When AI Meets PI: Assessing and Governing AI from a Privacy Perspective
The American Privacy Right Act (APRA) explained
Navigating the Regulation Jungle: How to Be Compliant, Work Efficiently, and Stay Sane
Healthcare Document Retention
Legal Alert | Wiretap Laws in the United States
Business Better Podcast Episode: Cyber Adviser – A Comparison of AI Regulatory Frameworks
Cost of Noncompliance: More Than Just Fines
Will the U.S. Have a GDPR? With Rachael Ormiston of Osano
No Password Required: MITRE Engage Lead, Innovator in Cyber Deception, and Dance Community Builder
Navigating State Privacy Laws: A Conversation with Oregon & Texas Regulators about Privacy Enforcement
The Team Continues to Grow: A Conversation With Our Newest Colleague, Kaitlin Clemens — Unauthorized Access Podcast
Episode 326 -- Dottie Schindlinger on Diligent's Report on Board Oversight of Cybersecurity Risks and Performance
[Webinar] Midyear Data Privacy Check-in: Trends & Key Updates
Information Security and ISO 27001
Decoding Privacy Laws: Insights for Small to Mid-Sized Businesses — Regulatory Oversight Podcast
No Password Required: Education Lead at Semgrep and Former Czar for Canada’s Election Security
Navigating State Privacy Laws
[Webinar] You Are Here: First Steps in Data Mapping
Data Centers: Demand, Development, and Future Challenges With Ali Greenwood — TAG Infrastructure Talks Podcast
AGG Talks: Women in Tech Law - Episode 1: Charting the Course: Women Trailblazing in Cybersecurity and Crisis Governance
On April 4, 2024, the Cybersecurity and Infrastructure Security Agency (“CISA”) published for public comment a long-awaited proposed rule to implement the Cyber Incident Reporting for Critical Infrastructure Act of 2022...more
On 23 January 2024, the UK Government announced a call for views and requested feedback from businesses of all sizes across every sector on its draft Cyber Governance Code of Practice (the "Draft Code"). Aimed at directors...more
Colombia's Superintendence of Industry and Commerce (SIC) reiterated the importance of complying with its obligations as set forth through Circular 003 of Aug. 1, 2018, regarding the update and registrations of databases in...more
Welcome to the July – September 2023 issue of our Irish Quarterly Legal and Regulatory Developments report for asset management and investment funds. This report covers key dates and developments during the quarter, such...more
After months of uncertainty, the rulemaking process for the California Privacy Rights Act (CPRA), the first-ever comprehensive U.S. data privacy law applicable to human resources data (“HR Data”), concluded on March 29,...more
In his State of the Union address on February 7, 2023, President Biden affirmed his position on consumer data privacy protections and specifically his focus on strengthening protections for children. With several state data...more
With only four months left before most changes to the federal Standards for Safeguarding Customer Information (“Safeguards Rule”) – a component of the Gramm-Leach Bliley Act (“GLBA”) that provides for the protection of...more
The California Privacy Protection Agency (CPPA or Agency) published 66 pages of proposed draft regulations (Draft Regulations) that govern the California Privacy Rights Act (CPRA) as a special treat on Friday, May 27 for some...more
Already pushed back once, the Brazilian General Data Protection Law, Lei Geral de Proteção de Dados Pessoais (LGPD), was scheduled to go into effect on August 16, 2020. Yet, there have been separate government actions in...more
Tuesday, September 4, 2018 marked the New York State Department for Financial Service’s deadline for compliance with several sections of cybersecurity regulation 23 NYCRR 500 (the “Regulation”). The Regulation covers any...more
As the final days of 2013 passed and the sunset of the Stark Law exception and anti-kickback law safe harbor for electronic health record (EHR) donations loomed nearer, the U.S. Department of Health and Human Services (HHS)...more
Effective January 1, 2014, the Texas Supreme Court enacted important amendments to the Texas Rules of Civil Procedure. These amendments are not limited to the well–publicized mandate for electronic filing. Lesser–known...more
The compliance date for the omnibus final rule amending the privacy, security, breach notification and enforcement regulations under the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information...more
Media coverage of the one year delay in certain Affordable Care Act provisions might mislead some employers into thinking they have no obligations. Many requirements still take effect this year and in 2014. Here is one of the...more
What is COPPA? The Children’s Online Privacy Protection Act of 1998 (COPPA), and the COPPA Rule, 16 C.F.R. Part 312, promulgated by the Federal Trade Commission (FTC) under that Act, require that website operations...more
In This Issue: - Key Provisions In the Final Omnibus HIPAA/HITECH Rules and What They Mean for You - NLRB and EEOC May Target Employer Efforts to Keep Employees Quiet During Internal Investigations -...more
The wait is finally over. On January 17, 2013, the U.S. Department of Health & Human Services (HHS), Office for Civil Rights (OCR), issued the final “omnibus” rule modifying the HIPAA Privacy, Security, Breach Notification...more
Executive Summary - On January 25, 2013, the Federal Register will publish final omnibus rules written by the U.S. Department of Health and Human Services (HHS) to modify the HIPAA Privacy, Security, Breach...more