Cyber Law Monitor
133 FOLLOWERS
Following current trends in cyber, privacy and data security law.
Cyber Law Monitor
1w ago
The Colorado AI Act, set to take effect on February 1, 2026, introduces new consumer protection regulations for AI systems used by Colorado residents. It imposes disclosure requirements for public-facing AI systems and stricter obligations for high-risk AI systems –…
Read more ..read more
Cyber Law Monitor
1M ago
This is part three of our examination of the European Union’s new artificial intelligence law (the “EU AI Act”). In part one, we introduced the scope of the EU AI Act and discussed what types of AI systems are outright banned.…
Read more ..read more
Cyber Law Monitor
1M ago
On May 9, 2024, Governor Wes Moore signed the Maryland Online Data Privacy Act (MODPA) making Maryland the seventeenth state to enact a comprehensive data privacy law. The law takes effect October 1, 2025, but it does not apply to…
Read more ..read more
Cyber Law Monitor
3M ago
This is part two of our examination of the European Union’s new artificial intelligence law, the (“EU AI Act”). In part one, we introduced the scope of the EU AI Act and discussed what types of AI systems are outright banned. In this article, we look at what types of AI systems are considered high-risk by the EU and what the resulting compliance requirements are.
What Systems are High Risk?
The EU AI Act specifies a number of types of AI systems that are considered to be high risk, including AI systems intended for use:
as safety components of a regulated product;
as remote biometric i ..read more
Cyber Law Monitor
6M ago
The European Union recently enacted its new artificial intelligence regulation, the (“EU AI Act”). The new law is expected to have a substantial impact on the AI industry, including on companies outside of the EU, much as the GDPR did.
Overall, the EU AU Act follows a risk-based approach and contains several categories of AI systems. High risk systems are subject to the most stringent requirements, while AI systems presenting less risk are subject to lighter regulation. But certain uses of AI systems are entirely prohibited. Additionally, special rules apply to general ..read more
Cyber Law Monitor
1y ago
The Biden administration announced that it brokered a voluntary agreement with several of the biggest technology and artificial intelligence (AI) companies. The agreement, available here, has the companies taking a number of actions intended to encourage safe, secure, and trustworthy development of AI technologies, particularly generative AI systems. While the commitments are not as extensive as other frameworks, such as the NIST AI Risk Management Framework or the Biden Administration’s Blueprint for an AI Bill of Rights, they are in some ways more concrete and actionable, and could ser ..read more
Cyber Law Monitor
1y ago
The rapid spread of Artificial Intelligence (AI) systems in recent years has overlapped with the enactment of comprehensive privacy laws by multiple U.S. states. Aside from being generally applicable to AI systems in the same way as they are to any online service, several of the comprehensive state privacy laws have provisions that specifically address certain uses of AI systems, in particular use in profiling. This article surveys those provisions and assumes the reader is already familiar with basic concepts in the comprehensive privacy laws, such as controllership and applicabil ..read more
Cyber Law Monitor
1y ago
On June 6, 2023, the Board of Governors of the Federal Reserve System, Office of the Comptroller of the Currency and Federal Deposit Insurance Corp. (collectively, the “Agencies”) issued final interagency guidance that provides granular recommendations for how banks and other regulated financial institutions should manage risks associated with third-party relationships (the “Guidance”). The Guidance replaces prior guidelines that were released by the Agencies on July 19, 2021.
1. Introduction
The Guidance is designed to assist banking organizations with managing the risks ass ..read more
Cyber Law Monitor
1y ago
As the use of artificial intelligence (AI) rapidly expands throughout the private sector and government, the Biden administration has published a report titled A Blueprint for an AI Bill of Rights. A summary is available at https://www.whitehouse.gov/ostp/ai-bill-of-rights/ and the full document is available at https://www.whitehouse.gov/wp-content/uploads/2022/10/Blueprint-for-an-AI-Bill-of-Rights.pdf.
The report cites a myriad of issues with AI systems, including uses in hiring and credit decisions that have been found to reproduce existing inequities or create new harmful bias, uses in pat ..read more
Cyber Law Monitor
1y ago
The National Institute of Standards and Technology (NIST) recently released version 1.0 of its Artificial Intelligence Risk Management Framework. The framework is available at https://nvlpubs.nist.gov/nistpubs/ai/NIST.AI.100-1.pdf, and a full set of supporting documents is available at https://www.nist.gov/itl/ai-risk-management-framework.
There is an emerging consensus that AI systems present a significantly different risk profile than conventional information technology systems. While there is currently no legal requirement to use a risk management framework when developing AI sy ..read more