Nathan Steed

Nathan Steed

Warner Norcross + Judd

Contact
View Bio
RSS

Latest Publications

Share:

DOJ Forces $9.8 Million Settlement with Illumina Over Cybersecurity Failures: Key Takeaways for Health Care Providers

Earlier this year, the U.S. Department of Justice (DOJ) announced Illumina Inc. agreed to pay $9.8 million to resolve allegations under the False Claims Act (FCA) relating to cybersecurity vulnerabilities in its genomic...more

10/8/2025  /  Cybersecurity , Data Security , Department of Justice (DOJ) , Enforcement Actions , False Claims Act (FCA) , Federal Contractors , Government Agencies , Health Care Providers , Healthcare , NIST , Popular , Risk Management , Supply Chain , Whistleblowers

A Reminder: Maryland Online Data Privacy Act Has Become Effective This Week

As of Oct. 1, Maryland is the latest state to join the growing ranks of those with comprehensive data privacy laws as the Maryland Online Data Privacy Act (MODPA) takes effect. While much of the law mirrors those of other...more

10/3/2025  /  Consumer Privacy Rights , Data Brokers , Data Privacy , Data Protection Impact Assessments (DPIAs) , Maryland , Minors , New Legislation , Opt-Outs , Personal Data , Privacy Laws , Sensitive Personal Information , State Privacy Laws

California, Colorado and Connecticut Launch Joint Investigatory Sweep Targeting Website Global Privacy Control Noncompliance

While many state comprehensive data privacy laws require that data controllers honor universal opt-out mechanisms such as Global Privacy Control (GPC) signals, California, Colorado and Connecticut have launched a joint...more

9/24/2025  /  California , Colorado , Connecticut , Consumer Privacy Rights , Data Privacy , Enforcement Actions , Opt-Outs , Penalties , Privacy Laws , Regulatory Requirements , State Attorneys General , State Privacy Laws , Targeted Digital Advertising , Websites

Data Breaches in the Supply Chain: The Risk, the Cost and What You Can Do to Protect Against Them

Data breaches are increasing in frequency and cost for U.S. corporations, and businesses in the supply chain are often prime targets for bad actors. It’s critical for suppliers to understand the risk and costs of data...more

9/16/2025  /  Contract Terms , Cyber Crimes , Cybersecurity , Data Breach , Data Protection , Data Security , Due Diligence , Employee Training , Liability , Risk Management , Supply Chain , Third-Party Service Provider , Training

[Event] Bridging the Risk Gap: Legal Strategies for Supply Chain Resilience - October 7th, Detroit, MI

In today’s rapidly evolving global landscape, supply chain leaders face mounting challenges — from shifting regulatory frameworks to rising cybersecurity threats and increasing geopolitical uncertainty. This half-day seminar...more

9/9/2025  /  Business Operations , Cyber Threats , Cybersecurity , Events , Geopolitical Risks , Regulatory Requirements , Risk Management , Supply Chain

Sixth Circuit Upholds FCC’s 2024 Data Breach Reporting Rules

The U.S. Court of Appeals for the Sixth Circuit recently issued a decision in Ohio Telecom Association et al. v. FCC, upholding the FCC’s 2024 data breach reporting requirements for telecommunications carriers and relay...more

8/18/2025  /  Appeals , Communications Act of 1934 , Congressional Review Act , Customer Proprietary Network Information (CPNI) , Cybersecurity , Data Breach , Data Privacy , Data Protection , FCC , Regulatory Authority , Regulatory Requirements , Reporting Requirements , Statutory Interpretation , Telecommunications

Avoid the October Surprise: What You Need to Know About DOJ’s New Data Security Program

The Department of Justice’s (“DOJ”) Data Security Program (“the Program”, 28 C.F.R. Part 202) went into effect on April 8 with a 90-day period of limited enforcement. With DOJ now expecting full compliance, with additional...more

8/13/2025  /  China , Compliance , Cuba , Cybersecurity , Data Brokers , Data Privacy , Data Protection , Data Security , Department of Justice (DOJ) , Due Diligence , Hong Kong , Iran , National Security , Popular , Regulatory Requirements , Reporting Requirements , Russia , Sensitive Personal Information , Third-Party , Venezuela

OCR Enforcement Intensifies: Key Takeaways on Risk Analysis and Right of Access

The Office for Civil Rights (OCR) at the U.S. Department of Health and Human Services has renewed its focus on two critical areas of HIPAA compliance: risk analysis and individual right of access. These enforcement...more

3/27/2025  /  Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Enforcement Actions , Health Insurance Portability and Accountability Act (HIPAA) , Healthcare , HIPAA Security Rule , Medical Records , OCR , Right of Access , Risk Management

Emphasizing Robust Contracts with Cloud Providers Amid Recent Alleged Breach at Oracle

Recent reports concerning a potential security incident involving Oracle Cloud services provide a warning for many companies who allow third parties to access or store sensitive company data. A threat actor claims to have...more

3/26/2025  /  Contract Terms , Cybersecurity , Data Breach , Data Protection , Data Security , Liability , Risk Management

Managing Cybersecurity Risk for Family Offices and Businesses

Whether caused by family member thoughtlessness, employee error or the acts of a skilled data thief, everyone is likely to be the victim of an information breach at some point. A cyberattack on a family office or family...more

8/27/2024  /  Cyber Attacks , Cybersecurity , Data Protection , Family Businesses , Incident Response Plans , Information Technology , Risk Assessment , Risk Management , Training

A Note of Caution: Data Breach Reports May be Discoverable

An organization that has suffered a data breach likely does not want to have to disclose potentially embarrassing or harmful information, especially in a lawsuit resulting from the breach. Simply involving an attorney in...more

3/20/2024  /  Attorney-Client Privilege , Confidential Communications , Cybersecurity , Data Breach , Disclosure , Forensic Examination , Incident Response Plans , Popular

Complying With 2023 Consumer Privacy Laws in California and Virginia

Service providers, contractors and data collectors operating in California and Virginia, must prepare for imminent changes. The California Privacy Rights Act (CPRA), which amends the current California Consumer Privacy Act...more

12/21/2022  /  California Consumer Privacy Act (CCPA) , California Privacy Rights Act (CPRA) , Consumer Privacy Rights , Data Privacy , Data Protection , Data Protection Acts , Disclosure Requirements , State Privacy Laws , Virginia

[Webinar] Wire Transfer Fraud: Preventing and Mitigating this Rising Threat - December 6th, 12:00 pm - 1:00 pm ET

Join Warner Norcross + Judd LLP attorneys Madelaine Lane, Kelly Hollingsworth and Nate Steed for a webinar focused on preventing and mitigating wire transfer fraud. Cyber criminals are utilizing phishing emails and other...more

11/7/2022  /  Best Practices , Criminal Prosecution , Cyber Attacks , Cyber Crimes , Cyber Threats , Cybersecurity , Fraud Prevention , Fraudulent Wire Transfers , Law Enforcement , Phishing Scams , Popular , Restitution , Risk Mitigation , Webinars , Wire Fraud , Wire Transfers
13 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide