On July 26, 2023, the Securities and Exchange Commission adopted new rules imposing disclosure requirements regarding cybersecurity risk management, strategy, governance and incidents. The new rules, which became effective...more
9/8/2023
/ Annual Reports ,
Canada ,
Compliance ,
Compliance Dates ,
Corporate Governance ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Disclosure Requirements ,
EDGAR ,
Foreign Private Issuers ,
Form 10-K ,
Form 10-Q ,
Form 20-F ,
Form 8-K ,
Publicly-Traded Companies ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Smaller Reporting Companies
Governor Spencer Cox of Utah has now signed into law the Utah Consumer Privacy Act (“UCPA”), which was recently passed unanimously by the Utah legislature, and which will go into effect on December 31, 2023. Utah joins...more
State Notifications Deemed to Trigger DFS Reporting of Non-material Breaches -
Two successive Consent Orders have demonstrated the seriousness of non-compliance with New York’s Department of Financial Services financial...more
New York continued its active legislative session last week, this time by expanding its data breach notification law. The SHIELD Act (Stop Hacks and Improve Electronic Data Security), signed by Governor Andrew Cuomo on July...more
7/30/2019
/ Credit Reporting Agencies ,
Cybersecurity ,
Damages ,
Data Breach ,
Data Privacy ,
Data Protection ,
Enforcement ,
Equifax ,
General Data Protection Regulation (GDPR) ,
New Legislation ,
Personal Information ,
Popular
In a decision with far-reaching consequences, the European Court of Justice (located in Luxembourg) (“ECJ”) ruled on May 13, 2014, that E.U. citizens can demand that search engines – in this instance Google – must delete...more
A New York trial court announced a decision on February 21, 2014, that may be a harbinger of wide-reaching limitations on insurance coverage for data breaches under commercial general liability (CGL) policies. The court’s...more