The financial services industry has seen a litany of new data privacy and cybersecurity challenges through the first half of 2024. Financial institutions are facing unprecedented compliance hurdles resulting from the...more
6/3/2024
/ Artificial Intelligence ,
Continuing Legal Education ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Data Breach ,
Data Privacy ,
Disclosure Requirements ,
Enforcement Actions ,
Financial Institutions ,
Financial Services Industry ,
Incident Response Plans ,
New Guidance ,
New Regulations ,
New Rules ,
Notice of Proposed Rulemaking (NOPR) ,
Notification Requirements ,
Regulation S-P ,
Reporting Requirements ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
State Privacy Laws ,
Third-Party Risk ,
Webinars
In recognition of International Privacy Day on January 28, we wanted to share some insights on the top privacy and cybersecurity issues for the new year. Data privacy and cybersecurity will continue to be one of the most...more
1/29/2024
/ Artificial Intelligence ,
Compliance ,
Consumer Privacy Rights ,
Cyber Threats ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Deep Fake ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Incident Response Plans ,
Personal Information ,
Policies and Procedures ,
Popular ,
Ransomware ,
Reporting Requirements ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
State Privacy Laws ,
Supply Chain
Fraudulent activity in the financial industry is nothing new. The techniques employed by fraudsters have ranged from fake check fraud and credit card fraud to identity theft and financial account takeovers. For years,...more
The Securities and Exchange Commission (SEC) continued its focus on cybersecurity regulations this month by announcing three new proposed rules and re-opening the comment period on an additional proposed rule from last year....more
The National Credit Union Administration (NCUA) has approved new cyber incident reporting requirements for credit unions. Under the final rule, federally insured credit unions will be required to notify the NCUA of a...more
On multiple fronts, the U.S. Securities and Exchange Commission (SEC) and the Financial Industry Regulatory Authority (FINRA) continue to increase their focus on cybersecurity. This is understandable as headlines of recent...more
The New York Department of Financial Services (NYDFS) has become a frequent topic of these alerts. In recent weeks we have covered multiple actions from the regulator, including its first enforcement action, its SolarWinds...more
New York remains extremely active in the cybersecurity and data protection arena. As we have recently discussed, New York is considering a proposed privacy bill that would greatly enhance consumer privacy rights, increase...more
The Office of the Comptroller of the Currency (OCC), the Federal Reserve Board (FRB), and the Federal Deposit Insurance Company (FDIC), have issued a notice of proposed rulemaking (Proposed Rule) that would require a banking...more
1/13/2021
/ Banking Sector ,
Breach Notification Rule ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Protection ,
FDIC ,
Notification Requirements ,
OCC ,
Proposed Rules
The financial services industry faced unprecedented cybersecurity and privacy challenges in 2020. From learning how to operate with a remote workforce, dealing with a complex and evolving regulatory environment, facing an...more
A public cybersecurity advisory was issued yesterday about a likely ransomware attack against the health care and public health sector. The Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of...more
10/30/2020
/ Cyber Attacks ,
Cyber Crimes ,
Cyber Threats ,
Cybersecurity ,
Department of Health and Human Services (HHS) ,
FBI ,
Health Care Providers ,
Health Information Technologies ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Hospitals ,
Public Health ,
Ransomware ,
Risk Mitigation
Last week, the New York Department of Financial Services (NYDFS) filed its first enforcement action against a title insurance company (the company) alleging multiple violations of its Cybersecurity Regulation. New York's...more
Last week, the California Attorney General submitted the final proposed regulations for the California Consumer Privacy Act (CCPA) to the California Office of Administrative Law (OAL). The submission of the final proposed...more
Financial institutions are continuing to address the immense business impact of coronavirus (COVID-19). The Federal Financial Institutions Examinations Counsel (FFIEC) has issued its updated guidance on pandemic planning and...more
On October 10, the California Attorney General issued its proposed regulations for the California Consumer Privacy Act (CCPA). The long-anticipated regulations are intended to provide guidance to businesses for how to comply...more
10/16/2019
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Opt-Outs ,
Personal Information ,
Privacy Laws ,
Proposed Regulation
It should not be surprising to anyone that cybersecurity and data protection remain top priorities for regulators of the financial services industry. Indeed, cybersecurity has been regularly identified as a key priority by...more
5/3/2019
/ Broker-Dealer ,
Customer Information ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
Investment Adviser ,
OCIE ,
Opt-Outs ,
Policies and Procedures ,
Popular ,
Privacy Policy ,
Regulation S-P ,
Risk Alert ,
Securities and Exchange Commission (SEC)
Last month, facing the threat of a ballot initiative in November, the California legislature passed the California Consumer Privacy Act of 2018 (the "Act"). The Act is the most rigorous privacy measure in the United States in...more
On June 28, the California legislature passed AB 375, the California Consumer Privacy Act of 2018. The impact of the law reaches far beyond California. Much like the European Union's General Data Protection Regulation (GDPR),...more
The CFPB recently announced a new policy guidance concerning the data required to be collected, reported, and disclosed by financial institutions to the public under the Home Mortgage Disclosure Act (HMDA). The guidance is...more