Photo of Petrina McDaniel

Petrina McDaniel

Contact:Read more about Petrina McDaniel

On January 1, 2026, the amendments to the Virginia Telephone Privacy Protection Act (VTPPA), Va. Code § 59.1-510 et seq., went into effect. The amendments expand the scope of the VTPPA to explicitly include both calls and texts and provide enhanced statutory damages for willful or repeated violations. With the added requirements and heightened damages, including the recovery of attorneys’ fees, we expect these changes to the VTPPA will invite a wave of litigation.Continue Reading Key Changes To Virginia Telephone Privacy Protection Act Take Effect

On October 29, 2025, the Federal Communications Commission (FCC) released a Further Notice of Proposed Rulemaking (FNPRM) reconsidering certain Telephone Consumer Protection Act (TCPA) consent revocation rules. This action follows the agency’s ongoing “Delete, Delete, Delete” initiative aimed at eliminating outdated regulations and clearing a backlog of petitions, 13 of which date from 2012 to 2021. The FNPRM was unanimously adopted by the Commission on October 28, 2025 and published with key amendments.Continue Reading FCC Proposes Amendments to TCPA Consent Revocation Rules; Proposed Changes to DNC Rules Deleted from Final Text

The Federal Communications Commission (“FCC” or “Commission”)) , under the leadership Chairman Brendan Carr, has been engaged  in effort to simplify , streamline or eliminate regulatory requirements in all areas of the agency’s jurisdiction. Last week, the agency released a draft Further Notice of Proposed Rulemaking (“FNPRM”) that is part of an ongoing FCC effort to modernize consumer protection frameworks, reduce unnecessary burdens on lawful business communications, and strengthen tools against unlawful robocalls. If adopted, the proposal could materially reshape key compliance obligations under the Telephone Consumer Protection Act (“TCPA”) and Do Not Call (“DNC”) rules.

Continue Reading FCC Proposes Eliminating and Streamlining TCPA and DNC Rules

Last month, a district court in the Northern District of California delivered a fatal blow to the Javier saga, dismissing his claim with prejudice. Javier v. Assurance IQ, LLC, No. 20-CV-02860-CRB, 2023 WL 3933070 (N.D. Cal. June 9, 2023).   As we previously reported, the court’s holding concludes a drawn-out dispute on a website

Thanks to our Summer Associate, Maya Thomas, for her work on this timely blog.

2021 saw creative plaintiff attorneys initiating a string of class action lawsuits alleging that sessions replay software violated state wiretap acts— notably in California and Florida.

While decisions out of Florida led many to believe these types of cases were dying

Last year, the California legislature enacted the California Consumer Privacy Act (the “CCPA”), which imposes key data privacy requirements on businesses collecting or storing data about California residents.  The CCPA provides for civil penalties imposed by the California Attorney General (“AG”) and creates a private right of action for those residents impacted by a data breach.  While the CCPA does not go into effect until January 1, 2020, businesses that will likely be subject to the new law have been busy evaluating compliance measures, as the window between enactment and implementation is quickly closing.

Almost 30 years ago, the federal Telephone Consumer Protection Act (the “TCPA”) was likewise implemented to protect consumers when enacted in 1991, but the law was focused on public concern with telemarketing communications at the time.  The amount of litigation, and the number of class actions, under the TCPA has grown exponentially since then, with the U.S. Chamber Institute for Legal Reform reporting a 1,272% increase in TCPA lawsuits from 2010 to 2016.
Continue Reading Will the CCPA be the New TCPA for Plaintiffs?

On May 8, Georgia governor Nathan Deal vetoed Senate Bill 315, a proposed cybersecurity law imposing penalties of up to one year in jail and a $5,000 fine for “unauthorized computer access.”  In his veto, Governor Deal expressly cited concerns with the “national security implications” of the bill.  He noted the it could “inadvertently hinder the ability of government and private industries” to protect against cybersecurity breaches.
Continue Reading Cybersecurity Bill Vetoed in Georgia

With no central federal data breach law, states have taken the reins, passing an increasing number of laws that require both the protection of citizens’ private data and prompt notice of any breach of that privacy.  Governors in the last two holdout states, South Dakota and Alabama, recently signed bills to enact laws governing data breaches.  Now, all 50 states (plus D.C., Guam, Puerto Rico, and the Virgin Islands) have passed data breach notification laws.
Continue Reading Data Breach Laws on the Books in Every State; Federal Data Breach Law Hangs in the Balance