Morrison Foerster is an international law firm with lawyers practicing throughout the United States, Asia, and Europe. Click to discover more.

mofo_share_image.jpg

Morrison Foerster

common-default.jpeg

Terms / Notices

Cookies

Privacy Policy

Reporting Hotline

Attorney Advertising

Alumni

  Linkedin

MoFo LinkedIN

  Facebook

MoFo Facebook

YouTube

MoFo Youtube

Morrison Foerster - Footer

Increased Data Broker Regulation Has Companies Weighing Multistate Compliance

You have not solved the recaptcha challenge yet or session expired, try again.

Email Disclaimer

Disclaimer

Unsolicited e-mails and information sent to Morrison Foerster will not be considered confidential, may be disclosed to others pursuant to our <a href="https://www.mofo.com/about/privacy-policy.html">Privacy Policy</a>, may not receive a response, and do not create an attorney-client relationship with Morrison Foerster. If you are not already a client of Morrison Foerster, do not include any confidential information in this message. Also, please note that our attorneys do not seek to practice law in any jurisdiction in which they are not properly authorized to do so.

Feedback

mofo-logo-2022.svg

People

Capabilities

Resources

About

Community

Offices

Careers

Stay Connected

Boris Segalis spoke with Privacy Daily about the growing trend of states aligning their data broker regulations, particularly as...

<h3>Sorry, we weren’t able to find the terms you entered.</h3>Please try a different term or keyword.

People

Capabilities

Resources

Not Found Cards

About Morrison Foerster

people-default-header-desktop.jpg

people-default-header-mobile.jpg

Default Meta Data

Boris Segalis spoke with Privacy Daily about the growing trend of states aligning their data broker regulations, particularly as Texas amends its Data Broker Act to more closely resemble California’s approach. Boris noted that, “Businesses like certainty,” and explained that companies may prefer a uniform, multistate registration strategy if it minimizes regulatory risk. The article highlights that recent and forthcoming changes in Texas and California, as well as developments in Oregon and Vermont, are increasing compliance burdens for companies not traditionally considered data brokers. As a result, organizations are carefully weighing whether to proactively register in multiple states or limit registration to those where they are clearly subject to the law.Read the <a href="https://privacy-daily.com/article/2025/08/05/increased-data-broker-regulation-has-companies-weighing-multistate-compliance-2508050057?BC=bc_68932a2110d34" target="_blank">full article</a> (subscription required).

Sign Up

Boris Segalis is a partner in Morrison Foerster’s Data, Cyber + Privacy Group. For over a dozen years, he has counseled clients on privacy and cybersecurity issues in the context of strategic product advice, corporate transactions, and regulatory investigations.Boris regularly advises clients on the development and implementation of data-driven products and services, on global privacy and cybersecurity compliance, and on handling cyber incidents affecting companies and users globally. Boris also regularly defends companies in U.S. federal, state, and global privacy and cybersecurity investigations, including representing clients in front of the Federal Trade Commission (FTC), the New York and California attorneys general, and foreign regulators.Boris’s practice focuses on advising clients on the requirements of a variety of U.S. privacy and cybersecurity laws, including the California Privacy Rights Act (CCPA/CPRA) and other U.S. state privacy laws; state cybersecurity requirements such as the New York State Department of Financial Services (NYDFS)’s Cybersecurity Regulation; the Children’s Online Privacy Protection Act (COPPA); the Family Educational Rights and Privacy Act (FERPA); CAN-SPAM; NIST’s Cybersecurity Framework (CFS); the Telephone Consumer Protection Act (TCPA); and the Video Privacy Protection Act (VPPA). Boris regularly advises financial institutions and Fintech companies on the Gramm-Leach-Bliley Act (GLBA), the Fair Credit Reporting Act (FCRA), and the Payment Card Industry Data Security Standard (PCI DSS). Boris also has experience advising companies on privacy concerns stemming from the Illinois Biometric Information Privacy Act (BIPA) and other biometric data requirements. Boris has a strong command of global privacy and cybersecurity laws and advises companies on regulations such as the General Data Protection Regulation (GDPR), the EU-U.S. Data Privacy Framework, and the EU’s ePrivacy Directive.Boris counsels clients ranging from emerging to late-stage to public companies across industries, including technology, data brokerage, AI, financial services and Fintech, crypto, life sciences, consumer services, e-commerce, AdTech, media, and others. For seven consecutive years, Boris has been individually recognized by Chambers USA in the Privacy & Data Security category and is recognized by Chambers Global for Privacy & Data Security – USA. He has also been recognized by The Legal 500 as a leading lawyer in cyber law (including data privacy and data protection). Crain’s New York Business has previously included him in its 40 Under 40 list, and New York Metro has recognized Boris as both a Super Lawyer and a Rising Star.Boris is a Certified Information Privacy Professional (CIPP/US) through the International Association of Privacy Professionals (IAPP), has previously served as co-chair of NYC IAPP KnowledgeNet, and served on the IAPP’s Research Board. Boris currently serves as one of the leaders of the UJA Privacy and Cybersecurity Group. Boris also is an adjunct professor at Vanderbilt University School of Law, where he co-teaches a class on the law of data as an asset.