This article was originally published in American City & County on March 1, 2024.

For years, private companies have struggled to protect the data of consumers against security incidents and cyber-attacks by malicious threat actors. More recently, there has been a growing surge of data breaches impacting the public sector, and local governments face unique challenges in responding to such incidents.

In a recent alert, we reported that California Attorney General (AG) Rob Bonta announced a settlement with DoorDash over allegations that the company violated the California Consumer Privacy Act (CCPA) and the California Online Privacy Protection Act (CalOPPA) by selling consumers’ personal information without providing notice or an opportunity to opt out.

The Federal Trade Commission (FTC) and a coalition of nine state attorneys general (AG) filed a lawsuit on February 26, in the U.S. District Court for the District of Oregon seeking a preliminary injunction to stall Kroger Company’s (Kroger) proposed $24.6 billion acquisition of Albertsons Companies (Albertsons), citing concerns that the proposed deal would eliminate competition among the supermarket giants, leading to higher grocery prices for millions of Americans. FTC commissioners voted unanimously to authorize the lawsuit, which was joined by AGs from Arizona, California, the District of Columbia, Illinois, Maryland, Nevada, New Mexico, Oregon, and Wyoming. Simultaneously, the FTC filed an administrative complaint against Kroger and Albertsons to block the proposed transaction.

On February 23, U.S. District Judge Clifton L. Corker of the Eastern District of Tennessee granted a preliminary injunction requested by the Tennessee and Virginia attorneys generals (AG) against the NCAA’s “NIL-recruiting ban.” This ban prohibits boosters and collectives from discussing name, image, and likeness (NIL) opportunities with student-athletes before they commit to a school. The court found that the AGs had established both a likelihood of success on the merits and irreparable harm that would occur without the injunction. This decision could have significant implications for the landscape of college sports.

In the latest episode of Regulatory Oversight, Troutman Pepper Partner Judy Jagdmann and Counsel Gene Fishel are joined by Sam Kaplan, assistant general counsel for public policy for Palo Alto Networks. They engage in an insightful conversation revolving around the government response to cyber incidents and the potential role of AI in combating cybersecurity threats.

On February 23, U.S. District Judge Clifton L. Corker of the Eastern District of Tennessee, issued an opinion and order granting the Tennessee and Virginia attorneys generals’ (AG) request for a preliminary injunction enjoining the National Collegiate Athletic Association (NCAA) from enforcing its so-called “NIL-recruiting ban,” i.e., the current NCAA guidance that prohibits boosters and collectives from communicating with student-athletes about name, image, and likeness (NIL) opportunities before they commit to a particular school. The court found the AGs had established both a likelihood of success on the merits and irreparable harm that would occur absent imposition of the preliminary injunction. By granting the preliminary injunction, the court has set off a series of events that are sure to have wide-ranging implications both on the near- and long-term landscape of college sports.