In 2019, the Port of Seattle began to prepare for federal and private sector implementation of facial recognition technology for passenger processing at Port facilities.

A new Illinois lawsuit accused Harrah's Casino in Joliet, Ill. of violating the state's Biometric Information Privacy Act by possessing the facial geometry scans and identifying information of its Joliet casino customers "without creating and following a written policy, made available to the public."

Ecuador is pushing to pass a privacy law after the massive data breach that affected more than 20 million individuals.

Google LLC and its subsidiary YouTube, LLC will pay a record $170 million to settle allegations by the Federal Trade Commission and the New York Attorney General that the YouTube video sharing service illegally collected personal information from children without their parents’ consent.

The Dutch Data Protection Authority (Autoriteit Persoonsgegevens, (the “Dutch DPA”)) announced that it had expanded its guidance on data breaches. 

The Stop Hacks and Improve Electronic Data Security Act, or SHIELD Act, was recently passed by the New York legislature. It updates the state’s breach notification laws and broadens the definition of what constitutes a "breach". 

There were 954 total data breach notifications under the Notifiable Data Breaches (NDB) scheme in one year, according to the NDB Scheme 12-Month Insights Report. 

The Wisconsin Department of Agriculture, Trade and Consumer Protection says Wisconsin’s laws regulating how companies respond to data stolen by hackers are lagging behind other states.

Washington, D.C. Attorney General Karl A. Racine announced the Security Breach Protection Amendment Act of 2019, which would modernize the District’s data breach law and strengthen protections for residents’ personal information.