Lisa Ropple

Lisa Ropple

Jones Day

Contact

Readers' Choice Awards

Data Privacy
Cybersecurity
View Bio
RSS

Latest Posts › Data Protection

Share:

China Issues Guidance on Filing of the Standard Contract for Cross-Border Transfers of Personal Information

On May 30, 2023, the Cyberspace Administration of China ("CAC") issued the "Guidance on Filing the Standard Contract for the Cross-Border Transfer of Personal Information" ("Guidance"), which took effect on June 1, 2023....more

6/9/2023  /  China , Cybersecurity , Data Collection , Data Protection , International Data Transfers , New Guidance , Personal Data , Personal Information , Standard Contractual Clauses

FTC Proposes to Impose Sweeping Restrictions on Tech Company's Ability to Profit From Youth Data

On May 3, 2023, the Federal Trade Commission ("FTC") issued an Order to Show Cause against Meta for alleged violations of Meta's 2012 and 2020 privacy orders and seeks to bar the company from monetizing data related to...more

5/10/2023  /  Data Collection , Data Privacy , Data Protection , Data Security , Federal Trade Commission (FTC) , Personal Information

Iowa Becomes Sixth State to Enact a Comprehensive Data Privacy Law

On March 28, 2023, Iowa—following California, Colorado, Connecticut, Utah, and Virginia—became the sixth state to adopt a comprehensive consumer data privacy law. On March 28, 2023, Iowa Governor Kim Reynolds signed "An...more

4/6/2023  /  Cybersecurity , Data Privacy , Data Protection , Data Security , Personal Data

SEC Fines Company $3 Million for Allegedly Misleading Cyberattack Disclosures

Asserting that the company misstated the scope of data stolen in the cyberattack, the SEC provides a clear reminder that cybersecurity disclosures remain an agency priority....more

3/15/2023  /  Cyber Attacks , Cybersecurity , Data Breach , Data Protection , Disclosure Requirements , Popular , Securities and Exchange Commission (SEC)

China Finalizes Measures on the Standard Contract for Cross-Border Transfers of Personal Information

On February 24, 2023, the Cyberspace Administration of China ("CAC") issued the long-awaited Measures on the Standard Contract for Outbound Cross-Border Transfer of Personal Information ("Measures")....more

3/2/2023  /  China , Corporate Counsel , Cybersecurity , Data Protection , International Data Transfers , Personal Information , Personal Information Protection Law (PIPL)

Four Ways to Protect Your Cyber Insurance in Today’s Challenging Market

In Short: The Situation: The cyber insurance market is experiencing a major retrenchment, with insurers seeking to limit their exposure in a variety of ways....more

1/16/2023  /  Consumer Insurance Products , Cyber Attacks , Cyber Insurance , Cybersecurity , Data Breach , Data Protection , Insurance Claims , Insurance Regulations , Popular

Australian Government Serious About Data Privacy: Substantial Increases in Fines and Enhanced Regulatory Powers

In Short - The Situation: Following a number of high-profile cyber incidents resulting in significant data breaches, the Australian Government has doubled down on its efforts to strengthen privacy laws and cybersecurity...more

1/6/2023  /  Australia , Corporate Counsel , Cybersecurity , Data Privacy , Data Protection , Data Security , Office of Australian Information Commissioner (OAIC) , Popular

EU Adopts Enhanced Legal Framework to Provide for High Common Level of Cybersecurity

The Council of the European Union ("EU") adopted a new Directive to strengthen cybersecurity and resilience across the Union. - Following the European Parliament's approval on November 10, 2022, the Council of the European...more

12/8/2022  /  Cybersecurity , Data Protection , EU , Reporting Requirements , Risk Management

United States Signs Executive Order to Implement EU-U.S. Trans-Atlantic Data Privacy Framework

On October 7, 2022, President Biden signed an executive order on "Enhancing Safeguards for United States Signals Intelligence Activities," outlining the measures that the United States will take to implement its commitments...more

10/14/2022  /  Cybersecurity , Data Privacy , Data Protection , Data Security , EU-US Privacy Shield , Executive Orders , Personal Data , Standard Contractual Clauses

