforcement (RISE) Practice, was recently named to Virginia Lawyers Weekly’s “Go To Lawyers” 2025 list for cybersecurity litigation. The program recognizes top lawyers across the commonwealth in a given practice area based on nominations and an independent selection process.

Several state attorneys general (AGs) and the Federal Trade Commission (FTC) have begun scrutinizing ancestry tracking company 23andMe following its recent announcement that it has filed for Chapter 11 bankruptcy. As part of these efforts, the AGs have issued alerts on ways consumers can exercise their rights under state privacy laws, and the FTC has issued letters stressing potential risks to U.S. bankruptcy trustees. 23andMe, which was founded in 2006, has collected DNA and associated genetic material on seven million American customers to provide information related to those customers’ ancestry.

On November 21, the Supreme Court of Virginia entered a published order reversing a 14-3 en banc decision of the Court of Appeals of Virginia addressing the applicability of Virginia’s criminal laws regulating cybercrime. The decision in Commonwealth v. Wallace is the latest example of courts testing regulatory reach in the cybercrime arena.