Press "Enter" to skip to content

Posts published by “Eric Rosenkoetter”

Eric Rosenkoetter is a principal at Maurice Wutscher LLP, where he provides counsel to businesses and consumer financial services firms nationwide. For many years, he has focused his practice on various aspects of financial services law. As a litigation attorney, he has conducted every aspect of the litigation process, including countless depositions, motion proceedings, bench and jury trials, and appeals in various courts. In addition, he has significant experience as a compliance and transactional attorney, providing strategic, business growth, legislative, compliance and regulatory advice to national corporations and trade associations. For example, he has drafted consumer contracts and disclosures designed to state-specific statutory requirements, and developed “Best Practices” guides and state-by-state compliance grids, for national financial services companies. He also conducted research and crafted a metrics report for a national trade association with analysis designed to counter the claims of advocacy groups. Eric’s experience also includes working for a national corporation as Executive Counsel, Chief Compliance and Ethics Officer, and Director of Legislative Affairs, and as a federal lobbyist and Director of Government and Public Affairs for a national financial services trade association. In the government sector, Eric presided over approximately 6,000 state administrative hearings, served as a staff attorney for the Missouri Senate, and handled litigation in 33 counties as a regional managing attorney. Eric frequently speaks to audiences on topics relevant to the financial services industry including regulatory compliance, data privacy law and related advocacy initiatives. For more information, see https://mauricewutscher.com/attorneys/eric-rosenkoetter/

‘Consumer Data Privacy Act’ Introduced in Mississippi With Expansive Coverage

Legislators in Mississippi recently introduced SB 2548. the "Mississippi Consumer Data Privacy Act." The bill contains provisions similar to the California Consumer Privacy Act but goes further than the CCPA with a lower annual gross revenue threshold, applying to any for-profit business, or any entity that controls or is controlled by such a business, that does business in Mississippi.

Idaho Introduces ‘Idaho Patient Act’ Relating to Medical Collections

Idaho HB 425 was introduced on Feb. 6, 2020, to address the perceived issue that “current Idaho law enables excessive attorney's fees and fails to provide judges with clear guidance to combat abuses of the collections process.” This proposed law would apply to “any person” and does not limit its application to debt collectors.

Arizona Privacy Legislation – Right, Left and Center(ish)

Consumer data privacy appears to be on the minds of legislators in Arizona this session.  As previously mentioned, House Concurrent Resolution 2013 was introduced in Arizona on Jan. 10, 2020, by five Republicans and one Democrat declaring: That the Members of the Legislature oppose the enactment of laws, the adoption of regulations or the imposition of out-of-state standards that would restrict or otherwise dictate standards related to consumer data privacy, absent a clear nexus with consumer harm. That the Members of the Legislature believe a single federal standard for comprehensive consumer data privacy regulation is preferable to a state-by-state approach. Not…

And They’re Off! Multiple States Charging Ahead With Privacy Legislation    

As California Attorney General Xavier Becerra advises consumers of all their new rights under the California Consumer Privacy Act (CCPA), multiple states are introducing their own privacy acts, some of which are remarkably similar to the CCPA.  The most-watched privacy legislation is perhaps in Washington State, described below, which very nearly passed its Privacy Act last year.

The 2019 Privacy Legislation Bomb Cyclone

The European Union’s General Data Protection Regulation (GDPR) went into effect on May 25, 2018, and introduced privacy concepts that were new to some U.S. businesses.  Fortunately, the GDPR was developed over a period of time that allowed for thoughtful deliberation and careful drafting. The California Consumer Privacy Act (CCPA), on the other hand, was speedily enacted under the threat of a ballot initiative.

Nevada Enacts ‘Consumer Protection from the Accrual of Predatory Interest After Default Act’

Nevada has enacted a new law entitled the “Consumer Protection from the Accrual of Predatory Interest After Default Act,” which relates to consumer form contracts used in connection with retail installment transactions and the prejudgment and postjudgment interest and attorney fees that may be awarded by a court. Signed into law on June 3 and applicable only to contracts entered into on or after Oct. 1, the Act adds a new chapter to Title 8 of the Nevada Revised Statutes, “Commercial Instruments and Transactions.” The Act does not apply to a number of entities, including (but not limited to): banks;…

Illinois Legislature Passes Amendments to Data Breach Notification Law

On June 25, the Illinois Legislature sent Senate Bill 1624 to Gov. J. B. Pritzker.  The legislation adds a requirement to Illinois’ data breach notification law to notify the attorney general in the event of certain data breaches.  The bill will become law if not returned by the governor by Aug. 24, 2019. The legislation would amend the Personal Information Protection Act, 815 ILCS 530/10, by requiring that any data collector who must inform more than 500 Illinois residents of a data breach also provide notice to the attorney general describing: the nature of the breach; the number of affected residents;…

Texas Enacts Amendments to Data Breach Notification Law; Creates Privacy Protection Advisory Council

On June 14, Texas Gov. Greg Abbott signed into law House Bill 4390 which amends the notification requirements of Texas’ data breach law and creates an advisory council to study data privacy laws generally.  The provisions become effective Jan. 1, 2020. Currently, a person conducting business in Texas who “owns or licenses computerized data that includes sensitive data” must disclose the breach to any affected individual “as quickly as possible.”  Tex. Bus. & Com. Code § 521.053(b). The amendments will require the disclosure “be made without unreasonable delay and in each case not later than the 60th day after the…

New Washington Debt Collection Law Requires Itemization Notice for Medical Debt

On April 30, Washington Gov. Jay Inslee signed into law Substitute House Bill 1531 which places new requirements on medical debt collectors.  The new provisions go into effect July 28, 2019. The new law requires medical debt collectors to inform consumers in the initial written communication of the right to request the original account number, date of last payment and an itemized statement regarding the debt.  For hospital debt, the communication must also notify consumers they “may be eligible for charity care from the hospital, together with the contact information for the hospital.” Upon an oral or written request for…