News & Analysis as of

Data Security Personally Identifiable Information Enforcement Actions

Sheppard Mullin Richter & Hampton LLP

SEC Continues its Cybersecurity Focus, Settles with Company over Lax Security Measures

The SEC recently issued an order and settlement against a company from a pair of cyberattacks in which millions of dollars of client funds were stolen. While the company was able to recover a portion of the funds and...more

Foley Hoag LLP - Security, Privacy and the...

SEC Revamps and Enhances Data Protections with Amendments to Regulation S-P

The Securities and Exchange Commission (“SEC”) has announced the adoption of amendments to Regulation S-P (“Amendments”) to modernize and enhance the rules that govern the treatment of consumers’ nonpublic personal...more

Patterson Belknap Webb & Tyler LLP

Multistate Coalition of State Attorneys General Secures $49.5 Million from Cloud Company Blackbaud for 2020 Data Breach

State regulators across the country continue to increase their focus on cyber security and data privacy compliance and enforcement. For years, cloud company Blackbaud, a service provider to thousands of nonprofit enterprises,...more

Jones Day

Federal Court Grants the SEC Limited Access to the Identities of Law Firm Clients Impacted by a Cyberattack

Jones Day on

In Short - The Situation: Following a cyberattack on a law firm's systems, the Securities and Exchange Commission ("SEC") subpoenaed the firm for information, including the identity of clients whose information may have...more

Sheppard Mullin Richter & Hampton LLP

FTC Looks to Update Health Breach Notification Rule, Targeting Digital Health Industry

The FTC recently proposed amendments to the Health Breach Notification Rule (HBNR). This is on trend with its aggressive interest over the last couple of years in health data not covered by HIPAA....more

McDermott Will & Emery

[Webinar] Brazil’s LGPD Gains Some Teeth: A Review of the New Rules That May Affect Your Business - April 26th, 12:00 pm - 1:00 pm...

McDermott Will & Emery on

In February 2023, the Brazilian National Data Protection Authority (ANPD) published the rules for the application of sanctions and the methodology for calculating fines for violation of their General Data Protection Law...more

Orrick, Herrington & Sutcliffe LLP

FTC finalizes data-security order with ed tech provider

On January 27, the FTC finalized an order with an education technology (ed tech) provider which claimed that the provider’s lax data security practices led to the exposure of millions of users and employees’ sensitive...more

Rothwell, Figg, Ernst & Manbeck, P.C.

FTC Actions Hold Data Privacy Lessons For 2023

The Federal Trade Commission will have its eye on privacy and data security enforcement in 2023. In August, the agency announced that it is exploring ways to crack down on lax data security practices. In the announcement,...more

Akin Gump Strauss Hauer & Feld LLP

State and Federal Crackdown on Data Breach: EyeMed, Carnival Cruise & CafePress Settlements

This year has seen some substantial new data breach settlements including a $500,000 Federal Trade Commission (FTC) fine against CafePress, a $1.25 million multi-state class action settlement and $5 million New York...more

Buchalter

The CFPB Expands Its UDAAP Authority Further Into Data Security Issues

Buchalter on

Continuing a trend it has been pursuing, the CFPB on Thursday used a non-rulemaking circular (Consumer Financial Protection Circular 2022-04) to state that its UDAAP authority extends its enforcement authority to situations...more

Perkins Coie

Rip Van Wrinkle: The Grandfather of Biometric Laws Awakens

Perkins Coie on

Biometric data is becoming increasingly pervasive in our daily lives—we use it to unlock smartphones, gain entry to entertainment venues, access secured locations, and record time and attendance on the job site....more

Holland & Knight LLP

2021: Year In Review - SEC Signals More Aggressive Posture in Cybersecurity Space

Holland & Knight LLP on

We continue our year-end review of SEC enforcement activity and turn our attention to a topic grabbing seemingly daily headlines across multiple industries: cybersecurity. As the risks – and realities – of cyberattacks...more

Holland & Knight LLP

The Impact of Cybersecurity Regulations on the Financial Services Industry in 2022

Holland & Knight LLP on

Following the SolarWinds and the Colonial Pipeline cyberattacks, the Biden Administration emphasized a shift toward mandatory cybersecurity requirements. Throughout 2021, government agencies issued new cybersecurity guidance,...more

Goodwin

SEC Makes Cybersecurity Top Priority; Sanctions Firms for Cybersecurity Failures

Goodwin on

There is little doubt that the U.S. Securities and Exchange Commission is making cybersecurity a top priority. SEC Chair Gary Gensler told a Senate committee on Tuesday, September 14, 2021 that the agency is developing a...more

Akin Gump Strauss Hauer & Feld LLP

SEC Cyber Enforcement Actions – Lessons for Private Fund Managers

On August 30, 2021, the Securities and Exchange Commission announced three enforcement actions against registered investment advisers for alleged cybersecurity failures involving cloud-based email systems. All three actions...more

Skadden, Arps, Slate, Meagher & Flom LLP

SEC Heightens Focus on Cybersecurity

On August 30, 2021, the Securities and Exchange Commission (SEC) announced that eight broker-dealers and/or investment advisers will pay civil monetary penalties to resolve enforcement actions arising from cybersecurity...more

Goodwin

“Data Knows No Borders”: Virginia’s Privacy Law Won’t Give Businesses Relief From The CCPA, But Consumers Nationwide Get...

Goodwin on

On March 2, 2021, Virginia enacted the Consumer Data Protection Act (“VCDPA”). The VCDPA will become effective January 1, 2023. The VCDPA shares its roots with the California Consumer Protection Act (“CCPA”) and the recently...more

Health Care Compliance Association (HCCA)

Report on Patient Privacy Volume 21, Number 1. Privacy Briefs: January 2021

Report on Patient Privacy 18, no. 1 (January 2021) - The HHS Office for Civil Rights (OCR) settled its 13th enforcement action in its Right of Access Initiative, first announced in 2019 to support individuals’ rights to...more

Goodwin

CCPA 2.0 Passes: The California Privacy Rights Act To Become Law

Goodwin on

On November 3, 2020, California voters convincingly approved the California Privacy Rights Act (“CPRA”) ballot initiative. The CPRA builds upon and amends the California Consumer Protection Act (“CCPA”), aligning it more with...more

Jackson Walker

Update on Global Data Privacy Regulations by John Jackson

Jackson Walker on

Cybersecurity and data privacy regulations were complicated well before the global pandemic. Since COVID-19 swept the world, Brazil has delayed enacting its new general data protection law, California's CCPA has gone through...more

Carlton Fields

[Webinar] The California Consumer Privacy Act: Are You Ready? - August 25th, 3:00 pm - 4:00 pm EDT

Carlton Fields on

Join in-house counsel, chief privacy and information officers, and C-suite leaders for an in-depth program featuring Carlton Fields' Cybersecurity and Privacy attorneys. For companies subject to the CCPA, the law ushered...more

Akin Gump Strauss Hauer & Feld LLP

Vermont Attorney General Provides Guidance on Security Breach Notice Act

On March 5, 2020, Gov. Phil Scott (VT-R) signed into law amendments to the Security Breach Notice Act (the “Act”). The amendments, which originated in the State Senate as part of an initiative addressing a number of data...more

Akin Gump Strauss Hauer & Feld LLP

First Enforcement Action by New York Department of Financial Services Under Cybersecurity Regulation

On July 21, 2020, the New York Department of Financial Services (DFS) filed a “Statement of Charges and Notice of Hearing” (the “Charges”) against First American Title Insurance Company (the “Company”) alleging violations of...more

McDermott Will & Emery

Republicans and Democrats Introduce Competing Privacy Bills to Protect Consumers’ Health Information Related to the COVID-19...

McDermott Will & Emery on

As the federal government, state governments, businesses and other entities continue their response efforts related to the COVID-19 pandemic, the privacy and security of consumers’ personal health information remains a top...more

Carlton Fields

[Webinar] The California Consumer Privacy Act: Getting Up to Speed with the Looming Enforcement Deadline - May 21st, 3:00 pm -...

Carlton Fields on

Join in-house counsel, chief privacy and information officers, and C-suite leaders for in-depth program featuring Carlton Fields’ Cybersecurity and Privacy attorneys. For companies subject to the CCPA, the law ushered in...more

79 Results
 / 
View per page
Page: of 4

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide