In our recent webinar, members of the Eversheds Sutherland Insurance Practice Group discussed noteworthy developments from the National Association of Insurance Commissioners (NAIC) Fall National Meeting that was held in...more
11/26/2024
/ Artificial Intelligence ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
IAIS ,
Insurance Industry ,
Life Insurance ,
NAIC ,
Privacy Laws ,
Reinsurance ,
Safe Harbors ,
Technology
On October 16, 2024, the New York State Department of Financial Services (DFS) issued an industry letter providing guidance on how DFS-regulated entities (covered entities) should be evaluating and responding to artificial...more
10/30/2024
/ Artificial Intelligence ,
Covered Entities ,
Cyber Threats ,
Cybersecurity ,
Deep Fake ,
Industry Letters ,
New York ,
NYDFS ,
Popular ,
Regulatory Agenda ,
Regulatory Requirements ,
Reporting Requirements ,
Risk Management
Cybersecurity requirements continue to proliferate, both globally and within the US. Whether because of these new requirements, or because of the escalating threat environment, companies should urgently consider assessing...more
Technological advances, especially in Artificial Intelligence and quantum computing, will continue to amaze in the coming years. They will open up vast new opportunities while presenting profound regulatory, litigation, and...more
3/1/2024
/ Artificial Intelligence ,
Business Losses ,
Consumer Financial Protection Bureau (CFPB) ,
Coronavirus/COVID-19 ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
NAIC ,
Popular ,
Securities and Exchange Commission (SEC) ,
State Privacy Laws ,
Technology ,
Website Design ,
Websites
Last week the FBI Director, CISA Director, NSA Director, and National Cyber Director testified publicly about current and ongoing threats to US critical infrastructure providers by Chinese state-sponsored entities known as...more
2/9/2024
/ China ,
Congressional Investigations & Hearings ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
FBI ,
National Security Agency (NSA) ,
Popular ,
State Sponsors of Cyberattacks
On November 17, 2023, the United States Treasury Department’s Federal Insurance Office (FIO) and the Volatility and Risk Institute at the NYU Stern School of Business jointly hosted a conference on Catastrophic Cyber Risk and...more
On November 1, 2023, the New York Department of Financial Services (NY DFS) published its highly anticipated final amendments to its influential cybersecurity requirements for financial services companies (Part 500)....more
11/15/2023
/ Chief Information Security Officer (CISO) ,
Compliance ,
Covered Entities ,
Cybersecurity ,
Final Rules ,
Financial Services Industry ,
Incident Response Plans ,
Multi-Factor Authentication ,
NYDFS ,
Policies and Procedures ,
Risk Assessment ,
Risk Management ,
State Data Breach Notification Statutes
Welcome to the latest edition of Updata – the international update from Eversheds Sutherland’s dedicated Privacy and Cybersecurity team.
Updata provides you with a compilation of privacy and cybersecurity regulatory and...more
11/7/2023
/ Banking Sector ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Data Subject Access Requests ,
Employee Monitoring ,
Enforcement Actions ,
EU ,
Hong Kong ,
New Legislation ,
Privacy Framework ,
Privacy Laws ,
UK
The National Association of Insurance Commissioners (NAIC) held its 2023 Summer National Meeting from August 12 to 16 in Seattle, Washington. As has become the norm, a number of relevant NAIC working groups and task forces...more
Welcome to the latest edition of Updata – the international update from Eversheds Sutherland’s dedicated Privacy and Cybersecurity team.
Updata provides you with a compilation of privacy and cybersecurity regulatory and...more
Welcome to the latest edition of Updata!
Updata is an international report produced by Eversheds Sutherland’s dedicated Privacy and Cybersecurity team – it provides you with a compilation of key privacy and cybersecurity...more
5/11/2023
/ Adequacy Requirement ,
Artificial Intelligence ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
China ,
Consent ,
Cookies ,
Cybersecurity ,
Czech Republic ,
Disclosure Requirements ,
EU ,
EU Data Protection Laws ,
Germany ,
International Data Transfers ,
Member State ,
New Guidance ,
New Legislation ,
NIST ,
Privacy Laws ,
Singapore ,
South Korea ,
State Privacy Laws ,
UK
US financial services regulators are continuing to enhance cyber reporting requirements in response to increasing geopolitical tensions, emerging technologies, the proliferation of cyber-attacks, and larger market events....more
4/28/2023
/ Broker-Dealer ,
CFTC ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Financial Regulatory Agencies ,
Financial Services Industry ,
Personal Data ,
Publicly-Traded Companies ,
Regulation S-P ,
Reporting Requirements ,
Securities and Exchange Commission (SEC) ,
Sensitive Personal Information
On March 29, 2023, the Iowa Governor signed into law a consumer data privacy law which enters into force on January 1, 2025.
Entities already complying with other enhanced state privacy laws should not experience any...more
The National Association of Insurance Commissioners (NAIC) held its 2023 Spring National Meeting March 21-25 in Louisville, Kentucky.
The agenda for this National Meeting was limited, with a number of NAIC working groups...more
On March 27, 2023, the California Privacy Protection Agency (CPPA) will close its second phase of rulemaking on automated decision-making (ADM) systems under the California Privacy Rights Act (CPRA)— but not before giving...more
The year 2023 will continue to have cybersecurity and data privacy front of mind for General Counsels. With sweeping new US and global laws and regulations coming online and the California Privacy Protection Agency (CPPA)...more
3/3/2023
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Personal Data ,
Personal Information ,
Personally Identifiable Information ,
Privacy Laws ,
Sensitive Personal Information
On Wednesday February 1, 2023, the NAIC Privacy Protections Working Group (the Working Group) released a draft of a new model law for comment, the Insurance Consumer Privacy Protection Model Law (#674) (the Proposal), which...more
2/10/2023
/ California Consumer Privacy Act (CCPA) ,
Data Security ,
General Data Protection Regulation (GDPR) ,
GLBA Privacy ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Insurance Industry ,
NAIC ,
Personal Information ,
Privacy Laws ,
Privacy Policy ,
Proposed Rules ,
Working Groups
On January 26, 2023, the National Institute of Standards and Technology (NIST) released its AI Risk Management Framework (AI RMF or Framework.) The AI RMF is a resource for organizations designing, developing, deploying, or...more
Recently, US companies are experiencing a surging wave of consumer class action lawsuits alleging businesses and their software providers are violating state anti-wiretapping statutes and invading consumers’ privacy rights...more
On July 8, 2022, the California Privacy Protection Agency (the CPPA) officially began the formal rulemaking process for the California Privacy Rights Act (CPRA). The CPPA identified three primary goals for the rulemaking...more
On June 16, 2022, the Federal Trade Commission (FTC) issued a strongly worded report to Congress, “Combatting Online Harms Through Innovation,” warning that policymakers must use “great caution” when mandating the use of...more
The National Association of Insurance Commissioners (NAIC) held its 2022 Spring National Meeting from March 4 to 8 in Kansas City, Missouri. Although the meeting was held in a hybrid in-person and remote format, roughly 1,500...more
Connecticut’s new consumer privacy law imposes enhanced privacy disclosures and assessment requirements on businesses, and provides consumer rights similar to those in Europe’s GDPR, the California Privacy Rights Act (CPRA),...more
5/18/2022
/ Consumer Privacy Rights ,
Data Privacy ,
Exemptions ,
Fair Credit Reporting Act (FCRA) ,
General Data Protection Regulation (GDPR) ,
Gramm-Leach-Blilely Act ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Jurisdiction ,
Personal Data ,
Sensitive Personal Information ,
State Privacy Laws
Welcome to the latest edition of Updata!
Updata is an international report produced by Eversheds Sutherland’s dedicated Privacy and Cybersecurity team - it provides you with a compilation of key privacy and cybersecurity...more
On March 24, 2022, the Utah governor signed a consumer privacy law (the Utah Consumer Privacy Act, UCPA), marking the fourth state law to create enhanced data privacy rights and protections for consumers. The law will go into...more