In this edition of our Privacy & Cybersecurity Update, we highlight guidance issued by the Irish data protection authority regarding the use of location data, as well as the FTC's request for comment on its Standards for...more
9/2/2016
/ Attorney General ,
Centers for Medicare & Medicaid Services (CMS) ,
Class Action ,
Consent ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Protection Authority ,
Federal Trade Commission (FTC) ,
Injury-in-Fact ,
Internet Retailers ,
Invasion of Privacy ,
Ireland ,
Location Data ,
Misrepresentation ,
NAIC ,
Nursing Homes ,
Personal Data ,
Privacy Laws ,
Public Comment ,
Right to Privacy ,
Safeguards Rule ,
Settlement ,
Social Media Policy ,
Standing ,
State Data Breach Notification Statutes
In this edition of our Privacy & Cybersecurity Update, we examine the impact of Brexit on EU data protection, court rulings on cyber insurance policy exclusions and coverage gaps, recent statements from the FTC and the...more
6/30/2016
/ Banks ,
Bonds ,
Class Action ,
Corporate Counsel ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Protection Authority ,
Electronic Health Record Incentives ,
EU Data Protection Laws ,
EU-US Privacy Shield ,
Fashion Industry ,
Federal Trade Commission (FTC) ,
FFIEC ,
Fraudulent Transfers ,
Germany ,
Hackers ,
Internet of Things ,
Privacy Laws ,
Spokeo v Robins ,
Standing ,
UK Brexit ,
Young Lawyers
In this edition of our Privacy & Cybersecurity Update, we examine recent developments, including the U.S. Supreme Court's holding in Spokeo that consumer plaintiffs must show "real harm" to sue in federal court, the EU data...more
6/3/2016
/ Antitrust Violations ,
Article III ,
Breach Notification Rule ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Protection Commissioner ,
EU-US Privacy Shield ,
Injury-in-Fact ,
Ireland ,
Privacy Laws ,
Risk of Loss ,
SCOTUS ,
Spokeo v Robins ,
Standing ,
Subrogation
In this edition of our Privacy & Cybersecurity Update, we examine changes to EU privacy and data protection laws, new state laws addressing data breach notifications, Congress' review of cyber insurance, and recent court...more
5/3/2016
/ Class Action ,
Commercial General Liability Policies ,
Corporate Counsel ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Encryption ,
EU ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
Future Harm ,
General Data Protection Regulation (GDPR) ,
Mobile Health Apps ,
Notice Requirements ,
Standing ,
State Data Breach Notification Statutes ,
Young Lawyers
In this edition of our Privacy & Cybersecurity Update, we examine the FCC's proposed privacy rules for broadband providers; new developments relating to the Privacy Shield, which was created to replace the U.S.-EU Safe Harbor...more
4/4/2016
/ Consumer Financial Protection Bureau (CFPB) ,
Cyber Insurance ,
Cybersecurity ,
Data Protection Authority ,
Data Security ,
Department of Defense (DOD) ,
EU ,
EU-US Privacy Shield ,
FCC ,
Internet Service Providers (ISPs) ,
IRS ,
Phishing Scams ,
Privacy Policy ,
US-EU Safe Harbor Framework
Consumer Electronics Association Releases Best Practices For Privacy and Security of Personal Wellness Data -
In late October 2015, the Consumer Electronics Association released guiding principles governing the...more
11/30/2015
/ Actual Injuries ,
Commodity Exchange Act (CEA) ,
Cybersecurity ,
Do Not Track ,
EU Data Protection Laws ,
FCC ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
International Data Transfers ,
Privacy Concerns ,
US-EU Safe Harbor Framework
In this edition of our Privacy & Cybersecurity Update, we discuss what companies need to know in the wake of the EU Court of Justice's rejection of the U.S.-EU Safe Harbor framework and take a look at the following important...more
11/3/2015
/ Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Data Protection ,
Data Protection Authority ,
ECPA ,
EU Data Protection Laws ,
International Data Transfers ,
Mobile Apps ,
New Legislation ,
Personal Data ,
Popular ,
Privacy Policy ,
Safe Harbors ,
Schrems I & Schrems II ,
US-EU Safe Harbor Framework ,
VPPA
Third Circuit Affirms FTC’s Authority Over Cybersecurity:
In the Wyndham case, the Third Circuit affirmed that the FTC has the authority to regulate cybersecurity under Section 5 of the FTC Act, and that the language of...more
9/2/2015
/ Administrative Authority ,
Automobile Recall ,
Brokers ,
Compliance ,
Connected Cars ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Security ,
Federal Trade Commission (FTC) ,
FTC v Wyndham ,
Hackers ,
Metadata ,
National Security Agency (NSA) ,
Privacy Concerns ,
Safe Harbors ,
Section 5 ,
Settlement ,
Target ,
Technology ,
Unfair or Deceptive Trade Practices ,
Visa Inc ,
Wyndham
Seventh Circuit Decision May Make It Easier for Class Action Plaintiffs to Establish Standing in Data Breach Cases -
The Seventh Circuit has issued a decision that could make it much easier for class action plaintiffs to...more
8/4/2015
/ Attorney General ,
Class Action ,
Cyber Attacks ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Security ,
FCC ,
Federal Trade Commission (FTC) ,
FFIEC ,
Identity Theft ,
Personal Data ,
Security Risk Assessments ,
Standing ,
TCPA
In This Issue:
- USA Freedom Act Brings Changes to Surveillance Program
- Connecticut Enacts Bill Imposing Tighter Data Security Obligations
- Pennsylvania Court Dismisses Data Breach Negligence...more
In This Issue:
- Second Circuit Rules Patriot Act Does Not Authorize Bulk Metadata Collection; Congress Reconsiders Certain Patriot Act Authorities
- SEC Issues Cybersecurity Guidance for Investment Companies...more
6/2/2015
/ Broadband ,
Commercial Bankruptcy ,
Customer Lists ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Enforcement ,
FBI ,
FCC ,
Federal Trade Commission (FTC) ,
Insurance Litigation ,
Internet of Things ,
Investment Adviser ,
Investment Funds ,
Jurisdiction ,
Online Privacy Protection Act ,
Patriot Act ,
Personally Identifiable Information ,
Privacy Laws ,
RadioShack ,
Securities and Exchange Commission (SEC)
In This Issue:
- DOJ Issues Cyber Preparation and Response Guidance
- RadioShack’s Plan to Auction Customer Data Highlights Issues Over Treatment of Such Data as an Asset
- Google v. Vidal-Hall and...more
5/3/2015
/ Commercial Bankruptcy ,
Customer Lists ,
Cyber Attacks ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Department of Justice (DOJ) ,
FCC ,
Financial Services Authority ,
Google ,
Hulu ,
Information Sharing ,
NAIC ,
Popular ,
RadioShack ,
Third-Party ,
Video Privacy Protection Act
In This Issue
- White House Releases Proposed Privacy Legislation
- Lessons from the Anthem Data Breach
- SEC and FINRA Release Results of Industrywide Cybersecurity Examination Sweeps
- COSO Releases Report on...more
3/2/2015
/ Anthem Blue Cross ,
Automotive Industry ,
Big Data ,
COSO ,
Cybersecurity ,
Data Breach ,
Financial Industry Regulatory Authority (FINRA) ,
Information Sharing ,
Insurance Industry ,
Obama Administration ,
Popular ,
Securities and Exchange Commission (SEC)
Although Insights is intended to cover a wide range of issues, there are a number of topics we believe will be of particular interest to directors and senior corporate executives. Below is an introduction to these topics and...more
1/29/2015
/ Board of Directors ,
C-Suite Executives ,
Corporate Counsel ,
Corporate Governance ,
Cybersecurity ,
Directors ,
Fiduciary Duty ,
Proxy Access Rule ,
Regulatory Standards ,
Risk Management ,
Shareholder Activism ,
Shareholders
This past year has been called the "year of the massive data breach," with many high-profile attacks on well-known companies. Skadden partners Cyrus Amir-Mokri, Patrick Fitzgerald, Marc S. Gerber, Stuart D. Levi and Timothy...more
1/27/2015
/ Best Practices ,
Corporate Counsel ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Popular ,
Retailers ,
Risk Assessment ,
Risk Management ,
Senate Banking Committee ,
Target
On January 12 and 13, in speeches at the Federal Trade Commission (FTC) and the National Cybersecurity and Communications Integration Center (NCCIC), President Barack Obama announced several initiatives to enhance online...more
In This Issue:
- The Critical Takeaway for Every Company From the Sony Cyber Attack
- Sony Data Breach Class Action Complaint Provides Insight Into Cybersecurity Issues
- Reminder: New California Data...more
1/2/2015
/ Class Action ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Department of Financial Services ,
Examination Procedures ,
New Legislation ,
NIST ,
PF Chang's ,
Sony ,
Standing ,
Target
In This Issue:
- EU Issues Guidelines on ‘Right to be Forgotten’
- FFIEC Observations on Bank Cybersecurity Provides Important Guidelines for Every Industry
- Remarks by Comptroller Curry Highlight OCC...more
12/1/2014
/ Automotive Industry ,
Banks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
EU ,
Federal Trade Commission (FTC) ,
FFIEC ,
FTC v Wyndham ,
Google ,
NIST ,
OCC ,
Privacy Laws ,
Retailers ,
Right to Be Forgotten ,
Securities and Exchange Commission (SEC)
In This Issue:
- October: National Cyber Security Awareness Month
- New California Data Protection Law
- Obama Signs Cybersecurity Executive Order
- FTC Cautions Executives About Personal Liability for False...more
In This Issue:
- EU Parliament Cements Position on Privacy Protection Reform
- EU Parliament Passes Cybersecurity Directive
- SEC Holds Roundtable on Cybersecurity
- EU and APEC Introduce Guide for...more
3/28/2014
/ APEC ,
Class Action ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Department of Justice (DOJ) ,
EU ,
EU Data Protection Laws ,
FCC ,
Privacy Laws ,
Privacy Policy ,
Securities and Exchange Commission (SEC) ,
Small Business
The Securities and Exchange Commission recently held a roundtable on the issues and challenges cybersecurity presents for market participants and public companies. The roundtable is a means by which the SEC Commissioners can...more