In this month’s Privacy & Cybersecurity Update, we analyze the U.S. and EU’s joint commitment to create a new data transfer framework to replace the invalidated Privacy Shield, as well as Utah’s new state privacy law and...more
4/5/2022
/ Court of Justice of the European Union (CJEU) ,
Cybersecurity ,
EU ,
EU-US Privacy Shield ,
European Commission ,
European Economic Area (EEA) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Schrems I & Schrems II ,
Standard Contractual Clauses
The Web3 community has long expressed frustration at the lack of clarity emanating from the SEC regarding the treatment of cryptocurrencies and other digital assets under current securities laws, with many characterizing the...more
In December 2020, the Securities and Exchange Commission (SEC) filed an action against Ripple Labs, Inc. and two of its executives, alleging they raised over $1.3 billion through an unregistered ongoing securities offering of...more
As the digital asset sector has exploded in recent years, there has been growing frustration in the U.S. at the lack of clarity on the application of existing laws to this new ecosystem and a perceived lack of coordination...more
In this month’s Privacy & Cybersecurity Update, we examine the Illinois Supreme Court’s decision in a case involving workers compensation and the state’s Biometric Information Privacy Act, U.K. data transfer regimes before...more
3/2/2022
/ Biometric Information ,
Biometric Information Privacy Act ,
COPPA ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection Authority ,
EU ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
IL Supreme Court ,
International Data Transfers ,
Internet of Things ,
NIST ,
Personal Data ,
Popular ,
Standard Contractual Clauses
This is the fourth in a series of articles in which we discuss recent efforts by regulators and other governmental bodies to set expectations and standards, or pursue governmental initiatives, with respect to cryptocurrencies...more
In this month’s Privacy & Cybersecurity Update, we examine the U.S. Chamber of Commerce’s letter to Congress calling for federal cybersecurity legislation, the New York attorney general’s report on “credential stuffing”...more
2/3/2022
/ Biometric Information Privacy Act ,
Commercial General Liability Policies ,
Consumer Financial Protection Bureau (CFPB) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Federal Trade Commission (FTC) ,
FTC Act ,
Medical Devices ,
Personal Information
Takeaways -
Most existing agreements covering the exploitation of intellectual property rights did not contemplate how NFTs should be treated.
Drafting and negotiating agreements involving NFTs requires an...more
1/25/2022
/ Blockchain ,
Copyright ,
Cryptocurrency ,
Decentralized Finance (DeFi) ,
Derivative Works ,
Digital Assets ,
FinTech ,
Initial Coin Offering (ICOs) ,
Intellectual Property Protection ,
Name and Likeness ,
Non-Fungible Tokens (NFTs) ,
Securities and Exchange Commission (SEC) ,
Smart Contracts
In this month’s Privacy & Cybersecurity Update, we review the TSA’s new cybersecurity requirements for critical U.S. infrastructure, the White House OMB’s new guidance on cyber incident reporting procedures and the U.S.-U.K....more
In this month’s Privacy & Cybersecurity Update, we examine the FBI’s warning to companies regarding cyberattacks targeting confidential M&A activity, as well as the Cybersecurity and Infrastructure Security Agency’s directive...more
12/1/2021
/ Cyber Attacks ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
EU ,
European Data Protection Board (EDPB) ,
FBI ,
International Data Transfers ,
Ransomware ,
Robocalling
Two new Chinese laws dealing with data security and privacy came into force in the fall of 2021 that are likely to have an impact on many multinational companies operating in China or whose operations touch China. These two...more
11/4/2021
/ Algorithms ,
Artificial Intelligence ,
China ,
Corporate Counsel ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
International Data Transfers ,
Personal Information ,
Personal Information Protection Law (PIPL)
In this month’s edition of our Privacy & Cybersecurity Update, we examine the FTC’s changes to the Gramm-Leach-Bliley Act’s Safeguards Rule and the CFPB’s order requiring six tech companies to disclose information regarding...more
11/2/2021
/ Consumer Financial Protection Bureau (CFPB) ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Federal Trade Commission (FTC) ,
GEICO ,
Gramm-Leach-Blilely Act ,
Hackers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Multidistrict Litigation ,
Putative Class Actions ,
Safeguards Rule
In this month’s edition of our Privacy & Cybersecurity Update, we examine the California Privacy Protection Agency's public comment period for the California Privacy Rights Act, the U.K. government's public consultation...more
10/4/2021
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
EU ,
Fourth Amendment ,
General Data Protection Regulation (GDPR) ,
Office of Foreign Assets Control (OFAC) ,
Personal Information ,
