News & Analysis as of

Cybersecurity Notification Requirements Cyber Incident Reporting

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Fisher Phillips

How Schools Should Respond to the PowerSchool Cyberattack

Fisher Phillips on

The country’s largest provider of cloud-based education software for K-12 schools announced on January 7 that it fell victim to a massive data breach – which may lead to questions about the implications for your school....more

Constangy, Brooks, Smith & Prophete, LLP

FTC cyber breach notification rules: If you’re a non-banking financial institution, here’s what you need to know.

Financial institutions are now required to notify the Federal Trade Commission about any security breach that involves the information of 500 customers or more. The breach must be reported no later than 30 days after it is...more

Mayer Brown

Amendment to ANATEL's Cybersecurity Regulations - Incident Notification and Prior Evaluation of Suppliers

Mayer Brown on

The National Telecommunications Agency (ANATEL) published Resolution No. 767 of August 2024 (the “Resolution”), which amended Resolution No. 740 of 2020, also known as the Cybersecurity Regulation Applied to the...more

Sheppard Mullin Richter & Hampton LLP

FHA’s Releases 12-Hour Cyber Incident Notification Rule

On May 23, the U.S. Department of Housing and Urban Development (HUD) announced that Federal Housing Administration-approved Mortgagees are subject to a heightened cybersecurity incident reporting regime. The new requirement,...more

Jenner & Block

Client Alert: The SEC Expands Its Cybersecurity Oversight by Adopting Regulation S-P Amendments

Jenner & Block on

Earlier this month, approximately one year after releasing its proposed amendments to Regulation S-P, the SEC announced the adoption of final amendments to Regulation S-P, expanding the information protected, the policies and...more

Baker Donelson

[Webinar] New Privacy and Cybersecurity Regulations: What Financial Institutions Need to Know to Stay Compliant - June 13th, 10:00...

Baker Donelson on

The financial services industry has seen a litany of new data privacy and cybersecurity challenges through the first half of 2024. Financial institutions are facing unprecedented compliance hurdles resulting from the...more

Vedder Price

SEC Joins Chorus of Regulators Requiring Data Breach Notifications

Vedder Price on

Last week, the U.S. Securities and Exchange Commission (“SEC”) became the latest federal regulator to implement a data breach notification law. The commissioners unanimously voted to approve amendments to Regulation S-P (the...more

Morrison & Foerster LLP

U.S. SEC Adopts Amendments to Reg S-P

On May 16, 2024, the SEC adopted amendments to Regulation S-P (“Reg S-P”). The finalized amendments (the “Amendments”) to Reg S-P are designed to address the expanded use of technology and corresponding risks that have...more

Skadden, Arps, Slate, Meagher & Flom LLP

SEC Amends Reg S-P To Strengthen Data Breach Response Requirements and Protect Investor Information

On May 16, 2024, the Securities and Exchange Commission (SEC) announced the adoption of amendments to Regulation S-P (Reg S-P), which broadly track the changes originally proposed in March 2023. The revised Reg S-P requires...more

Sheppard Mullin Richter & Hampton LLP

Reminder: FTC Safeguards Rule Notification Requirement Now In Effect

On May 13, the FTC’s amendment to the Safeguards Rule relating to the reporting of data breaches and security incidents, which were announced in October of 2023, became effective. As a reminder, the FTC’s Safeguards Rule...more

Alston & Bird

Ginnie Mae Imposes Cybersecurity Incident Notification Obligation

Alston & Bird on

What Happened? On March 4, 2024, Ginnie Mae issued All Participant Memorandum (APM) 24-02 to impose a new cybersecurity incident notification requirement. Ginnie Mae has also amended its Mortgage-Backed Securities Guide to...more

Perkins Coie

2023 Breach Notification Law Update: Changes to Notification and Security Requirements Continue at State and Federal Levels

Perkins Coie on

A flurry of legislative activity over the past year has brought meaningful changes to a variety of privacy and security provisions in state and federal law. At the state level, as in 2022, we have seen a handful of changes to...more

Paul Hastings LLP

SEC Proposes New Cybersecurity Rule and Amendments

Paul Hastings LLP on

On March 15, 2023, the SEC issued proposed amendments and a proposed rule addressing cybersecurity. Specifically, the SEC proposed Rule 10, which addresses cybersecurity risks, and proposed to amend Regulation SCI and...more

Ankura

When Did You Last Test Your Cyber Incident Response Plan?

Ankura on

A cyber incident response plan is a set of guidelines and protocols designed to help an organization detect, respond, contain, and manage any form of a cybersecurity breach. It outlines how best to safeguard the organization...more

Health Care Compliance Association (HCCA)

[Event] Healthcare Privacy Compliance Academy - August 22nd - 25th, Las Vegas, NV

Each Academy provides three-and-a-half days of classroom-style training covering the latest laws, regulations, and developments to help you effectively manage your organization’s compliance program. They are ideal for...more

Reveal

Data Privacy and Breach Notification From the Other Side of the World: APAC

Reveal on

Last week, I discussed eDiscovery in the Asia Pacific (APAC) region in terms of what each country has in place from a rules and discovery standpoint. eDiscovery isn’t the only discipline where US-based bloggers like me tend...more

Health Care Compliance Association (HCCA)

[Event] Healthcare Privacy Compliance Academy - April 25th - 28th, Chicago, IL

Each Academy provides three-and-a-half days of classroom-style training covering the latest laws, regulations, and developments to help you effectively manage your organization’s compliance program. They are ideal for...more

Health Care Compliance Association (HCCA)

Safeguards in New National Network Include Insurance, App Mandates, Cybersecurity Council

Report on Patient Privacy 22, no. 2 (February, 2022) - The new national health information network calls for a number of privacy and security safeguards and standards that, in some instances, exceed what HIPAA covered...more

Goodwin

Agencies Approve Final Rule: Computer-Security Incident Notification

Goodwin on

In This Issue. The Office of the Comptroller of the Currency (OCC), the Federal Deposit Insurance Corporation (FDIC) and the Board of Governors of the Federal Reserve System (together, the Agencies) issued a final rule...more

Carlton Fields

CF on Cyber: Leveraging the Incident Response Guide to Prepare for the CCPA

Carlton Fields on

In this program, Jack Clabby, Joe Swanson and Steve Blickensderfer give practical advice on the attorneys’ role in a data security incident response guide, which is a key document in preparing for California’s new data...more

White & Case LLP

Navigating Privacy and Cyber Incident Notification and Disclosure Requirements

White & Case LLP on

White & Case Technology Newsflash - Fulfilling a company's data breach and cybersecurity incident notification and disclosure requirements is an increasing challenge. Companies operating across industry sectors and around...more

Akin Gump Strauss Hauer & Feld LLP

NFA Issues Interpretive Notices for CPOs Regarding Internal Controls Systems and Cybersecurity

• The NFA has determined that registered CPOs must implement an internal controls system and highlighted best practices for such a framework. • In response to certain frequently asked questions, the NFA has also updated its...more

Bradley Arant Boult Cummings LLP

New Year, New Data Security Requirement: South Carolina Adopts New Data Security Law

On January 1st, South Carolina became the first state to adopt the model insurance data security law requiring certain insurance licensees to investigate and report cybersecurity events in the state of South Carolina. The law...more

Snell & Wilmer

Alabama’s Data Breach Law

Snell & Wilmer on

All U.S states now have laws about data security and what to do when there’s a data breach. Alabama recently was the 50th state to add such a law, and it takes effect on May 1, 2018. Here are its highlights....more

24 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide