On July 18, 2024, a New York federal judge dismissed most of the US Securities and Exchange Commission’s ("SEC") claims against SolarWinds Corp. ("SolarWinds" or the "Company") and its Chief Information Security Officer...more
With the 2023 annual report season upon us, it is time for companies to take stock of risk factors for 10-Ks and 20-Fs, and consider whether recent economic, political, technological, and regulatory developments have had (or...more
12/22/2023
/ Annual Reports ,
Artificial Intelligence ,
Climate Change ,
Cybersecurity ,
Disclosure Requirements ,
Geopolitical Risks ,
Internal Controls ,
Popular ,
Publicly-Traded Companies ,
Risk Factors ,
Securities and Exchange Commission (SEC)
On October 30, 2023, the US Securities and Exchange Commission ("SEC") announced that it filed charges against SolarWinds Corp. ("SolarWinds" or the "Company") and its Chief Information Security Officer ("CISO") in connection...more
11/15/2023
/ Breach Notification Rule ,
Chief Information Security Officer (CISO) ,
Civil Monetary Penalty ,
Cyber Attacks ,
Cybersecurity ,
Disclosure Requirements ,
Enforcement ,
Fraud ,
Information Technology ,
Initial Public Offering (IPO) ,
Injunctive Relief ,
Insurance Industry ,
Internal Controls ,
Investors ,
Material Misstatements ,
Misleading Statements ,
NIST ,
Omissions ,
Popular ,
Publicly-Traded Companies ,
Reporting Requirements ,
Sarbanes-Oxley ,
Securities Act of 1933 ,
Securities and Exchange Commission (SEC) ,
Securities Exchange Act of 1934 ,
Software ,
Vulnerability Assessments
Florida Governor Ron DeSantis recently signed Senate Bill 262 into law, adopting the "Digital Bill of Rights" proposed by his office in February. Florida joins the rapidly increasing group of states, California, Utah,...more
9/21/2023
/ Cure Periods ,
Data Collection ,
Data Processors ,
Enforcement ,
Florida ,
Gramm-Leach-Blilely Act ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Jurisdiction ,
Minor Children ,
Nonprofits ,
Online Gaming ,
Opt-Outs ,
Popular ,
Sensitive Personal Information ,
Social Media ,
Software ,
State Privacy Laws
For most large companies, a frictionless flow of information and the ability to transfer customer data, employee files, financial records and other information around the world quickly and cost-effectively is a critical...more
3/22/2023
/ Biometric Information ,
Board of Directors ,
Corporate Governance ,
Corporate Officers ,
Cybersecurity ,
Data Protection ,
Data Security ,
Data Transfers ,
Disclosure Requirements ,
Environmental Social & Governance (ESG) ,
EU ,
International Data Transfers ,
Personal Data ,
Popular ,
Risk Assessment ,
Risk Management ,
Technology ,
UK
On October 28, 2020, a coalition of US government entities consisting of the Cybersecurity and Infrastructure Security Agency (CISA), the Federal Bureau of Investigation (FBI), and the Department of Health and Human Services...more
11/9/2020
/ Best Practices ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Department of Health and Human Services (HHS) ,
FBI ,
Hackers ,
Health Care Providers ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
Office of Foreign Assets Control (OFAC) ,
Popular ,
Ransomware
As companies across industries continue to take advantage of existing and emerging technologies that involve the collection and use of human biometric identifiers, corporate privacy programs must take into account the unique...more
11/9/2020
/ Article III ,
Artificial Intelligence ,
Big Tech ,
Biometric Information ,
Biometric Information Privacy Act ,
Compliance ,
Cybersecurity ,
Data Collection ,
Data Retention ,
Emerging Technologies ,
IL Supreme Court ,
Innovative Technology ,
Popular ,
Regulatory Oversight ,
Robotics ,
Standing ,
State Data Breach Notification Statutes
In the past few years, cybersecurity has taken on increasing importance in the eyes of lawmakers and regulators. Traditionally, cybersecurity compliance that is tied to the protection of personal information generally has...more
9/10/2020
/ Corporate Counsel ,
Cybersecurity ,
Cybersecurity Framework ,
Data Protection ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
FTC Act ,
LabMD ,
NYDFS ,
Popular ,
Regulatory Standards
White & Case Technology Newsflash -
Fulfilling a company's data breach and cybersecurity incident notification and disclosure requirements is an increasing challenge. Companies operating across industry sectors and around...more
11/6/2019
/ Cyber Incident Reporting ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Disclosure Requirements ,
Notification Requirements ,
Popular ,
Privacy Laws ,
Risk Management ,
State Data Breach Notification Statutes
New York recently amended its existing data breach notification law to expand the data breach notification obligations of persons and businesses (and state agencies) and impose specific data security requirements on persons...more
8/5/2019
/ Biometric Information ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Security ,
Enforcement Actions ,
Health Insurance Portability and Accountability Act (HIPAA) ,
NYDFS ,
Popular ,
SHIELD Act ,
State Data Breach Notification Statutes
As businesses continue to digitise their assets and operations, the need to continually assess IT infrastructure and the technical measures in place to safeguard key information assets and data becomes ever more important....more
5/3/2019
/ Artificial Intelligence ,
Compliance ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Data Security ,
Digital Service Providers ,
Encryption ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
Incident Response Plans ,
Internal Data Controls ,
IT-Departments ,
NCSC ,
NIS Regulations ,
Operators of Essential Services ,
Passwords ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Risk Mitigation ,
Sanctions ,
Security Audits ,
Security Risk Assessments ,
Software ,
UK ,
UK ICO