Public Comment ,
Surveillance
In recent months, the increased focus on cryptocurrency regulation and enforcement at both the federal and state levels demonstrates the digital currency’s place as an established component of the financial landscape. At the...more
10/1/2021
/ Anti-Money Laundering ,
Bank Secrecy Act ,
BitMEX ,
Blockchain ,
CFTC ,
Cryptocurrency ,
Decentralized Finance (DeFi) ,
Department of Justice (DOJ) ,
Digital Assets ,
Digital Currency ,
FinCEN ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
IRS ,
Office of Foreign Assets Control (OFAC) ,
Ransomware ,
Reporting Requirements ,
Securities and Exchange Commission (SEC)
In this month’s edition of our Privacy & Cybersecurity Update, we examine FINRA’s report on cloud computing, Connecticut’s new safe harbor for companies following certain cybersecurity protocols and a district court dismissal...more
9/1/2021
/ China ,
Cloud Computing ,
Communications Decency Act ,
Consultation Periods ,
Covered Entities ,
Cybersecurity ,
Data Protection ,
Financial Industry Regulatory Authority (FINRA) ,
International Data Transfers ,
Safe Harbors ,
Section 230 ,
Securities Regulation
This issue discusses a variety of legal, regulatory and enforcement developments in the digital asset space in the U.S. and Europe, including expanded reporting requirements for broadly defined cryptocurrency “brokers,” a...more
8/27/2021
/ Anti-Money Laundering ,
Bank Secrecy Act ,
BitMEX ,
Blockchain ,
CFTC ,
Cryptocurrency ,
Department of Justice (DOJ) ,
Digital Assets ,
Distributed Ledger Technology (DLT) ,
Enforcement Actions ,
FinCEN ,
Popular ,
Reporting Requirements ,
Smart Contracts
In this month’s edition of our Privacy & Cybersecurity Update, we examine cybersecurity guidance issued by New York state, and the Cybersecurity and Infrastructure Security Agency’s new “Bad Practices” website outlining what...more
8/3/2021
/ Best Practices ,
California Consumer Privacy Act (CCPA) ,
COPPA ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
Data Security ,
European Data Protection Board (EDPB) ,
Federal Trade Commission (FTC) ,
Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) ,
NYDFS ,
Popular ,
Ransomware
In this month’s edition of our Privacy & Cybersecurity Update, we examine the European Commission’s new Standard Contractual Clauses and the European Data Protection Board’s new recommendations on international data flows. We...more
7/9/2021
/ Computer Fraud and Abuse Act (CFAA) ,
Cybersecurity ,
Data Protection ,
European Commission ,
European Data Protection Board (EDPB) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Popular ,
Ransomware ,
Schrems I & Schrems II ,
State Privacy Laws
The existing financial regulatory regime limits the inroads fintech companies can make in banking. That could change with decentralized finance and cryptocurrencies. ...more
The first 100 days of the Biden administration has coincided with a watershed period in the evolution of blockchain technology and cryptocurrencies. The price of Bitcoin has risen dramatically during that period, triggering...more
In this month's edition of our Privacy & Cybersecurity Update, we examine the Second Circuit's ruling allowing standing for increased risk of identity theft following a data breach, the European Commission's recently released...more
5/3/2021
/ Artificial Intelligence ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
Department of Labor (DOL) ,
EBSA ,
EU ,
European Commission ,
IN Supreme Court ,
Ransomware
This issue discusses a variety of legal, regulatory and enforcement developments in the digital asset space in the U.S. and Europe....more
4/19/2021
/ Bitcoin ,
Blockchain ,
CFTC ,
Cryptocurrency ,
Department of Justice (DOJ) ,
Digital Assets ,
Distributed Ledger Technology (DLT) ,
Enforcement Actions ,
Ethereum ,
FinCEN ,
Initial Coin Offering (ICOs) ,
Investment Adviser ,
Non-Fungible Tokens (NFTs) ,
Securities and Exchange Commission (SEC) ,
Smart Contracts ,
Virtual Currency
In this month’s edition, we examine California’s new regulations enhancing opt-out rights in the California Consumer Privacy Act and the state's selections for the California Privacy Protection Agency’s inaugural board. We...more
4/2/2021
/ California Consumer Privacy Act (CCPA) ,
Commercial General Liability Policies ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Privacy ,
Data Protection ,
FDCPA ,
General Data Protection Regulation (GDPR) ,
Information Commissioner's Office (ICO) ,
Opt-Outs ,
Personal Data ,
Securities and Exchange Commission (SEC) ,
State Attorneys General ,
State Privacy Laws ,
TCPA
Nonfungible tokens (NFTs) have, in recent weeks, gone from a relatively obscure form of digital collectible stored on a blockchain to a virtual “gold rush” for artists, labels and other music rights owners looking for ways to...more
On March 2, 2021, Virginia Gov. Ralph Northam signed into law the Virginia Consumer Data Protection Act (CDPA), making Virginia the second state after California to enact comprehensive privacy legislation. The CDPA will...more