News & Analysis as of

Compliance Security Risk Assessments

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations. ... more +
Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations.  In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -
Society of Corporate Compliance and Ethics...

The EU AI Act: A comprehensive guide for organizations

Society of Corporate Compliance and Ethics... on

The EU recently introduced the AI Act, landmark legislation aimed at regulating artificial intelligence (AI) technologies. This article provides an in-depth overview of the EU AI Act, its implications for organizations, and...more

Eversheds Sutherland (US) LLP

No longer in limbo - China’s CAC finalises new regulations regarding cross-border data flows

Eversheds Sutherland (US) LLP on

The much anticipated response to the Consultation initiated by the Cyberspace Administration of China (CAC) last September has finally arrived (read our earlier briefing here). Last Friday, the CAC ended months of speculation...more

WilmerHale

China Finalizes Rules to Ease Data Export Compliance Burden

WilmerHale on

On March 22, 2024, the Cyberspace Administration of China (“CAC”) promulgated the final version of the Provisions on the Promotion and Regulation of Cross-Border Data Flows (the “Final Provisions”), bringing to conclusion the...more

Health Care Compliance Association (HCCA)

[Webinar] Security Risk Management for the Compliance Officer - January 12th, 12:00 pm - 1:30 pm CT

Health Care Compliance Association (HCCA) on

Learning Objectives: - Benefits of doing a comprehensive security risk assessment - Understanding of the scope of a comprehensive risk assessment - Ability to evaluate their current security risk assessment - Ability to...more

Holland & Knight LLP

NYDFS Proposes Amendments to Cybersecurity Regulation

Holland & Knight LLP on

The New York Department of Financial Services (NYDFS) on Nov. 9, 2022, released Proposed Amendments to its Cybersecurity Regulation. The NYDFS Cybersecurity Regulation was one of the first laws requiring companies to comply...more

Benesch

As China Cross-Border Data Transfer Security Assessment Requirement Comes Into Effect, New Guidelines Posted for Security...

Benesch on

The new guidelines provide insight into how businesses can submit applications to the CAC in order to obtain approval via the CAC security assessment cross-border data transfer requirement. As of September 2022, all...more

Linda Liu & Partners

China’s Security Assessment Measures for Outbound Data Transfers and Understanding on the Application Guidelines

Linda Liu & Partners on

The much-anticipated Security Assessment Measures for Outbound Data Transfers (hereinafter referred to as "the Measures") of China has already come into effect on September 1, 2022, and on the eve of the effective date, the...more

Moore & Van Allen PLLC

SEC Announces Exam Priorities for 2022

Moore & Van Allen PLLC on

On March 30, 2022, the U.S. Securities and Exchange Commission’s (“SEC”) Division of Examinations released its exam priorities for fiscal year 2022 (the “2022 Priorities”). As in years past, these exam priorities naturally...more

Hinshaw & Culbertson - Consumer Crossroads

NYDFS Issues Order and Instructions to Regulated Entities in Response to COVID-19

Hinshaw & Culbertson - Consumer Crossroads on

In response to challenges facing the financial services industry as a result of coronavirus (COVID-19), New York's Department of Financial Services (DFS) has issued a COVID-19 compliance order, along with a series of industry...more

International Lawyers Network

States Are Proposing Their Own CCPA-Like Privacy Laws

International Lawyers Network on

Businesses that have just about come to terms with the California Consumer Privacy Act (CCPA) may have more privacy rules and regulations to deal with going forward. Legislators in a number of other states across the country...more

Health Care Compliance Association (HCCA)

Under New Settlement, Ambulance Co. Pays OCR $65K, Must Quickly Encrypt Computers

Health Care Compliance Association (HCCA) on

Report on Patient Privacy 20, no. 1 (January 2020) - In the waning days of 2019, the HHS Office for Civil Rights (OCR) didn’t halt the HIPAA enforcement momentum it had built up during the last quarter of the year, dinging...more

Health Care Compliance Association (HCCA)

Report on Medicare Compliance Volume 28, Number 40. News Briefs - November 2019 #2

Health Care Compliance Association (HCCA) on

Report on Medicare Compliance Volume 28, Number 40. (November 11, 2019) - - In a new Medicare compliance review, the HHS Office of Inspector General (OIG) said Angels Care Home Health in Salina, Kansas, didn’t comply with...more

Holland & Hart - The Benefits Dial

It’s HIP(AA) to be square… making sure you are HIPAA compliant

Holland & Hart - The Benefits Dial on

The Health Insurance Portability and Accountability Act (“HIPAA”) was created for one specific reason – evolution of technology. Today, health care providers are using online clinical applications and electronic health...more

Sunstein LLP

Twenty Years Under the Microscope: A Small Business, a Data Breach and the FTC

Sunstein LLP on

James Grago has a nice business going. He runs a website called ClixSense.com that permits users to earn money by completing surveys and watching advertisements. Revenues grew from $6.7 million in 2015 to $9.1 million in...more

Harris Beach PLLC

SHIELD Act Requires Data Compliance Programs to Protect Privacy of New York State Residents

Harris Beach PLLC on

Last week, Governor Cuomo signed the SHIELD Act into law. As a result, organizations that maintain private information concerning New York state residents will have to develop compliance programs before the law becomes...more

White & Case LLP

Cybersecurity and the UK legal landscape

White & Case LLP on

As businesses continue to digitise their assets and operations, the need to continually assess IT infrastructure and the technical measures in place to safeguard key information assets and data becomes ever more important....more

Orrick, Herrington & Sutcliffe LLP

Privacy, Security, Risk: What You Missed At IAPP Conference

Orrick, Herrington & Sutcliffe LLP on

Earlier this month, privacy and security professionals from around the globe gathered for “Privacy. Security. Risk. 2015”—the second joint conference between the International Association of Privacy Professionals and the...more

Robinson+Cole Data Privacy + Security Insider

Unmasking Information Governance: What is it and how do I move it forward in my organization?

Robinson+Cole Data Privacy + Security Insider on

The heightened state of information security in recent years has instigated genuine collaboration, in many organizations, amongst its professionals in IT, records, security, risk, compliance, and other stakeholders in...more

BakerHostetler

HIPAA Fine Underscores OCR’s Focus on Physician Group Compliance

BakerHostetler on

The U.S. Department of Health and Human Services’ Office for Civil Rights (OCR) recently announced a $750,000 fine and resolution agreement, including a Corrective Action Plan (CAP), for Cancer Care Group, P.C. (CCG), a...more

Womble Bond Dickinson

Is Your HIPAA Compliance Program Ready for the FTC?

Womble Bond Dickinson on

Everyone in healthcare knows that the next round of HIPAA audits is coming. Covered entities and business associates have long been advised to review and update their HIPAA security risk analyses, have business associate...more

Holland & Knight LLP

Actions Foreshadow Uniform Cybersecurity Regulations for Federal Contractors - Two Recent Executive Agency Actions Lay the...

Holland & Knight LLP on

Federal government contractors handling Controlled Unclassified Information (CUI) should take notice of two recent executive agency actions. Combined, they lay the groundwork for a new cybersecurity clause to be added to the...more

McDermott Will & Emery

OCR Enforcement Trends

McDermott Will & Emery on

On April 27, 2015, the U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a resolution agreement with Cornell Prescription Pharmacy (CPP) pursuant to which CPP paid a $125,000...more

22 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide