Photo of Kristin Bryan

Kristin Bryan is a litigator experienced in the efficient resolution of privacy matters, including class action and multidistrict litigation, in courts nationwide.  As a natural extension of her experience litigating data privacy disputes, Kristin is also experienced in providing business-oriented privacy advice to a wide range of clients, with a particular focus on companies handling consumers’ personal data. Kristin is admitted to practice in both New York and Ohio and currently the co-chair of the International Association of Privacy Professional’s KnowledgeNet for Cleveland.

View full website bio.

CPW has been tracking data breach litigations for some time, including how the Courts of Appeals have addressed the question of Article III standing.  Yesterday the Second Circuit issued a monumental decision that attempts to weave together rulings from other courts to formulate a multi-factor standing analysis.  McMorris v. Carlos Lopez & Assocs., 2021

In case you missed it, below is a summary of recent posts from CPW.  Please feel free to reach out if you are interested in additional information on any of the developments covered.

BREAKING: Supreme Court Unanimously Curbs FTC’s Ability to Obtain Monetary Relief in Court | Consumer Privacy World

Wait, What?! Ninth Circuit Affirms

At CPW we’ve been giving our readers comprehensive coverage of rulings in the realm of data breach litigation.  For a reminder of the current Article III standing split in the data breach context and some other decisions, check out our prior posts here, here, and here.  Well, last week, in a break

The Supreme Court issued a unanimous opinion today slashing the Federal Trade Commission’s ability to seek monetary awards in court, finding that Congress had not intended to give the agency that power in a section of the Federal Trade Commission Act granting the FTC the ability to seek injunctions.  This critical ruling invalidates what has

In case you missed it, below is a summary of recent posts from CPW.  Please feel free to reach out if you are interested in additional information on any of the developments covered.

Say It Isn’t So – Court Certifies Rule 23(b)(3) Damages Class in Data Breach Litigation | Consumer Privacy World

Court Dismisses Data

CPW has been covering data breach litigations for quite some time, including dismissal of defective data breach complaints and the ongoing federal circuit split regarding Article III standing.  Yesterday, for the first time, a court certified a Rule 23(b)(3) class action of individual consumers complaining of a data breach involving payment cards.  See In

In a must-read, CPW’s Glenn Brown provides a detailed breakdown of the Virginia Consumer Data Protection Act (the “CDPA”) and how it stacks up relative to the California Consumer Privacy Act of 2018 (“CCPA”), the California Privacy Rights Act (“CPRA”), which amends and will essentially replace the CCPA on 1 January 2023, and the EU

As Glenn Brown covers in greater detail here, as the trend of state laws granting more privacy and greater control over personal information continues in the US, the fate of privacy bills in Washington State, Oklahoma and Florida serve as a reminder that as with any other issue, political compromise is still a necessity

As Katie Sharpless, Alan Friel and Ann LaFrance report at SPB, last month the New York State Department of Financial Services (“DFS”) entered into a consent order requiring Residential Mortgage Company to pay $1.5 million for failing to comply with Cybersecurity Regulation, Part 500 of Title 23 of the New York Code.  The