Why Privacy is Your Secret Weapon Against Third-Party Risk
AI Discrimination and Emerging Best Practices – Part 1 — The Good Bot Podcast
How can founders navigate the explosion of state AI regulations?
#WorkforceWednesday®: New DOL Guidance - ERISA Plan Cybersecurity Update - Employment Law This Week®
What's the Tea in L&E? Can You Share An Employee's Medical Info?
New HIPAA Final Rule: Key Changes to Reproductive Health Care Privacy - Thought Leaders in Health Law®
The Privacy Insider Podcast Ep. 7: David, Goliath, and Data Privacy Part II: Max Schrems
AGG Talks: Women in Tech Law Podcast - Episode 4: Preparing for a Transaction? What Emerging Growth Companies Need to Know
The CMS Interoperability and Prior Authorization Rules
When AI Meets PI: Assessing and Governing AI from a Privacy Perspective
John Wick - What You Need To Know about the Corporate Transparency Act
Seeing into the Future: Moving Beyond AI to Visual Intelligence with Oculi CEO Charbel Rizk
A Brief Overview of Colorado’s Recently Enacted AI Law
Navigating Emerging Privacy Issues in Financial Services — The Consumer Finance Podcast
No Password Required: USF Cybercrime Professor, Former Federal Agent, and Vintage Computer Archivist
AGG Talks: Women in Tech Law Podcast - Episode 3: Cybersecurity and FCA Compliance: Essential Insights for Tech Leaders
Back to School: 3 Essential Employee Trainings
A Sneak Peek into Data Mapping: What Implementation Really Looks Like
Implications of the SEC Cybersecurity Disclosure Rule
As we have previously written, late last year the New York Department of Financial Services (NYDFS) adopted long-awaited amendments to its Part 500 Cybersecurity Regulations (Part 500). These are some of the most significant...more
On September 29, 2024, California took a significant step forward in data privacy protection by passing a law that extends the California Consumer Privacy Act (CCPA) to cover neural data—brain activity and related information...more
FTC Staff Report on Social Media Platforms’ Privacy and Security Practices - On September 19, 2024, the Federal Trade Commission (“FTC” or the “Commission”) announced the release of its staff report, “A Look Behind the...more
In a settlement with Marriott International and its subsidiary Starwood hotels and Resorts Worldwide, the FTC will require Marriott to implement a new comprehensive data security program. The settlement stems from a series of...more
The Commission Nationale de l’Informatique et des Libertés (CNIL) is an independent French administrative regulatory body whose mission is to ensure that the collection, storage, and use of personal data comply with data...more
The Office of Management and Budget (OMB) has released Memorandum M-24-18, introducing new requirements and guidance for federal agencies on the responsible acquisition of artificial intelligence (AI). This memorandum aims to...more
The European Data Protection Board (EDPB), the umbrella group of the EU’s data protection authorities, has issued new Guidelines 01/2024 of October 9, 2024 on the processing of personal data based on the legitimate interest...more
After years of development work, the National Association of Insurance Commissioners’ Privacy Protections Working Group’s efforts are again caught in a windstorm. ...more
California’s 2024 legislative session has been marked with exciting developments and a clear focus on setting the rules of the road for artificial intelligence (AI), with some measures becoming law and others stalling out...more
As of November 1, 2024, financial services companies regulated by the New York Department of Financial Services Cybersecurity Regulation face new requirements relating to cybersecurity governance, encryption, and incident...more
Once again, California is flexing its market power by taking bold and wide-ranging legislative action to regulate the use and deployment of artificial intelligence ("AI") systems. In 2024, the California ("CA") Legislature...more
Despite holding that cellphone users are not “categorically excluded” from the TCPA, a New York federal court granted a defendant’s motion to dismiss after determining the complaint failed to allege that the defendant was...more
Hong Kong has witnessed a notable surge in cyber breach incidents in recent years. The cyberattacks have affected various organisations across the public, private and non-profit sector. Cybersecurity incidents recorded a...more
We invite you to join us for an insightful webinar on Best Practices in Cyber Preparedness for Government Contractors and Critical Infrastructure Operators on Wednesday, October 23, 2024, from 12:00 p.m. – 1:00 p.m. EDT....more
During the course of any lending transaction, lenders will conduct a due diligence review of the borrower, including reviewing any relevant “know-your-customer” information. In the context of a fund finance transaction, this...more
As we discussed in a recent post, earlier this year the U.S. Department of Housing and Urban Development (“HUD”) issued Mortgagee Letter 2024-10, which imposed a new requirement on all FHA-approved mortgagees to report...more
The CJEU considered: (a) whether a legitimate interest of the controller or third party must be determined by law, and (b) whether provision of personal data of the members of a sports federation to third parties in return...more
Quicker and easier sharing of customer information relating to economic crime concerns between firms in the UK financial sector has been encouraged by provisions in the Economic Crime and Corporate Transparency Act 2023...more
Current and potential patients are taking to the internet to share opinions and make decisions about healthcare providers. Good reviews can convert prospective healthcare consumers into patients, while bad reviews,...more
The Cyber Security Bill 2024 ("Cyber Bill") tabled in the Australian Federal Parliament yesterday is set to bring significant changes to the cyber security landscape in Australia....more
Businesses suffering a data breach affecting Pennsylvania residents may have new compliance obligations pursuant to a recent amendment to the Commonwealth's data breach notification law. Earlier this year, Pennsylvania...more
On Tuesday, October 8, CTIA hosted the ConnectMobile Forum as part of this year’s Mobile World Congress in Las Vegas. The event brought together stakeholders from the messaging and voice ecosystems to discuss consumer...more
Welcome to our five-part series on human resources’ (HR) role in managing employee data privacy with grace, agility, and expertise. In this five-part series, each article will build on previous installments to help HR...more
Carriers have an obligation to protect customer proprietary network information (CPNI) and personally identifiable information (PI). Several recent FCC consent decrees resolving breaches of CPNI and PI show the FCC will hold...more
On May 16, 2024, the SEC breathed new life into its decades-old Regulation S-P, which requires firms to adopt policies and procedures for the protection of customer information and records. The amended rule balloons the...more