News & Analysis as of

PCI-DSS Standard

Womble Bond Dickinson

Upcoming Deadline for PCI DSS 4.0.1 Implementation

Womble Bond Dickinson on

A critical deadline of March 31, 2025 is upcoming for the full implementation of the new requirements contained in the Payment Card Industry Data Security Standard (PCI DSS) version 4.0....more

McDermott Will & Emery

International Legal Highlights / Spring, 2024

DOJ DOUBLES DOWN ON CORPORATE ENFORCEMENT WITH NEW WHISTLEBLOWER PROGRAM - During the 2024 American Bar Association National Institute on White Collar Crime (the 2024 White Collar Conference) earlier in March US Attorney...more

McDermott Will & Emery

New PCI DSS 4.0 Will Impact the Digital Health and Healthcare Industries

McDermott Will & Emery on

The healthcare industry – particularly the digital health industry – is increasingly becoming monetized and using an e-commerce model through direct interactions with the customer to accept credit card payments. This...more

McDermott Will & Emery

How the New PCI DSS 4.0 Will Impact the Automotive Industry

McDermott Will & Emery on

The automotive industry is experiencing a shift to an e-commerce model through direct interactions with the customer to accept credit card payments. This innovation allows drivers and passengers to make payments for products...more

Dunlap Bennett & Ludwig PLLC

The Complexity Of Digital Privacy Law—Insights And Implications

The digital age has ushered in a host of transformative opportunities for businesses, from enhanced customer engagement through data analytics to streamlined operations via digital platforms. However, this digital...more

J.S. Held

Top 4 Cybersecurity Headaches Plaguing Financial Services Institutions

J.S. Held on

Most Financial Services Institutions (FSIs) have digital technology at their core. And a primary responsibility for most FSIs is “cyber-connect” customers – be they organizations or individuals – with their money simply and...more

J.S. Held

What is an Information Security Framework and Why Do I Need One?

J.S. Held on

An information security framework, when done properly, will allow any security leader to more intelligently manage their organization's cyber risk. The framework consists of a number of documents that clearly define the...more

Ankura

Compliance and Insurance Needs Can Narrow Your MDR Search

Ankura on

When it comes to protecting your organization from cyber threats, Managed Detection and Response (MDR) services are a must. But many businesses overlook the importance of compliance and insurance needs associated with...more

Ankura

Why a Right-Sized MDR Solution May Be Better Than One-Size-Fits-All

Ankura on

When it comes to providing Managed Detection and Response (MDR) solutions for businesses, the idea of one size fits all is being replaced by the concept of right-sizing. A one-size-fits-all option is a preconfigured security...more

HaystackID

[Webcast Transcript] Today’s Privacy Reality: AI, Assessments, Breach and DSARs

HaystackID on

Editor’s Note: On February 15, 2023, HaystackID shared an educational webcast to provide valuable insight into the ways in which AI is being used to address key issues in the realm of privacy and cybersecurity. The expert...more

McDermott Will & Emery

[Webinar] PCI DSS 4.0: Timelines and Initial Preparation Steps Required for Your Business - February 1st, 12:00 pm - 1:00 pm EST

McDermott Will & Emery on

Last year, the Payment Card Industry Security Standards Council released version 4.0 of its Data Security Standard (PCI DSS 4.0). The new version, which brings major changes to the payments ecosystem and compliance...more

Esquire Deposition Solutions, LLC

Underwriters See Rising Ransomware Threats and Liability Exposure

Ransomware is the wolf at the law firm’s door that just won’t go away. In fact, he’s getting bigger and hungrier. Ransomware attacks in recent years are more pernicious, more difficult to prevent, and more expensive to pay...more

WilmerHale

$8 Million Multistate Settlement Resolves 2019 Data Breach Investigation

WilmerHale on

State Attorneys General settle with Wawa, Inc. for 2019 data breach that compromised approximately 34 million payment cards used by consumers. On July 26, 2022, Acting New Jersey Attorney General Matthew J. Platkin...more

Davis Wright Tremaine LLP

Introducing PCI DSS 4.0: New Payment Card Security Standards

On March 31, 2022, the Payment Card Industry Security Standards Council published version 4.0 of its PCI Data Security Standard (PCI DSS). The updated standards provide significant new guidance on the scope and applicability...more

Burr & Forman

United States Privacy Laws – Do You Know If You Are In Compliance?

Burr & Forman on

Is your business one that has not prioritized compliance with data privacy laws because you do not collect personal data about your customers? If so, you are in good company, but it is time to reframe your approach on data...more

McDermott Will & Emery

PCI DSS 4.0 Introduces Transformational Change: New Risk Analysis, Governance Requirements and Alternative Customized Approach

On March 31, 2022, the Payment Card Industry Security Standards Council released version 4.0 of its Data Security Standard (PCI DSS 4.0). The new version—which brings major changes to the payments ecosystem—places an...more

Miller Canfield

Preparing for Cyberattacks and Limiting Liability

Miller Canfield on

The U.S. government and military experts have been warning U.S. companies that Russia may launch significant cyberattacks against critical infrastructure, financial institutions and businesses in retaliation for the sanctions...more

Latham & Watkins LLP

CNIL Publishes White Paper on Digital Payments and Data Privacy

Latham & Watkins LLP on

The French Data Protection Authority’s white paper discusses how companies can comply with data privacy and security obligations. The use of card, contactless, and innovative digital payment solutions has significantly...more

Fox Rothschild LLP

To Avoid Punitive Damages for a Data Breach in Connecticut, You Need to Try

Fox Rothschild LLP on

In Connecticut, if you adopt and maintain and comply with written cybersecurity program that contains administrative, technical and physical safeguards for the protection of personal or restricted information and that...more

Latham & Watkins LLP

EDPB Issues New Guidance on Storing Credit Card Data for Future Purchases

Latham & Watkins LLP on

Online retailers storing credit card data for the sole purpose of facilitating further purchases will likely need to obtain consumer consent. Online shopping has boomed in recent years. In 2020, the European statistics...more

Reveal

You Need Only Two Letters Today to Keep Up with the “Alphabet Soup” of Compliance

Reveal on

Back in November, I wrote on this blog about Big Data being one of the challenges that is forcing technology to move more to the data sooner in the discovery process. One of the most notable fun facts that illustrate just how...more

Sands Anderson PC

A Practical Security Reminder for the COVID-19 Outbreak – Not Just for Remote Workers!

Sands Anderson PC on

As many businesses and organizations adapt to the impact of COVID-19 on their operations, the systems and data security risks they face continue to increase and must be an area of focus in all planning for COVID-19. While...more

BCLP

Cyber Security Trends: Tips from recent UK enforcement activity – Part 2

BCLP on

In this part of our briefing series, we cover how prior regulatory enforcement action affects the assessment of sanctions and some pitfalls associated with undertaking internal security audits.  Who is this relevant for?...more

Fenwick & West LLP

Let's Be Reasonable: Clearer Guidance for Minimum Information Security Standards

Fenwick & West LLP on

“Reasonable” and “adequate” seem like benign terms — until you have to litigate using them as a standard for adequate data security. Over the coming years, the definition of “reasonable security” (and the alleged failure of...more

BCLP

Data Breach Litigation Preparation: What are the Requirements for Payment Card Breaches?

BCLP on

As of January 1, 2020, California became the first state to permit residents whose personal information is exposed in a data breach to seek statutory damages between $100-$750 per incident, even in the absence of any actual...more

73 Results
 / 
View per page
Page: of 3

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide