Privacy Securities Consumer Protection

Read Privacy Law updates, news, and legal commentary from leading lawyers and law firms:
News & Analysis as of

Additional Clarification regarding HHS OCR Phishing Email Alert

More information from HHS OCR about the phishing threat... ..On November 28, 2016, the HHS Office for Civil Rights issued a listserv announcement warning covered entities and their business associates about a phishing...more

OCR Provides Additional Clarification on Phishing Scam

As we reported earlier this week, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights described a phishing campaign that is attempting to convince recipients of their inclusion in OCR’s Phase 2...more

HHS OCR Alert: Phishing Email Disguised as Official OCR Audit Communication

This alert just in from HHS OCR: “It has come to our attention that a phishing email is being circulated on mock HHS Departmental letterhead under the signature of OCR’s Director, Jocelyn Samuels. This email appears to...more

FINRA forces firms into the weeds on security policies

The Securities and Exchange Commission continues to be active in the area of cybersecurity. A recent Letter of Consent issued by the agency’s Financial Industry Regulatory Authority (FINRA) contained some startling new...more

Cybersecurity 2017 – The Year In Preview: Trade Secret Theft Takes Center Stage

Editor’s Note: This is the first of an end-of-year series of posts examining coming trends in cybersecurity. Posts will examine trends in state regulations, federal regulatory authority, the changing nature of the threat...more

Small Companies and Those Not Certified Under the Safe Harbor Face Hidden Costs in the EU/US Privacy Shield Certification Process

The Privacy Shield in a nutshell. The Privacy Shield permits U.S. businesses to process and control the personal data of individuals, aka data subjects, located in the European Union (EU). Without the Privacy Shield,...more

FFIEC Offers Guidance on Information Security Exams

How will examiners review the information security programs of financial institutions? Revised guidance from the Federal Financial Institutions Examination Council (FFIEC) provides help to banks by articulating the...more

SEC Steps Up Cybersecurity Enforcement with $1 Million Fine Against Morgan Stanley

The Security and Exchange Commission’s (“SEC”) recent $1 million settlement with Morgan Stanley Smith Barney LLC (“MSSB”) marked a turning point in the agency’s focus on cybersecurity issues, an area that the agency has...more

Stop Faxing

I’ve long thought that sending faxes was a pretty silly means of communication. Don’t send me a fax. I don’t want it. At some point I’m hoping that even my kids’ doctor’s office will get dragged into the 20th century and...more

New and Disruptive Technologies: The Care and Feeding of the New Economy [Expect Focus – Vol. I, Winter 2016]

IN THE SPOTLIGHT - The CFPB Takes First Enforcement Action Related to Data Security Practices. LIFE INSURANCE - Class Certified in Unique Fixed Indexed Annuity Case. Alleged Misrepresentations to DFS Warrant...more

Financial Services Weekly News - March 2016 #2

Regulatory Developments - MSRB Publishes Compliance Advisory for Brokers, Dealers and Municipal Securities Dealers - The MSRB recently published its first Compliance Advisory for Brokers, Dealers and Municipal...more

Changes to the Annual Privacy Notice Delivery Requirement

As a result of recent changes to federal privacy laws, financial institutions—such as registered investment advisers, exempt reporting advisers, commodity trading advisers, registered broker-dealers and private funds—may no...more

FAST Act Drives Long-Awaited Gramm-Leach-Bliley Amendment

In late 2015, Congress passed the Fixing America’s Surface Transportation Act - a vehicle for an amendment to the Gramm-Leach-Bliley Act (GLBA) meant to eliminate the need for certain companies to provide annual privacy...more

New York DFS Set to Regulate Cybersecurity

Why it matters - Stating that the New York Department of Financial Services believes cybersecurity to be one of the most critical issues facing the financial world today, the agency sent a letter to state and federal...more

Dow Jones & Co. notifies 3500 of data breach

Dow Jones & Co. Has notified 3500 of its customers that their information has been accessed by unauthorized individual in a data breach that spanned August of 2012 through July of 2015. The unauthorized access, through...more

Financial Institutions Council Publishes Statement On Hacker Extortion

Amid the recent increase in hacker extortion cases, the Federal Financial Institutions Examination Council (“FFIEC”) issued a statement on November 3 (the “Statement”) describing steps financial institutions should take to...more

Following the Wisdom of the Crowd? A Look at the SEC’s Final Crowdfunding Rules

In this alert, we provide a detailed overview of the final rules, Regulation Crowdfunding, which will be applicable to crowdfunding offerings conducted in reliance on Section 4(a)(6) of the Securities Act of 1933 as amended...more

CFTC Approves NFA Interpretive Notice on Information Systems Security Programs, Including Cybersecurity Guidance

The CFTC recently approved the National Futures Association’s interpretive notice (the “Cybersecurity Notice”) on the general requirements that members should implement for their information systems security programs...more

New York Stock Exchange releases cybersecurity guide for public companies

We continue to urge CEOs and boards of public companies (and private and not-for profits) to harken the call of getting a handle on cybersecurity risk to companies today. Not too soon, the New York Stock Exchange published a...more

SEC Cybersecurity Update

Results from the SEC’s First Round of Cybersecurity Examinations - On February 3, 2015, the OCIE published a risk alert summarizing its findings from its examinations of over 100 registered investment advisers and...more

SEC Announces Second Wave of Cyber Exams of Broker Dealers and Advisors – Is Your Firm Ready?

In April 2014, the Securities and Exchange Commission’s (“SEC”) Office of Compliance Inspections and Examinations (“OCIE”) issued a Risk Alert announcing its first cybersecurity sweep initiative. Pursuant to that initiative,...more

Proactive Approach To Cybersecurity: Recent SEC guidance and enforcement actions suggest that reactive firms may be in the SEC’s...

In an environment where even the largest and most powerful corporations have fallen victim to data breaches, it can be challenging to fathom how to protect against the sophisticated and ever-evolving threat of cyber attacks....more

Scottrade announces data breach affecting 4.6M customers

Scottrade, a retail brokerage firm, announced late last week that it suffered an intrusion by cyber hackers who stole client contact information of 4.6 million customers. The intrusion occurred between late 2013 and early...more

Investment Adviser Settles SEC Cybersecurity Enforcement Action; SEC Issues Investor Alert

On September 22, the U.S. Securities and Exchange Commission (“SEC”) and R.T. Jones Capital Equities Management, Inc. (“R.T. Jones”), a St. Louis-based investment adviser, settled charges that R.T. Jones failed to adopt...more

Financial Services Weekly News - October 2015

Regulatory Developments - FINRA Files Proposed Rule Change to Apply Markup Rule to Government Securities: On Sept. 30 FINRA filed with the SEC a proposed rule change, published in the Federal Register on Oct. 6, to...more

105 Results
|
View per page
Page: of 5

Follow Privacy Updates on:

JD Supra Readers' Choice 2016 Awards

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×