This article was originally published on August 4, 2025 on Law360 and is republished here with permission.
The digital age presents a complex challenge: protecting children online while also allowing free speech to continue to be a thriving marketplace of ideas.
On July 1, California Attorney General (AG) Rob Bonta announced a significant proposed settlement with Healthline Media LLC (Healthline) — a prominent website publisher of health information and wellness articles. The proposed settlement follows allegations that Healthline’s use of online tracking technology violated the California Consumer Privacy Act (CCPA). This is the third action under the CCPA announced by Bonta this year.
In Part Two of this FAQ series, we continue to break down Virginia’s Senate Bill 754, Consumer Protection Act; prohibited practices, etc., reproductive or sexual health information (Act), which amends the Virginia Consumer Protection Act (VCPA). The law went into effect on July 1, 2025.
Register Here
Wednesday, July 23 • 12:00 – 2:10 p.m. ET
Troutman Pepper Locke attorneys Dave Navetta, Gene Fishel, and Dan Waltz will participate in an upcoming CLE with myLawCLE discussing the evolving landscape of data privacy regulation across the United States. This panel discussion will offer an in-depth analysis of state-level data privacy laws, with a focus on pioneering regulations such as California’s Consumer Privacy Act and Virginia’s Consumer Data Protection Act, along with other notable state-specific legislative measures. Our panelists will explore the complexities of these laws, emphasizing key differences and similarities that affect both businesses and consumers.
In this episode of the Regulatory Oversight podcast, Stephen Piepgrass welcomes David Navetta, Lauren Geiser, and Dan Waltz to discuss the $51.75 million nationwide class settlement involving Clearview AI and its broader implications. The conversation focuses on Clearview AI’s facial recognition software, which has sparked controversy due to its use of publicly available images to generate biometric data.
On April 29, Michigan Attorney General (AG) Dana Nessel filed a lawsuit against Roku, Inc. (Roku), the smart TV and device provider and streaming service, alleging that Roku collects and monetizes personal data from children without proper parental consent in violation of the Children’s Online Privacy Protection Act (COPPA) and other laws, including the Video Privacy Protection Act (VPPA) and the Michigan Consumer Protection Act.
On June 2, the Texas legislature passed the Texas Responsible Artificial Intelligence Governance Act, (TX AI Act or bill) which heads to the governor for his signature or veto. The bill will take effect January 1, 2026, if the governor signs it into law. It is the most comprehensive piece of AI governance legislation to pass a state legislature to date. If enacted, Texas will become the fourth state after Colorado, Utah, and California to pass AI-specific legislation.
In this crossover episode of The Consumer Finance Podcast and Regulatory Oversight, Chris Willis, Kim Phan, and Stephen Piepgrass provide insights on a new joint privacy task force among several state AGs, known as the Consortium of Privacy Regulators. The consortium recently outlined goals to share state resources and align enforcement priorities regarding consumer harm and privacy rights. In response to an anticipated shift of regulatory scrutiny from federal agencies to state leaders, this episode focuses on specific steps financial services companies should consider when dealing with consumer privacy, data, complaints, and inquiries to ensure compliance and mitigate potential investigations and enforcement actions.
RICHMOND – Samuel E. “Gene” Fishel, a member of Troutman Pepper Locke’s Regulatory Investigations, Strategy and Enforcement (RISE) Practice, was recently named to Virginia Lawyers Weekly’s “Go To Lawyers” 2025 list for cybersecurity litigation. The program recognizes top lawyers across the commonwealth in a given practice area based on nominations and an independent selection process.
Introduction
On Thursday, March 20, a federal judge in the Northern District of Illinois granted final approval to a settlement agreement under which Clearview AI (Clearview) agreed to pay an estimated $51.75 million to a nationwide class if one of several contingencies takes place. This approved settlement agreement resolves In Re: Clearview AI, Inc. Consumer Privacy Litigation, No. 1:21-cv-00135 (N.D. Ill.), a multidistrict suit alleging that the company’s automatic collection, storage, and use of biometric data violated various privacy laws, including Illinois’ Biometric Information Privacy Act (BIPA). The unorthodox settlement not only preserves Clearview’s business model, but may also insulate Clearview from subsequent or parallel regulatory investigations without requiring the company to jeopardize the liquidity necessary for continued growth. Ultimately, this settlement seems to represent a good outcome for the company, especially in light of the fact that that it was achieved over the objections from 23 state attorneys general (AG). U.S. District Judge Sharon Johnson Coleman stated that the settlement is fair, reasonable, and adequate.