Domingo DeGrazia, a state lawmaker actively involved in advocating for comprehensive state privacy legislation in 2021, shares his insights in this Member Spotlight. Despite his efforts, his bill, House Bill 2865, faced challenges and did not progress beyond its initial House committee assignment for the second time in three years.

During the interview, conducted by IAPP Staff Writer Joe Duball, DeGrazia sheds light on the obstacles encountered with his bill and discusses the possibility of reintroducing it for the 2022 session. Additionally, he highlights the value of collaborating with lawmakers from other states to advance privacy initiatives.

According to a report by Vice, the Arizona Motor Vehicle Department (MVD) is accused of selling drivers' highly sensitive personal information, including Social Security numbers and driver's license photos, to private investigators. While many Department of Motor Vehicles (DMVs) typically provide information such as names, vehicle registration details, or addresses, the Arizona MVD's alleged practices extend to more confidential data.

Doug Nick, the Assistant Communications Director for Consumer Outreach at the Arizona Department of Transportation, stated that the release of personally identifiable information is governed by federal law, and the MVD adheres to the provisions outlined in those regulations.

‍

In a move reported by The Washington Post, Arizona Attorney General Mark Brnovich has filed a lawsuit against Google, accusing the tech giant of privacy violations. The lawsuit alleges that Google persisted in collecting location data from users even after they had disabled digital trackers. Such actions potentially contravene state consumer protection laws related to deceptive business practices. In response, Google spokesman Jose Castaneda asserted that privacy features have always been integrated into their products and that they provide robust controls for managing location data. The company aims to clarify its position as the case progresses.

‍

According to Tucson.com, the Arizona Court of Appeals has issued a ruling affirming that citizens possess a constitutional right to online privacy when law enforcement attempts to identify an individual without a warrant. The court's decision is based on the provision within the state constitution, which states that "no person shall be disturbed in his private affairs, or his home invaded, without authority of law." Judge Sean Brearcliffe, in the ruling, emphasized that this provision counters arguments suggesting that the disclosure of personal information to a third party diminishes the expectation of privacy.

The Washington Post has reported that the office of Arizona Attorney General Mark Brnovich will initiate an investigation into Google's alleged practices of tracking the location data of Android users. According to a public filing, the attorney general's office has enlisted the services of an external law firm to conduct an inquiry into the activities of an unspecified technology company.  

The investigation will focus on aspects such as the storage of consumer location data, tracking of consumer location, and other forms of consumer tracking through smartphone operating systems. This tracking is believed to persist even when consumers disable "location services" and take additional measures to prevent such tracking. Consumer advocates anticipate that Arizona's probe could potentially prompt other states and the federal government to launch their own investigations into the matter.  

Learn More: Please note that accessing the full story may require registration..

‍

‍

According to a report by ABC15 Arizona, Arizona has recently passed a new data breach law that aims to hold businesses accountable for incidents of data breaches. The law, authored by Arizona Attorney General Mark Brnovich and introduced by Representative T.J. Shope, is scheduled to come into effect in August. The legislation introduces several key provisions, including an increase in the maximum penalty for breaches from $10,000 to $500,000 per breach. Additionally, businesses will be required to notify customers within a 45-day timeframe if their personal information has been compromised. In a related development, Target recently reached a settlement in the 8th Circuit Court of Appeals, establishing a $10 million fund for affected customers and allocating $6.75 million to plaintiffs' attorneys.

Arizona Attorney General Mark Brnovich, who has been in office since 2015, has made data privacy and cybersecurity a top priority during his tenure. Currently serving as the Chair of the Conference of Western Attorneys General (CWAG), Brnovich has dedicated his 2018 Chair Initiative to address privacy, cybersecurity, and digital piracy. As part of this initiative, a conference will be held in Scottsdale, Arizona, on May 3 and 4, where attorneys general will engage in discussions concerning individuals' privacy rights, ensuring the security of sensitive information, updating state data breach statutes, and combating digital piracy. In an interview with The Privacy Advisor, AG Brnovich shares insights into his focus on privacy and data security and sheds light on how attorneys general across states are addressing these pressing issues.