California Is First State to Adopt Age-Appropriate Design Code Law Alert

The California Age-Appropriate Design Code Act expands privacy requirements for businesses with online products, services, or features directed to or likely to be accessed by users under the age of 18....more

10/3/2022  /  COPPA , Corporate Counsel , Data Protection , Governor Newsom , Online Safety for Children , Personal Information

California Attorney General Signals CCPA Enforcement Priorities in $1.2 Million Sephora Settlement

On August 24, 2022, California Attorney General Rob Bonta announced his office's first privacy enforcement action and settlement against a publicly disclosed entity, Sephora, Inc., for violations of the CCPA, including the...more

9/9/2022  /  California Consumer Privacy Act (CCPA) , Consumer Privacy Rights , Cybersecurity , Data Privacy , Data Protection , Data Security , Personal Information , Sephora

Federal Privacy and Data Security Regulation on the Horizon: The FTC Announces Proposed Rulemaking

The Federal Trade Commission announced on August 11, 2022, that it is seeking public comment regarding its Advanced Notice of Proposed Rulemaking on commercial surveillance and data security. The Federal Trade Commission...more

8/18/2022  /  Cybersecurity , Data Privacy , Data Protection , Data Security , Federal Trade Commission (FTC) , Public Comment

China to Start Implementing Restrictions on Cross-Border Transfers of Personal Information

In Short - The Situation: China released new regulations and guidelines to clarify the procedural requirements companies must satisfy for the cross-border transfer of personal information under the Personal Information...more

8/3/2022  /  China , Cybersecurity , Data Privacy , Data Protection , Data Security , International Data Transfers , Personal Information , Personal Information Protection Law (PIPL)

Department of Justice Significantly Revises Policy on Charging CFAA Violations

The U.S. Department of Justice will decline to prosecute cyber intrusions based solely on exceeding contractual authorization or which occur pursuant to "good-faith security research." On May 19, 2022, the Department of...more

6/10/2022  /  Computer Fraud and Abuse Act (CFAA) , Data Protection , Databases , Department of Justice (DOJ) , Enforcement Priorities , Policy Statement , Unauthorized Access , Van Buren v United States

Connecticut Becomes Fifth State to Enact a Comprehensive Data Privacy Law

On May 10, 2022, Connecticut, following Utah, California, Virginia, and Colorado, became the fifth state to adopt a comprehensive consumer data privacy law. On May 10, 2022, Connecticut Governor Ned Lamot signed "An Act...more

5/30/2022  /  Connecticut , Consumer Privacy Rights , Data Privacy , Data Protection , Information Governance , New Legislation , Personal Data , State Privacy Laws

Utah Becomes Fourth State to Enact a Comprehensive Data Privacy Law

On March 24, 2022, Utah followed California, Virginia, and Colorado in adopting a comprehensive consumer data privacy law. On March 24, 2022, Utah Governor Spencer Cox signed the Consumer Privacy Act ("Act"), making Utah...more

4/7/2022  /  Cybersecurity , Data Breach , Data Controller , Data Processors , Data Protection , Data Security , New Legislation , Personal Data , Personally Identifiable Information , Regulatory Reform , State Data Privacy Laws

President Biden Signs Cyber Incident Reporting for Critical Infrastructure Act

On March 15, 2022, President Biden signed into law the Cyber Incident Reporting for Critical Infrastructure Act of 2022 (the "Act"), creating new requirements for organizations operating in critical infrastructure sectors to...more

3/18/2022  /  Biden Administration , Critical Infrastructure Sectors , Cyber Attacks , Cyber Incident Reporting , Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) , Cybersecurity , Data Breach , Data Breach Plans , Data Protection , Data Security , New Legislation , Popular , Regulatory Reform , Reporting Requirements

China Issues Draft Guidance on Security Assessments for Cross-Border Data Transfers

The Cyberspace Administration of China has issued draft guidance on applying for and conducting security assessments for cross-border data transfers for public comment. On October 29, 2021, the Cyberspace Administration of...more

