In the wake of the disruptive ransomware attack on the Colonial Pipeline in early May 2021, the U.S. Transportation Security Administration (“TSA”) issued two security directives to the pipeline industry. The first, Security...more
The U.S. Department of Labor (“DOL”) recently issued guidance on best practices for maintaining cybersecurity directed to plan sponsors, fiduciaries, record-keepers and participants of employee benefit plans governed by the...more
The Coronavirus Aid, Relief, and Economic Security Act (the “CARES Act”) was signed into law on March 27, 2020. Section 2301 of the CARES Act provides for a refundable payroll tax credit (the “Retention Credit”) for 50% of...more
New York’s latest attempt to strengthen its breach notification requirements to protect New York residents’ private information—the Stop Hacks and Improve Electronic Data Security Act, commonly referred to as the SHIELD Act...more
Beginning on January 1, 2020, the California Consumer Privacy Act of 2018 (CCPA) will impose new privacy obligations on certain businesses that collect personal information of California consumers. Employers with employees in...more
We recently reported on New York’s latest attempt to strengthen its breach notification requirements to protect New York residents’ private information —the Stop Hacks and Improve Electronic Data Security Act, commonly...more
With the recent passage of SB 220, Nevada has become the latest state to regulate consumer privacy online by allowing individuals to opt-out of certain sales of their information. Although SB 220 is not a comprehensive data...more
The 2019 Texas legislative session recently passed a new bill on the consumer privacy front that strengthens the breach notification obligations under the Texas Identity Theft Enforcement and Protection Act (“TITEPA,” located...more
The changes keep coming! In 2018, state legislatures have been active in enacting and amending data breach notification laws. With Alabama’s recent enactment, all 50 states now have data breach notification laws....more
Once again, an Administrative Law Judge (“ALJ”) upheld the imposition of civil money penalties charged against a covered entity by the Office for Civil Rights of the Department of Health and Human Services (“OCR”) for...more
The changes keep coming! As a follow up to our last article, we are highlighting additional amendments to various state data breach notification laws, some of which require immediate action for preparedness and compliance. ...more
Employers seeking to ease the hardships faced by employees in the aftermath of Hurricane Harvey may be looking for ways to provide aid to their own workforces.
Qualified Disaster Relief Payments -
Generally, a payment...more
New York’s Cybersecurity Requirements for DFS Licensees: A New Item at the Top of the To Do List -
With a compliance date a few months away, licensees of the New York Department of Financial Services (DFS) must start...more
1/30/2017
/ Banks ,
Cybersecurity ,
Department of Energy (DOE) ,
Department of Financial Services ,
Department of Homeland Security (DHS) ,
Food and Drug Administration (FDA) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Internet of Things ,
Medical Devices ,
NIST ,
Personally Identifiable Information ,
Popular ,
Ransomware