Latest Posts › Cybersecurity

Share:

New AI Security Bill Introduced to Improve Tracking and Processing of AI Security and Safety Incidents

As the development and use of AI continues to grow, the potential for security and safety incidents harming organizations and the public increases. Updated reporting and tracking processes for AI security and safety incidents...more

Kentucky Governor Signs Kentucky Consumer Data Protection Act into Law

Kentucky joins the growing trend of U.S. state data protection laws with well over a dozen now in place across the country. Last year proved to be a huge year in U.S. state data protection law, ending with 13 U.S. states...more

California Privacy Protection Agency Issues First Enforcement Advisory; Addresses Data Minimization Concerns

In its first ever enforcement advisory, the CPPA highlighted the key concept of data minimization—specifically focusing on excessive data collected when consumers make requests pursuant to their data privacy rights under the...more

United States Looks Towards its First Cross-Border Data Transfer Regime with New Executive Order

President Biden issued an Executive Order last month calling on the DOJ and relevant government agencies to tighten regulations on bulk data transfers to “countries of concern.” In late February, President Biden issued...more

New Hampshire Joins Data Protection Trend, Passes Comprehensive Data Protection Law

New Hampshire joins New Jersey as the second state passing a data protection law in 2024. New Hampshire is the 15th overall US state to do so. Last year proved to be a huge year in U.S. state data protection law, ending...more

REMINDER: Utah Data Protection Law in Effect as of December 31st

Utah became the fourth U.S. state to pass an omnibus data protection law when the Utah Consumer Privacy Act was signed into law March 24, 2022. As the page turns to a new year, a new U.S. state data protection law will...more

FTC Amends Financial Institution Safeguards Rule to Include New Obligation to Report Notification of Data Security Breaches

The amended rule requires financial institutions to notify the FTC within 30 days of discovery of a security breach involving information of at least 500 consumers. ...more

Privacy Floodgates Open: 13 U.S. State Data Protection Bring About Major Changes

Global Privacy Controls, vendor management, sensitive personal information, and the use of Ad Tech; new U.S. state data protection laws introduce twists to traditional notions of American data protection law. In the U.S.,...more

Recent Dental Benefit Provider Data Breach Highlights Legal Risks and Need for Proactive Mitigation

Data Breaches risk legal consequences—both from state and federal governments and consumers, as well as reputational harm. Last month, MCNA—a dental benefit provider—provided notice of a data breach that exposed the...more

Privacy Points 2023: New State Laws Introduce New Audit and Internal Review Requirements for Personal Information Collection and...

Some states will affirmatively require annual audits of a business’s data collection and processing practices and—in some cases—to submit those audits to state regulators. With new US state data protection laws taking...more

As China Cross-Border Data Transfer Security Assessment Requirement Comes Into Effect, New Guidelines Posted for Security...

The new guidelines provide insight into how businesses can submit applications to the CAC in order to obtain approval via the CAC security assessment cross-border data transfer requirement. As of September 2022, all...more

New Critical Infrastructure Cybersecurity Implementing New Breach Notification Requirements Signed into Law

The new law will require critical infrastructure entities to report certain covered cybersecurity incidents to government agencies within 72 hours; ransomware payments within 24 hours. On March 15, President Biden signed...more

Federal Agencies Issue New Breach Notification Rules for Banking Organizations and Banking Service Providers

Banking organizations must notify the appropriate agency within 36 hours of certain computer-security incidents; and banking service providers must notify affected banking organizations as soon as possible in the event of an...more

Shareholders Seek to Hold Current and Former SolarWinds Officials Liable for Massive 2020 Security Breach

Investors filed a derivative suit claiming that the company knew about, and failed to mitigate known, existing cybersecurity risks and shortfalls prior to the security breach. In early November, pension funds and...more

FTC Amends Financial Institution Safeguards Rule Including New Information Security Requirements

The updated rule also includes new exemptions, expands the definition of “financial institution,” and creates new accountability requirements. On October 27th the Federal Trade Commission (“FTC”) adopted and published...more

16 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide