Technological advances, especially in Artificial Intelligence and quantum computing, will continue to amaze in the coming years. They will open up vast new opportunities while presenting profound regulatory, litigation, and...more
3/1/2024
/ Artificial Intelligence ,
Business Losses ,
Consumer Financial Protection Bureau (CFPB) ,
Coronavirus/COVID-19 ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
NAIC ,
Popular ,
Securities and Exchange Commission (SEC) ,
State Privacy Laws ,
Technology ,
Website Design ,
Websites
Last week the FBI Director, CISA Director, NSA Director, and National Cyber Director testified publicly about current and ongoing threats to US critical infrastructure providers by Chinese state-sponsored entities known as...more
2/9/2024
/ China ,
Congressional Investigations & Hearings ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
FBI ,
National Security Agency (NSA) ,
Popular ,
State Sponsors of Cyberattacks
On November 17, 2023, the United States Treasury Department’s Federal Insurance Office (FIO) and the Volatility and Risk Institute at the NYU Stern School of Business jointly hosted a conference on Catastrophic Cyber Risk and...more
On November 1, 2023, the New York Department of Financial Services (NY DFS) published its highly anticipated final amendments to its influential cybersecurity requirements for financial services companies (Part 500)....more
11/15/2023
/ Chief Information Security Officer (CISO) ,
Compliance ,
Covered Entities ,
Cybersecurity ,
Final Rules ,
Financial Services Industry ,
Incident Response Plans ,
Multi-Factor Authentication ,
NYDFS ,
Policies and Procedures ,
Risk Assessment ,
Risk Management ,
State Data Breach Notification Statutes
On October 30, 2023, the Biden Administration issued the groundbreaking Executive Order 14110 on the Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence (Order), which sets in motion a comprehensive...more
11/13/2023
/ Artificial Intelligence ,
Biden Administration ,
Civil Rights Act ,
Climate Change ,
Competition ,
Cybersecurity ,
Department of Homeland Security (DHS) ,
Department of Labor (DOL) ,
Executive Orders ,
Federal Contractors ,
Government Agencies ,
Innovation ,
Innovative Technology ,
Intellectual Property Protection ,
NIST ,
Popular ,
Privacy Laws ,
Public Policy ,
Regulatory Agenda ,
Technology Sector
Welcome to the latest edition of Updata – the international update from Eversheds Sutherland’s dedicated Privacy and Cybersecurity team.
Updata provides you with a compilation of privacy and cybersecurity regulatory and...more
11/7/2023
/ Banking Sector ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Data Subject Access Requests ,
Employee Monitoring ,
Enforcement Actions ,
EU ,
Hong Kong ,
New Legislation ,
Privacy Framework ,
Privacy Laws ,
UK
On July 26, 2023, the US Securities and Exchange Commission (SEC) released final rules requiring disclosure by public companies of material cybersecurity incidents and policies and procedures related to cybersecurity risk...more
8/2/2023
/ Business Development Companies ,
Compliance ,
Corporate Governance ,
Cyber Incident Reporting ,
Cybersecurity ,
Disclosure Requirements ,
Final Rules ,
Foreign Private Issuers ,
Form 10-K ,
Form 20-F ,
Form 8-K ,
Publicly-Traded Companies ,
Regulatory Oversight ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Securities Exchange Act ,
Third-Party Service Provider
Welcome to the latest edition of Updata – the international update from Eversheds Sutherland’s dedicated Privacy and Cybersecurity team.
Updata provides you with a compilation of privacy and cybersecurity regulatory and...more
Welcome to the latest edition of Updata!
Updata is an international report produced by Eversheds Sutherland’s dedicated Privacy and Cybersecurity team – it provides you with a compilation of key privacy and cybersecurity...more
5/11/2023
/ Adequacy Requirement ,
Artificial Intelligence ,
California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
China ,
Consent ,
Cookies ,
Cybersecurity ,
Czech Republic ,
Disclosure Requirements ,
EU ,
EU Data Protection Laws ,
Germany ,
International Data Transfers ,
Member State ,
New Guidance ,
New Legislation ,
NIST ,
Privacy Laws ,
Singapore ,
South Korea ,
State Privacy Laws ,
UK
US financial services regulators are continuing to enhance cyber reporting requirements in response to increasing geopolitical tensions, emerging technologies, the proliferation of cyber-attacks, and larger market events....more
4/28/2023
/ Broker-Dealer ,
CFTC ,
Cyber Attacks ,
Cyber Threats ,
Cybersecurity ,
Financial Regulatory Agencies ,
Financial Services Industry ,
Personal Data ,
Publicly-Traded Companies ,
Regulation S-P ,
Reporting Requirements ,
Securities and Exchange Commission (SEC) ,
Sensitive Personal Information
On March 29, 2023, the Iowa Governor signed into law a consumer data privacy law which enters into force on January 1, 2025.
Entities already complying with other enhanced state privacy laws should not experience any...more
The year 2023 will continue to have cybersecurity and data privacy front of mind for General Counsels. With sweeping new US and global laws and regulations coming online and the California Privacy Protection Agency (CPPA)...more
3/3/2023
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Personal Data ,
Personal Information ,
Personally Identifiable Information ,
Privacy Laws ,
Sensitive Personal Information
Lloyds Market Bulletin Y5381 -
Back in March 2022, we detailed the significant risks to both insureds and insurers posed by unclear cyber insurance policy wordings, with a particular focus on war exclusion clauses in the...more
Experts estimate that within the next decade or so, adversaries will have the capacity to use quantum computing to break the encryption on virtually all existing digital databases. This is why it is highly significant...more
Senators Kirsten Gillibrand (D-NY) and Cynthia Lummis (R- WY) introduced new proposed legislation on June 7, 2022, which would classify the vast majority of digital assets as commodities, and empower the Commodities Futures...more
6/14/2022
/ CFTC ,
Commodities ,
Cryptoassets ,
Cryptocurrency ,
Cybersecurity ,
Digital Assets ,
Environmental Social & Governance (ESG) ,
FERC ,
FinTech ,
Infrastructure Investment and Jobs Act (IIJA) ,
Investment Contract ,
NIST ,
Proposed Legislation ,
Securities and Exchange Commission (SEC)
Welcome to the latest edition of Updata!
Updata is an international report produced by Eversheds Sutherland’s dedicated Privacy and Cybersecurity team - it provides you with a compilation of key privacy and cybersecurity...more
The Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA), passed as part of the omnibus spending bill on March 15, 2022, will require critical infrastructure companies - which could include financial...more
Companies should be aware that, as a result of increasing geopolitical instability, there is a heightened risk of cyber-attacks. Particularly in light of the Merck case, they should therefore consider closely examining the...more
3/16/2022
/ Commercial Insurance Policies ,
Cyber Attacks ,
Cyber Crimes ,
Cyber Insurance ,
Cybersecurity ,
Malware ,
Military Conflict ,
Policy Exclusions ,
Policy Terms ,
Russia ,
Ukraine
The Securities and Exchange Commission (SEC) has joined a host of other regulators in doubling down on efforts to protect against the rapidly intensifying cyber threats - with important implications for all SEC-registered...more
On September 21, 2021, the US Department of the Treasury took actions in response to the increasing prevalence and severity of ransomware attacks in the United States and address the central role that virtual currency and...more
9/27/2021
/ Currency Exchange ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Digital Currency ,
Economic Sanctions ,
Enforcement Actions ,
Office of Foreign Assets Control (OFAC) ,
Ransomware ,
SDN List ,
U.S. Treasury ,
Virtual Currency
Welcome to the latest edition of Updata - the international update from Eversheds Sutherland’s dedicated Privacy and Cybersecurity team.
Updata provides you with a compilation of privacy and cybersecurity regulatory and...more
7/16/2021
/ Adequacy Requirement ,
China ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Protection Acts ,
Data Protection Authority ,
Data Retention ,
Data Security ,
EU ,
EU Data Protection Laws ,
European Data Protection Board (EDPB) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Netherlands ,
Personal Data ,
Proposed Legislation ,
Russia ,
Social Media ,
Spain ,
Standard Contractual Clauses ,
UK
Amidst the ever-worsening onslaught of cyberattacks, companies are longing to go on the offensive, whether by “hacking-back” or by going after malicious actors in United States courts. While Congress has previously refused to...more
Updata is an international report produced by Eversheds Sutherland’s dedicated Privacy and Cybersecurity team – it provides you with a compilation of key privacy and cybersecurity regulatory and legal developments from the...more
3/11/2021
/ California Consumer Privacy Act (CCPA) ,
China ,
Coronavirus/COVID-19 ,
Court of Justice of the European Union (CJEU) ,
Cybersecurity ,
Data Privacy ,
Data Security ,
EU ,
EU-US Privacy Shield ,
European Data Protection Board (EDPB) ,
Hong Kong Monetary Authority (HKMA) ,
Popular ,
Schrems I & Schrems II ,
State Privacy Laws ,
Surveillance ,
Virus Testing
It was a tumultuous year for privacy and cybersecurity, and further uncertainty is all but guaranteed. The key to navigating this volatility, as 2020 proved, is to develop and maintain a proactive, agile and holistic data...more
2/10/2021
/ Artificial Intelligence ,
California Consumer Privacy Act (CCPA) ,
Coronavirus/COVID-19 ,
Cryptocurrency ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Security ,
Department of Justice (DOJ) ,
Enforcement Actions ,
Financial Services Industry ,
General Data Protection Regulation (GDPR) ,
NAIC ,
Popular
The massive SolarWinds security breach, which affected not only the private sector, but federal, state and local governments, has caused some to question whether to share data with the government. On Friday, December 18, the...more