Privacy Finance & Banking General Business

Read Privacy Law updates, news, and legal commentary from leading lawyers and law firms:
News & Analysis as of

Data protection obligations on banks into force in Italy

The Italian Data Protection Authority issued regulations introducing new relevant data protection obligations for banks in the processing of customers’ personal data by their employees aimed at monitoring the transfer of...more

Federal Bills Pursue Comprehensive Data Breach Notification

The recent string of wide-scale data breach disclosures by major retailers has led to a growing call for federal legislation to protect consumer information and establish uniform data breach notification...more

Securities Enforcement Forum 2014 — SEC/FINRA Investigations & Cybersecurity Priorities

Yesterday I blogged from the Securities Enforcement Forum 2014, Bruce Carton’s excellent one-day conference, held at the Four Seasons hotel in Washington, D.C. The posts will be fairly raw, and certainly not verbatim...more

Release of the iPhone 6 — Is Apple Riding the Security Wave?

Another month brings another reported massive data breach. On September 8, 2014, Home Depot confirmed that its payment data systems had been breached, potentially impacting customers using payment cards at the retailer’s US...more

FFIEC Announces Cybersecurity Preparedness Efforts

The Federal Financial Institutions Examination Council (FFIEC) recently announced a series of initiatives aimed at promoting cybersecurity preparedness for community financial institutions throughout the country....more

Five Basic Steps for Dealing with Cybersecurity Threats

Recent legal headlines have been filled with news about data breaches and lapses of information security across all sectors of the economy. Hospitals, colleges, and even major international retailers such as Target and Home...more

Corporate Insurance Trends 2014

Although we are seeing the tail end of many of the claims which arose from the Global Financial Crisis, the sophisticated plaintiff’s bar and ever-developing class action landscape means that companies and their officers will...more

Nebraska Federal Court Refuses To Dismiss Suit Claiming Breach Of Contract, Violation of State Law for Unauthorized Credit Card...

On August 20, the U.S. District Court for the District of Nebraska denied motions to dismiss filed by a Nebraska bank and two credit card processing companies in response to a purported class action filed by a merchant...more

New Data Disposal Law in Delaware Requires Action by Impacted Businesses

While the federal government continues its inaction on data security bills pending in Congress, some U.S. states have been busy at work on this issue over the summer. A new Delaware law H.B. 295, signed into law on July 1,...more

Secret Service Raises Warning About Backoff POS Malware

The Secret Service, which investigates financial crimes, issued a security Alert on July 31, 2014, warning of malware named “Backoff” that was being used to steal payment card data from point-of-sale (POS) systems. The Alert...more

Privacy Tuesday: August 2014 #2

There is another retail data breach to talk about in this Privacy Tuesday post – privacy & security bits and bytes to start your week....more

New Guidance for Merchants on Ensuring that Service Providers Share Security Responsibility

For merchants, long gone are the days of using a card reader with a dial-up connection to their payment processor. Today’s omni-channel retailers rely on multiple third party service providers to complete payment card...more

Data Breach Litigation – A New Wave of Class Actions by Financial Institutions

Rarely does a day go by without news of a data security breach. According to the Identify Theft Resource Center, there have been a total of 447 data breaches to date this year, which represents a 20.5% increase over the same...more

New York Becomes First State to Propose Virtual Currency Regulations

On July 17, 2014, the New York State Department of Financial Services (DFS) became the first state agency to release proposed regulations specifically governing the crypto-currency industry. The proposed regulations were...more

Payment Cards Security Standards Organization Publishes Third-Party Security Assurance Guidance

On August 7, the PCI Security Standards Council (PCI SSC), the open global forum responsible for setting payment security standards, published an information supplement titled “Third-Party Security Assurance Guidance,” which...more

Bernstein Shur Business and Commercial Litigation Newsletter #42

We are pleased to present the 42nd edition of the Bernstein Shur Business and Commercial Litigation Newsletter. This month, we highlight recent cases that address controversies involving Google and privacy rights, the Foreign...more

Global Boardroom Risk Solutions Newsletter

Now more than ever, there is a need for risk solutions in the boardroom. Any organization can be faced with a significant crisis, whether a fraud investigation, a regulatory infringement, allegations of anticompetitive...more

PCAOB Focuses on Cybersecurity at Standing Advisory Group Meeting

Panelists at the PCAOB’s June 25 Standing Advisory Group Meeting discussed cybersecurity and the potential implications for financial reporting and auditing. Some of the highlights from the panel include the following...more

What’s Old is New Again—Insecure Remote Access

When a merchant is suspected of being the victim of an account data compromise event, they are often required by the card brands to hire a Payment Card Industry Forensic Investigator (PFI). The PFI provides a report on the...more

Disclosing a CEO’s Illness: Privacy vs. Transparency

From time to time, a prominent CEO’s illness makes its way into the news and highlights once again one of disclosure’s trickiest issues. Most recently, Jamie Dimon, Chairman and CEO of JPMorgan Chase, disclosed that he has...more

Delaware's New Data Destruction Law Takes Effect January 1, 2015

Delaware House Bill 295 was signed into law on July 1. The law provides that if a commercial entity seeks to dispose of records containing consumers' personal identifying information, the commercial entity must take...more

Bank Customer – Not the Bank – Liable for Fraudulent Wire Transfer

Recent security breaches have focused attention on the allocation of risk associated with fraudulent payments. The recent U.S. 8th Circuit Court of Appeals decision in Choice Escrow & Land Title, LLC v. BancorpSouth Bank...more

OCC Report Highlights Cybersecurity, BSA-AML, Indirect Auto Underwriting Concerns

On June 25, the OCC published its semiannual risk report, which provides an overview of the agency’s supervisory concerns for national banks and federal savings associations, including operational and compliance risks....more

France Facilitates Implementation of Whistleblowing Systems

In France, before implementing a whistleblowing process, a company must inform and consult with its employees’ representatives, inform its employees and notify the French Data Protection Agency (CNIL). There are two...more

FFIEC Launches Cybersecurity Resources Web Page

On June 24, the FFIEC unveiled a new web page that will serve as a central repository for current and future FFIEC-related materials on cybersecurity. Although the FFIEC did not release any new resources, the launch shows the...more

225 Results
|
View per page
Page: of 9

Follow Privacy Updates on: