Lance Taubin

Lance Taubin

Alston & Bird

Contact
View Bio
RSS

Latest Posts › Data Protection

Share:

NIST Cybersecurity Framework 2.0 Prioritizes Governance and Flexibility

Earlier this year, the National Institute of Standards and Technology (NIST) issued an update to its Cybersecurity Framework (CSF) with the release of version 2.0, the first update since April 2018 (version 1.1). While the...more

5/7/2024  /  Cyber Attacks , Cyber Threats , Cybersecurity , Cybersecurity Framework , Data Protection , Data Security , NIST , Risk Management

Top 10 Issues General Counsel Need to Know About Ransomware in 2024

Threat actors are evolving. Our Privacy, Cyber & Data Strategy Team explains how ransomware gangs have changed their tactics and how companies can respond to the threat while navigating new scrutiny from investors and...more

2/26/2024  /  Corporate Counsel , Cyber Attacks , Cyber Crimes , Cyber Threats , Cybersecurity , Data Breach , Data Protection , Data Security , Data Theft , NYDFS , Popular , Ransomware , Reporting Requirements , Risk Management , Securities and Exchange Commission (SEC)

FTC Approves New Data Breach Notification Requirement for Nonbanking Financial Institutions

With an amendment to its Safeguards Rule, the Federal Trade Commission has joined other federal agencies regulating cybersecurity breaches. Our Privacy, Cyber & Data Strategy Team analyzes how the amendment will affect...more

11/15/2023  /  Breach Notification Rule , Cybersecurity , Data Breach , Data Protection , Federal Trade Commission (FTC) , Financial Institutions , Financial Services Industry , Non-Bank Lenders , Notification Requirements , Safeguards Rule

China Releases Major Changes in its Draft Regulations on Cross-border Data Flows

At the end of September 2023, the Cyberspace Administration of China (CAC) released draft regulations (see the unofficial English translation) regulating the cross-border flow of personal information and important data out of...more

10/25/2023  /  China , Data Protection , International Data Transfers , Personal Data , Personal Information Protection Law (PIPL) , Standard Contractual Clauses

NY DFS Releases Revised Proposed Second Amendment of its Cybersecurity Regulation

The New York Department of Financial Services (“NY DFS”) published an updated proposed Second Amendment to its Cybersecurity Regulation (23 NYCRR Part 500) in the New York State Register on June 28, 2023, updating its...more

7/12/2023  /  Cybersecurity , Data Protection , Financial Services Industry , NYDFS , Popular , Risk Assessment

CL0P Ransomware Gang’s Exploitation of MOVEit Vulnerability: What It Means for Companies

On June 7, 2023, the Federal Bureau of Investigation (FBI) and the Cybersecurity and Infrastructure Security Agency (CISA) released a Joint Cybersecurity Advisory in connection with a recent zero-day (or previously...more

6/13/2023  /  Cyber Crimes , Cyber Threats , Cybersecurity , Cybersecurity Information Sharing Act (CISA) , Data Breach , Data Privacy , Data Protection , Data Security , Ransomware

China’s Standard Contractual Clauses for Cross-Border Transfers of Personal Information

On February 24, 2023, the Cyberspace Administration of China (“CAC”) released its final version of the Standard Contract Measures for Exporting Personal Information (“Standard Contract Measures”), accompanied by a template...more

4/3/2023  /  China , Data Processors , Data Protection , International Data Transfers , Personal Data , Standard Contractual Clauses

NYDFS Releases Significant Enhancements to its Cybersecurity Regulation in the Proposed Second Amendment

The New York Department of Financial Services (“DFS”) released their proposed second amendment to the Cybersecurity Regulation, 23 NYCRR Part 500 (“Proposed Second Amendment”) on October 9, 2022....more

11/22/2022  /  Asset Management , Cybersecurity , Data Protection , Data Retention , Financial Institutions , Financial Services Industry , NYDFS , Popular

CFPB and FTC Looking to Ramp Up Data Security Requirements

Enhancing data security programs to protect personal information is a critical area companies cannot ignore. Our Privacy, Cyber & Data Strategy and Financial Services & Products groups unpack the latest moves by the Consumer...more

8/24/2022  /  Consumer Financial Protection Bureau (CFPB) , Consumer Privacy Rights , Data Protection , Data Security , Federal Trade Commission (FTC) , Personal Information , Popular

Maryland Amends Data Breach and Reasonable Security Requirements

Maryland recently passed House Bill 962, amending Maryland’s Personal Information Protection Act (PIPA) (Md. Code Ann. Comm. Law 14-3504). As summarized below, House Bill 962 amends certain aspects of PIPA relating to breach...more

7/7/2022  /  Breach Notification Rule , Data Breach , Data Protection , Data Security , PIPA

People’s Republic of China Passes the Data Security Law: A Summary of What We Know

On June 10, 2021, almost exactly three years after the passing of its Cybersecurity Law (CSL), the National People’s Congress of China passed a new Data Security Law (DSL) (click here for an unofficial English translation of...more

7/8/2021  /  China , Corporate Counsel , Data Privacy , Data Processors , Data Protection , Data Security , Information Governance

NYDFS Issues Guidance on Cybersecurity Controls to Combat Ransomware and Clarifies Reporting Obligations

The New York Department of Financial Services (NYDFS) issued new guidance this week intended to assist organizations in thwarting ransomware attacks. The guidance clarifies the NYDFS’ expectation that NYDFS-regulated...more

7/6/2021  /  Cyber Attacks , Cybersecurity , Data Protection , Financial Services Industry , NYDFS , Popular , Ransomware , Reporting Requirements , Risk Management
12 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide