In this month's edition of our Privacy & Cybersecurity Update, we examine the Seventh Circuit's ruling finding standing for an Illinois Biometric Information Privacy Act claim, the European Data Protection Board's updated...more
6/1/2020
/ Appeals ,
Biometric Information Privacy Act ,
Blocked Mergers ,
Bulk Electric System ,
Business Interruption ,
Consent ,
Cookies ,
Coronavirus/COVID-19 ,
Cyber Insurance ,
Cyber Threats ,
Cybersecurity ,
Data Protection Authority ,
Department of Energy (DOE) ,
Employee Privacy Rights ,
European Data Protection Board (EDPB) ,
Foreign Acquisitions ,
Foreign Adversaries ,
General Data Protection Regulation (GDPR) ,
National Security ,
Policy Exclusions ,
Popular ,
Privacy Laws ,
Remote Working ,
Standing ,
Trump Administration
In this month's edition of our Privacy & Cybersecurity Update, we examine Washington state's new facial recognition law, the U.K. Supreme Court's ruling that an employer is not liable for a data breach caused by a disgruntled...more
5/3/2020
/ Coronavirus/COVID-19 ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Draft Guidance ,
Employee Misconduct ,
Employer Liability Issues ,
Equifax ,
European Commission ,
European Data Protection Board (EDPB) ,
Facial Recognition Technology ,
FSB ,
Mobile Apps ,
New Guidance ,
NYDFS ,
Phishing Scams ,
Popular ,
Privacy Laws ,
Settlement ,
UK Supreme Court
As health organizations and governments around the world work to contain the coronavirus (COVID-19), businesses should be mindful of the various ways the virus may impact their operations and employees. The wide range of...more
3/5/2020
/ Acquisitions ,
Anti-Discrimination Policies ,
Business Interruption ,
Capital Markets ,
Centers for Disease Control and Prevention (CDC) ,
Commercial Contracts ,
Coronavirus/COVID-19 ,
Corporate Restructuring ,
Cybersecurity ,
Derivatives ,
Disclosure Requirements ,
Employment Policies ,
Equity Securities ,
Force Majeure Clause ,
Global Economy ,
Leveraged Finance ,
Life Sciences ,
Mergers ,
OSHA ,
Popular ,
Public Health ,
Public Safety ,
Publicly-Traded Companies ,
Securities and Exchange Commission (SEC) ,
Securities Litigation ,
Supply Chain ,
Virtual Meetings
In this month's edition, we examine the California attorney general's proposed modified regulations under the CCPA, the Treasury Department's new CFIUS regulations, and the SEC Office of Compliance Inspections and...more
3/3/2020
/ BPCIA ,
Business Losses ,
California Consumer Privacy Act (CCPA) ,
CFIUS ,
Cyber Insurance ,
Cybersecurity ,
Data Privacy ,
Foreign Investment ,
OCIE ,
Popular ,
Privacy Laws ,
Ransomware ,
Risk Mitigation ,
Securities and Exchange Commission (SEC) ,
Standing ,
State Privacy Laws ,
U.S. Treasury ,
UK ICO
In this month's edition of our Privacy & Cybersecurity Update, we examine the EU advocate general's decision in Schrems II, a federal court's ruling that an insurer owed coverage for a social engineering loss, the Chinese...more
2/6/2020
/ Advocate General ,
China ,
Cybersecurity ,
Cybersecurity Framework ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
EU ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
GA Supreme Court ,
Hackers ,
Mobile Apps ,
Negligence ,
NIST ,
Personal Data ,
Popular ,
Ransomware ,
Schrems I & Schrems II
In 2019, regulators continued to consider whether and how to regulate blockchain technology. After the two previous years that included a high number of initial coin offerings (ICOs), many of which involved allegedly...more
1/21/2020
/ BitLicense ,
Blockchain ,
Cross-Border Transactions ,
Cryptocurrency ,
Digital Securities ,
Disgorgement ,
Enforcement Actions ,
EU ,
Financial Stability Board ,
FinHub ,
Fraud ,
General Data Protection Regulation (GDPR) ,
Initial Coin Offering (ICOs) ,
NYDFS ,
Popular ,
Regulatory Agencies ,
Securities Act of 1933 ,
Securities and Exchange Commission (SEC) ,
Securities Exchange Act ,
Securities Violations ,
Settlement Negotiations ,
Stablecoins ,
Supervisory Guidance ,
Technology Sector ,
Virtual Currency
In this month's edition of our Privacy & Cybersecurity Update, we take a look at guidance on artificial intelligence released by the U.K. Information Commissioner's Office and the Turing Institute, as well as guidance...more
1/3/2020
/ Artificial Intelligence ,
Consent Order ,
Consumer Insurance Products ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Management ,
Data Protection ,
Draft Guidance ,
Email ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Information Management ,
Insurance Regulations ,
Misleading Statements ,
NAIC ,
Personal Data ,
Popular ,
Regulatory Requirements ,
Settlement Agreements ,
Terms of Service ,
Transparency ,
Voluntary Disclosure
In this month's edition, we examine the landmark data breach class action in the English High Court against Equifax, the FTC's complaint against data colocation company RagingWire and a Utah business-to-business company's...more
12/4/2019
/ Commercial General Liability Policies ,
Cybersecurity ,
Data Breach ,
Denial of Insurance Coverage ,
Equifax ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
International Arbitration ,
Misrepresentation ,
Popular ,
Privacy Laws ,
Settlement ,
Target ,
UK
In this month's edition of our Privacy & Cybersecurity Update, we examine the California attorney general's draft regulations on the California Consumer Privacy Act, the CJEU's clarified rulings on the use of cookies, the...more
11/4/2019
/ California Consumer Privacy Act (CCPA) ,
Cookies ,
Court of Justice of the European Union (CJEU) ,
Crime Insurance Policies ,
Cybersecurity ,
Data Protection ,
Draft Guidance ,
e-Privacy Directive ,
Email ,
Fantasy Sports ,
Food and Drug Administration (FDA) ,
Health Technology ,
Healthcare ,
Medical Devices ,
Medical Software ,
New Amendments ,
Non-Discrimination Rules ,
Notice Requirements ,
Personal Data ,
Popular ,
Regulatory Agenda ,
Regulatory Requirements ,
Right to Delete ,
Spoofing ,
State and Local Government ,
Verification Requirements ,
Vulnerability Assessments
In this month's edition of our Privacy & Cybersecurity Update, we examine five amendments to the California Consumer Privacy Act, the EU Court of Justice's rulings on the "Right to Be Forgotten" and what qualifies as a joint...more
10/2/2019
/ Amended Rules ,
California Consumer Privacy Act (CCPA) ,
Class Action ,
Court of Justice of the European Union (CJEU) ,
Cybersecurity ,
Data Controller ,
Discovery Disputes ,
EU ,
Facial Recognition Technology ,
Marriott ,
Personal Data ,
Personally Identifiable Information ,
Phishing Scams ,
Popular ,
Privacy Laws ,
Right to Be Forgotten ,
UK ,
United States
In this issue of The Distributed Ledger, we discuss the IRS' warning letters for over 10,000 cryptocurrency holders, the SEC's settlement with a blockchain company regarding unregistered ICO transactions, and a European...more
9/23/2019
/ Blockchain ,
Crypto Exchanges ,
Cryptocurrency ,
Data Controller ,
Data Processors ,
Digital Assets ,
Distributed Ledger Technology (DLT) ,
Ethereum ,
FinHub ,
Gaming ,
General Data Protection Regulation (GDPR) ,
Initial Coin Offering (ICOs) ,
Initial Public Offering (IPO) ,
IRS ,
No-Action Letters ,
Personal Information ,
Popular ,
Securities and Exchange Commission (SEC) ,
Securities Regulation ,
Settlement Agreements ,
Simple Agreement for Future Tokens (SAFT) ,
Smart Contracts ,
Startups ,
Unregistered Securities ,
Warning Letters
In this month's edition of our Privacy & Cybersecurity Update, we examine the European Parliament's report on whether and how the use of blockchain technology can comply with the General Data Protection Regulation, as well as...more
9/5/2019
/ Blockchain ,
Consumer Protection Laws ,
Cyber Policies ,
Cybersecurity ,
Data Protection ,
Data Security ,
EU ,
European Parliament ,
False Claims Act (FCA) ,
Federal Contractors ,
General Data Protection Regulation (GDPR) ,
Insurance Industry ,
Misrepresentation ,
NAIC ,
Personally Identifiable Information ,
Popular ,
Privacy Laws ,
Risk Assessment ,
Security Risk Assessments ,
Settlement ,
State Data Breach Notification Statutes ,
State Insurance Administrations ,
Whistleblower Awards ,
Whistleblowers
In this month's edition of our Privacy & Cybersecurity Update, we examine New York's new laws expanding consumer protection for data breaches, the D.C. Circuit's two rulings deepening the split regarding standing in data...more
8/2/2019
/ Article III ,
Biometric Information ,
Consumer Protection Laws ,
Cookies ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Debit and Credit Card Transactions ,
Equifax ,
Fair Credit Reporting Act (FCRA) ,
General Data Protection Regulation (GDPR) ,
Hackers ,
Identity Theft ,
Injury-in-Fact ,
Malware ,
New Legislation ,
Personally Identifiable Information ,
Popular ,
Search Results ,
Settlement ,
Spokeo v Robins ,
Standing ,
State and Local Government ,
State Data Breach Notification Statutes ,
UK
In this month's edition of our Privacy & Cybersecurity Update, we examine expanded data breach notification laws in New Jersey and Washington state, as well as the SEC's risk alert regarding cloud-based storage solutions. We...more
6/3/2019
/ Amended Rules ,
Annual Reports ,
Cloud Storage ,
Cybersecurity ,
Data Breach ,
Data Protection Authority ,
Data Security ,
Federal Trade Commission (FTC) ,
Finland ,
General Data Protection Regulation (GDPR) ,
Personally Identifiable Information ,
Popular ,
Privacy Laws ,
Risk Alert ,
Securities and Exchange Commission (SEC) ,
State Data Breach Notification Statutes ,
UK
In this month's Privacy & Cybersecurity Update, we examine several recent U.K.-related cybersecurity developments and the SEC's risk alert reminding investment advisers and broker-dealers to follow through on implementing...more
5/1/2019
/ Broker-Dealer ,
Canada ,
Commercial General Liability Policies ,
Cyber Insurance ,
Cyber Policies ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data-Sharing ,
Denial of Insurance Coverage ,
Designated Contract Markets (DCMs) ,
ENISA ,
Equifax ,
EU ,
Fines ,
General Data Protection Regulation (GDPR) ,
Government Investigations ,
Hackers ,
Investment Adviser ,
NCSC ,
OCIE ,
PIPEDA ,
Popular ,
Privacy Comissioners ,
Privacy Laws ,
Privacy Policy ,
Putative Class Actions ,
Regulation S-P ,
Risk Alert ,
Securities and Exchange Commission (SEC) ,
Surveys ,
TCPA ,
UK ,
UK Data Protection Act ,
UK ICO ,
Unsolicited Faxes
In this issue, we examine the release of the much-anticipated Strategic Hub for Innovation and Financial Technology (FinHub) guidance for analyzing how U.S. federal securities laws apply to initial coin offerings, the...more
4/16/2019
/ Advertising ,
Blockchain ,
California Consumer Privacy Act (CCPA) ,
CNIL ,
Cryptocurrency ,
Default ,
Digital Assets ,
Discovery ,
Distributed Ledger Technology (DLT) ,
Division of Corporate Finance ,
Ethereum ,
EU ,
FinHub ,
France ,
Frozen Assets ,
General Data Protection Regulation (GDPR) ,
Guilty Pleas ,
Initial Coin Offering (ICOs) ,
Investment Contract ,
Motion to Dismiss ,
No-Action Letters ,
NYDFS ,
Offerings ,
Payment Tokens ,
Personal Jurisdiction ,
Plea Agreements ,
Popular ,
Preliminary Injunctions ,
Profits ,
Public Comment ,
Putative Class Actions ,
Safe Harbors ,
Securities ,
Securities and Exchange Commission (SEC) ,
Securities Exchange Act ,
Securities Fraud ,
Securities Tokens ,
Securities Violations ,
Settlement ,
Smart Contracts ,
Unregistered Securities ,
Virtual Currency
In this month's edition of our Privacy & Cybersecurity Update, we examine new cybersecurity legislation in California and Massachusetts, the British government's updates to its cybersecurity laws in anticipation of Brexit and...more
4/2/2019
/ California Consumer Privacy Act (CCPA) ,
Class Action ,
Class Certification ,
Credit Reporting Agencies ,
Credit Reports ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Federal Trade Commission (FTC) ,
Gramm-Leach-Blilely Act ,
Popular ,
Privacy Laws ,
Public Comment ,
State Data Breach Notification Statutes ,
Thailand ,
UK ,
UK Brexit
In this month's edition, we examine a judge's ruling allowing an investor suit against Equifax, the dismissal of a class action against the insurer CareFirst and President Donald Trump's launch of a federal artificial...more
3/4/2019
/ Artificial Intelligence ,
Class Action ,
Cybersecurity ,
Data Breach ,
Department of Financial Services ,
Dismissals ,
Equifax ,
Facebook ,
Federal Cartel Offices ,
Federal Data Privacy ,
GAO ,
Germany ,
Investors ,
NAIC ,
NYDFS ,
Popular ,
Privacy Laws ,
Proposed Legislation ,
Trump Administration ,
User-Generated Content
In 2018, the number of blockchain-enabled projects increased sharply as established companies sought to apply distributed ledger technology to their existing business models and startups developed new and disruptive models...more
1/18/2019
/ AML/CFT ,
Blockchain ,
CFTC ,
Commodity Exchange Act (CEA) ,
Cryptocurrency ,
Derivatives ,
Distributed Ledger Technology (DLT) ,
EU ,
FinCEN ,
FinHub ,
General Data Protection Regulation (GDPR) ,
Initial Coin Offering (ICOs) ,
Popular ,
Proposed Legislation ,
Securities and Exchange Commission (SEC) ,
Token Sales ,
Unregistered Securities
In this month's edition of our Privacy & Cybersecurity Update, we examine the European Commission's second annual review of the Privacy Shield and the Department of Commerce's guidance on how to comply with the Privacy Shield...more
1/4/2019
/ Artificial Intelligence ,
Banking Sector ,
Cybersecurity ,
Data Protection ,
Data Protection Commissioner ,
Ethics ,
EU ,
EU-US Privacy Shield ,
European Central Bank ,
European Commission ,
Federal Trade Commission (FTC) ,
Financial Institutions ,
General Data Protection Regulation (GDPR) ,
Human Rights ,
Identity Theft ,
Payment Systems ,
Popular ,
Privacy Policy ,
Proposed Amendments ,
Public Comment ,
Security Risk Assessments ,
U.S. Commerce Department ,
UK Brexit
In this month's edition of our Privacy & Cybersecurity Update, we examine a declaration on ethical considerations for artificial intelligence, the annual joint review of the Privacy Shield, a new lawsuit from a snack food...more
12/5/2018
/ Administrative Review ,
Artificial Intelligence ,
Banks ,
Cyber Attacks ,
Cyber Lexicon ,
Cybersecurity ,
Data Protection ,
Data Protection Officers (DPOs) ,
Denial of Insurance Coverage ,
EDPS ,
Ethics ,
EU ,
EU-US Privacy Shield ,
European Economic Area (EEA) ,
Financial Institutions ,
Financial Stability Board ,
FSB ,
General Data Protection Regulation (GDPR) ,
Human Rights ,
Insurance Litigation ,
Malware ,
Personal Data ,
Policy Exclusions ,
Popular ,
Privacy Concerns ,
Privacy Laws ,
Property Insurance ,
Ransomware ,
Secretary of Commerce
This is the second edition of The Distributed Ledger, a periodic publication covering the latest trends and developments in blockchain technology, digital assets and smart contracts. In this issue, we examine the SEC’s new...more
11/8/2018
/ Anti-Money Laundering ,
Blockchain ,
CFTC ,
CNIL ,
Commodity Exchange Act (CEA) ,
Cross-Border Transactions ,
Data Controller ,
Data Processors ,
Digital Assets ,
EU ,
FATF ,
FinHub ,
FinTech ,
Initial Coin Offering (ICOs) ,
International Data Transfers ,
Personally Identifiable Information ,
Popular ,
Regulatory Agenda ,
Securities and Exchange Commission (SEC) ,
Smart Contracts ,
Startups ,
Terrorist Financing Regulations ,
Virtual Currency
This is the inaugural issue of The Distributed Ledger, a periodic publication covering the latest trends and developments in blockchain technology, digital assets and smart contracts. In this edition, we examine a federal...more
10/16/2018
/ Anti-Fraud Provisions ,
Blockchain ,
CFTC ,
Commodities ,
Commodity Exchange Act (CEA) ,
Conflicts of Interest ,
Consumer Protection Laws ,
Corporate Counsel ,
Cryptocurrency ,
Digital Assets ,
Distributed Ledger Technology (DLT) ,
Exclusive Jurisdiction ,
Fraud ,
Misappropriation ,
NYDFS ,
Popular ,
Research and Development ,
Smart Contracts ,
State Attorneys General ,
State Legislatures ,
Trade Market Abuse ,
Trading Platforms ,
Virtual Currency ,
Young Lawyers
In this month's Privacy & Cybersecurity Update, we examine recent trends and court decisions, including a new law in Ohio that provides a safe harbor from tort-based data breach claims if the company adopts certain security...more
10/2/2018
/ Affirmative Defenses ,
Amended Rules ,
California Consumer Privacy Act (CCPA) ,
Class Action ,
Computer Fraud Insurance ,
Cybersecurity ,
Data Breach ,
Data Security ,
General Data Protection Regulation (GDPR) ,
Internet of Things ,
Personal Data ,
Popular ,
Privacy Policy ,
Private Right of Action ,
Social Engineering ,
State Attorneys General ,
State Legislatures ,
UK ,
UK ICO
In this month's edition of our Privacy & Cybersecurity Update, we examine Brazil's new data protection regulation, the French data protection authority's warning to two companies of potential GDPR violations and the U.S....more
9/7/2018
/ Appeals ,
Brazil ,
Breach Notification Rule ,
CNIL ,
Computer Fraud Insurance ,
Consent ,
Critical Infrastructure Sectors ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Protection Acts ,
Data Protection Authority ,
Data Protection Officers (DPOs) ,
Data Retention ,
Denial of Insurance Coverage ,
Department of Homeland Security (DHS) ,
Email ,
Enforcement Actions ,
EU ,
European Commission ,
European Economic Area (EEA) ,
Extraterritoriality Rules ,
France ,
Fraudulent Transfers ,
General Data Protection Regulation (GDPR) ,
Geological Data ,
International Data Transfers ,
Japan ,
Japan-EU Economic Partnership Agreement (EPA) ,
NCCIC ,
Personal Data ,
Policy Terms ,
Popular ,
Public Private Partnerships (P3s) ,
Reciprocity Rules ,
Reversal ,
Scams ,
Social Engineering ,
Spoofing ,
Standard Contractual Clauses ,
Warning Letters ,
Wire Fraud