11/10/2021  /  China , Comment Period , Consumer Privacy Rights , Cybersecurity , Data Privacy , Data Protection , Data Security , Extraterritoriality Rules , International Data Transfers , Personal Information , Personal Information Protection Law (PIPL) , Popular , Public Comment , Regulatory Reform , Regulatory Requirements

DOJ Announces Civil Cyber-Fraud Initiative

The U.S. Department of Justice announces an initiative targeting cybersecurity-related fraud by government contractors and grant recipients. On October 6, 2021, the U.S. Department of Justice ("DOJ") announced a new Civil...more

10/11/2021  /  Cooperative Compliance Regime , Cybersecurity , Data Protection , Department of Justice (DOJ) , False Claims Act (FCA) , Federal Contractors , Fraud , Information Technology , Popular , Regulatory Oversight

California Attorney General Issues Bulletin on Health Data Breach Reporting Requirements

The California Attorney General ("AG") has issued guidance reminding health care providers of their duty to report health care data breaches and to comply with other state and federal data privacy laws....more

9/15/2021  /  Cyber Attacks , Data Breach , Data Protection , Electronic Medical Records , Health Care Providers , HIPAA Breach , Information Technology , Network Security , New Guidance , Popular , Regulatory Requirements , Reporting Requirements , Risk Management

Highlights of China's New Personal Information Protection Law

The PIPL imposes extensive obligations on organizations and individuals engaged in "handling" of personal information, which is defined to include "collection, storage, use, processing, transmission, provision, disclosure,...more

9/10/2021  /  China , Consumer Privacy Rights , Data Privacy , Data Processors , Data Protection , Data Security , Extraterritoriality Rules , Personal Information , Personal Information Protection Law (PIPL) , Popular , Regulatory Reform , Regulatory Requirements

China's New Data Security Law Restricts Cross-Border Transfers of All Data to Foreign Authorities

When the DSL goes into effect on September 1, 2021, it will impose certain restrictions on a company's ability to transfer data out of China without the prior approval of Chinese authorities. One significant restriction is...more

8/27/2021  /  China , Consumer Privacy Rights , Corporate Counsel , Cybersecurity , Data Protection , Data Security , Foreign Official , International Data Transfers , Multinationals , Personal Data , Personally Identifiable Information , Popular

Jones Day Global Privacy & Cybersecurity Update | Vol. 28

UNITED STATES - Regulatory—Policy, Best Practices, and Standards - President Biden Issues Cybersecurity Executive Order  - On May 12, 2021, President Biden issued an executive order that placed new standards on the...more

8/10/2021  /  Article III , Biden Administration , California Consumer Privacy Act (CCPA) , Cybersecurity , Cybersecurity Framework , Data Breach , Data Privacy , Data Protection , Enforcement Actions , Executive Orders , Facial Recognition Technology , Federal Trade Commission (FTC) , Hackers , Health Insurance Portability and Accountability Act (HIPAA) , Information Technology , Mobile Apps , Personal Data , Popular , Ransomware , SCOTUS , Standing , TransUnion LLC v Ramirez

Connecticut Expands Data Breach Notification Requirements and Establishes a Cybersecurity "Safe Harbor"

Connecticut has become the third state to enact a cybersecurity safe harbor statute. On June 16 and July 6, 2021, Connecticut Governor Ned Lamont signed two new cybersecurity laws that continue the national trend of...more

7/12/2021  /  Cyber Attacks , Cybersecurity , Data Breach , Data Protection , New Legislation , Notice Requirements , Popular , Regulatory Reform , Safe Harbors , State and Local Government , State Data Breach Notification Statutes

Colorado Becomes Third State to Enact Comprehensive Data Privacy Law

Introduction  Colorado has joined California and Virginia as the third state with a comprehensive data privacy law. On July 7, 2021, Colorado Governor Polis signed the Act into law, following the Colorado Senate's passage of...more

7/8/2021  /  Consumer Privacy Rights , Cybersecurity , Data Controller , Data Management , Data Privacy , Data Processors , Data Protection , Information Governance , New Legislation , Personal Data , Personally Identifiable Information , Regulatory Standards , State and Local Government
67 Results
 / 
View per page
« Previous
Page: of 3
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide