In the weeks that followed a ransomware attack on a domestic pipeline company, the federal government’s efforts to shore up the cybersecurity posture of America’s critical infrastructure and supply chains, including the oil...more
On March 22, 2021, former two-term Boston Mayor Marty Walsh was confirmed as U.S. Secretary of Labor in a 68-29 Senate vote. The U.S. Chamber of Commerce (Chamber) supported Walsh’s nomination as Secretary of Labor due in...more
5/13/2021
/ ABC Test ,
Biden Administration ,
Coronavirus/COVID-19 ,
Department of Labor (DOL) ,
Fair Labor Standards Act (FLSA) ,
Independent Contractors ,
Joint Employers ,
Minimum Wage ,
OSHA ,
Paid Leave ,
Popular ,
Secretary of Labor ,
Tipped Employees ,
U.S. Commerce Department ,
Wage and Hour
On March 22, 2021, former two-term Boston Mayor Marty Walsh was confirmed as U.S. Secretary of Labor in a 68-29 Senate vote. The U.S. Chamber of Commerce (Chamber) supported Walsh’s nomination as Secretary of Labor due in...more
4/14/2021
/ ABC Test ,
Biden Administration ,
Centers for Disease Control and Prevention (CDC) ,
Coronavirus/COVID-19 ,
Department of Labor (DOL) ,
Fair Labor Standards Act (FLSA) ,
Independent Contractors ,
Joint Employers ,
Minimum Wage ,
NEP ,
OSHA ,
Paid Leave ,
Parental Leave ,
Secretary of Labor ,
Tipped Employees ,
Trump Administration ,
U.S. Commerce Department ,
Unemployment Insurance ,
Wage and Hour ,
Willful Violations ,
Workplace Safety
Keypoint: President Biden shows a strong preference for the cybersecurity expertise of former National Security Agency (NSA) leaders with his choices for significant cyber roles within his administration.
On April 12,...more
On April 9, 2021, the White House issued a press release announcing its nomination of Douglas Parker (Parker) for the position of Assistant Secretary for the Occupational and Health Administration (OSHA). Parker is currently...more
Bottom Line Up Front: The Department of Energy (DOE) will implement new cybersecurity programs to enhance energy sector resilience. DOE’s announcement coincides with the Senate Energy and Natural Resources Committee’s support...more
Keypoint: New Utah law creates incentive for businesses to develop and implement a written cybersecurity program to protect themselves against data breach lawsuits.
On March 11, 2021, Utah governor Spencer Cox signed the...more
3/30/2021
/ Cybersecurity ,
Data Breach ,
Data Protection ,
Data Security ,
DSS ,
GLBA Privacy ,
Health Insurance Portability and Accountability Act (HIPAA) ,
PCI ,
Personally Identifiable Information ,
Popular ,
Risk Management ,
State and Local Government ,
State Data Breach Notification Statutes
You may recall on December 10, 2020 we wrote about the Department of Health and Human Services (HHS), Office for Civil Rights (OCR) announcement of a proposed rule that would revise the Health Insurance Portability and...more
Keypoint: New York’s Division of Financial Services (DFS) now requires Property and Casualty Insurers writing cyber insurance to comply with the Division’s Cyber Insurance Risk Framework to manage their risk.
In her...more
3/9/2021
/ California Consumer Privacy Act (CCPA) ,
Casualty Insurance ,
Civil Monetary Penalty ,
Cyber Crimes ,
Cyber Insurance ,
Cybersecurity ,
Cybersecurity Framework ,
Data Protection ,
Financial Institutions ,
Financial Services Industry ,
Insurance Industry ,
Insurance Litigation ,
Law Enforcement ,
NYDFS ,
Office of Foreign Assets Control (OFAC) ,
Policy Terms ,
Property Insurance ,
Ransomware ,
Risk Assessment ,
Risk Management ,
Third-Party Service Provider
Keypoint: April 12, 2021 is the deadline to comment on a proposed rule that would require banking organizations and bank service providers to promptly report computer-security incidents.
The Office of the Comptroller of...more
On January 28, 2021, privacy professionals around the world will celebrate Data Privacy Day. This year, we decided to mark the occasion by gathering our team’s thoughts and expectations on what we expect to be the biggest...more
1/28/2021
/ Biometric Information Privacy Act ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Consumer Financial Protection Bureau (CFPB) ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Selling ,
Dodd-Frank ,
Facial Recognition Technology ,
FSA ,
Health Care Providers ,
Internet of Things ,
Popular ,
State and Local Government
On December 4, 2020 the President signed into law the IoT Cybersecurity Improvement Act of 2020, Pub. L. No. 116-207 (the “IoT Act”). The legislative purpose behind the new law is to ensure the highest level of cybersecurity...more
12/16/2020
/ Connected Items ,
Consumer Privacy Rights ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Cybersecurity Framework ,
Data Security ,
Department of Homeland Security (DHS) ,
Information Systems Security Program (ISSP) ,
Internet of Things ,
NDAA ,
NIST ,
Popular ,
Subcontractors ,
Technology Sector ,
Trump Administration
On December 4, 2020 the President signed into law the IoT Cybersecurity Improvement Act of 2020, Pub. L. No. 116-207 (the “IoT Act”). The legislative purpose behind the new law is to ensure the highest level of cybersecurity...more
Key Point: California AG Becerra’s investigation into security flaws in the Glow fertility app results in a settlement agreement that resembles recent enforcement agreements in New York but is also unique in requiring the...more
The combination of a significant increase in COVID-19 cases, political tensions in the final days of a national election season, and law enforcement’s focus on election security created an opportunity for cybercriminals to...more
Key Point: The New York Attorney General’s Office (NYAG) reached a Consent and Stipulation Agreement with Dunkin’ Brands, Inc. (Dunkin), which obligates the company to implement and maintain a comprehensive information...more
9/23/2020
/ Attorney General ,
California Consumer Privacy Act (CCPA) ,
Consumers ,
Cyber Attacks ,
Data Breach ,
Data Security ,
Dunkin' Donuts ,
Federal Trade Commission (FTC) ,
Hackers ,
Misleading Statements ,
New York ,
NYDFS ,
Perks ,
SHIELD Act ,
Zoom®
On June 2, 2020, Governor Polis issued Executive Order D 2020-091, “Safer at Home and in the Vast, Great Outdoors” (the "EO"). The order continues to strongly encourage such now-familiar precautions as social distancing and...more
Resulting in Zoom Promising to Implement an Information Security Program, Resembling the SHIELD Act-
Key point: The Letter of Agreement between the New York Attorney General and Zoom Video Communications, Inc. provides...more
The CDC has published new guidelines enabling workers employed in certain “Critical Infrastructure” jobs to return to work more quickly after they were exposed to people with known or suspected cases of COVID-19. Who’s...more
Keypoint: Individuals and businesses should take steps to prevent against becoming victims of the rapid rise in Coronavirus-related hacking scams.
On March 20, 2020, the FBI issued an alert warning that cyber thieves are...more
3/24/2020
/ Chief Information Security Officer (CISO) ,
Coronavirus/COVID-19 ,
Cyber Attacks ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Data Protection ,
FBI ,
Hackers ,
Information Security ,
Phishing Scams ,
Popular ,
Risk Management
Keypoint: With just two days to go before the close of the Washington legislature, a conference committee will try to resolve conflicts between the House and Senate versions of the WPA.
As we previously reported, on...more
As it did last year, the Washington state senate has overwhelmingly passed comprehensive consumer privacy legislation. The legislation, entitled the Washington Privacy Act (WPA), passed the state senate on February 14, 2020,...more
Keypoint: Maryland lawmakers have introduced a bill that would allow Maryland residents to opt-out of certain types of personal information transfers but that would stop far short of creating CCPA-like rights for Maryland...more
Keypoint: 2020 promises to be another ground-breaking year in privacy and cybersecurity law in the United States.
2019 was an exciting year in privacy and cybersecurity law. In the United States, the California Consumer...more
Key Point: If you consider your cybersecurity defensive measures to be a one-time investment, that is what the criminals are banking on.
Most people enjoy improvements and innovations when it comes to consumer...more