News & Analysis as of

Cybersecurity Proposed Regulation

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Bradley Arant Boult Cummings LLP

Top 10 takeaways from the new HIPAA security rule NPRM

Bradley Arant Boult Cummings LLP on

On Jan. 6, 2025, the U.S. Department of Health and Human Services (HHS) proposed new regulations to enhance cybersecurity protections for electronic protected health information (ePHI) under the Health Insurance Portability...more

Wyrick Robbins Yates & Ponton LLP

Addressable No More: HHS Proposes Significant Changes to HIPAA Security Rule

Wyrick Robbins Yates & Ponton LLP on

On December 27, 2024, the Department of Health and Human Services (“HHS”) proposed substantial revisions to the 20-year-old HIPAA Security Rule. Comments on the proposal will be due within sixty days of its publication in the...more

Perkins Coie

Privacy Law Recap 2024: Data Security

Perkins Coie on

Continued cyberthreats drove expanded data security and breach notification requirements in 2024. Although sectors deemed high-risk saw significant activity, we also saw proposed regulations that stand to have a...more

Alston & Bird

CPPA Opens Formal Public Comment Period for CCPA Proposed Regulations

Alston & Bird on

On November 22, 2024, the California Privacy Protection Agency (the “CPPA”) issued a Notice of Proposed Rulemaking and opened the formal comment period for its proposed regulations on updates to existing California Consumer...more

McDermott Will & Emery

CPPA Opens Public Comment Period for CCPA Regulations

McDermott Will & Emery on

On November 22, 2024, the California Privacy Protection Agency (CPPA) opened the public comment period for the proposed California Consumer Privacy Act (CCPA) regulations related to cybersecurity audits, risk assessments, and...more

Proskauer - California Employment Law

California Takes Steps to Regulate the Use of AI for Significant Employment Decisions

Proskauer - California Employment Law on

On November 8, 2024, the California Privacy Protection Agency (CPPA) voted 4-1 to proceed with formal rulemaking regarding automated decision-making technology (“ADMT”), which the draft regulations define as “any technology...more

Alston & Bird

CPPA Board Advances CCPA Regulations to Formal Rulemaking; Adopts New Data Broker Regulations

Alston & Bird on

On November 8, 2024, the California Privacy Protection Agency (the “CPPA”) Board advanced to formal rulemaking the California Consumer Privacy Act (“CCPA”) draft regulations on cybersecurity audits, risk assessments,...more

Robinson+Cole Data Privacy + Security Insider

California Privacy Agency to Regulate AI, Boost Cybersecurity Audits

Robinson+Cole Data Privacy + Security Insider on

During the California Privacy Protection Agency’s (CPPA) meeting on November 8, 2024, it voted to proceed with formal rulemaking regarding artificial intelligence (AI) and cybersecurity audits. The CPPA’s rulemaking related...more

Bass, Berry & Sims PLC

DoD Announces Cybersecurity Maturity Model Certification 2.0 Final Rule (Finally!)

Bass, Berry & Sims PLC on

After numerous fits and starts, on October 14, the Department of Defense (DoD) published a final rule implementing the Cybersecurity Maturity Model Certification (CMMC) program. Borne from documented deficiencies in the...more

Jones Day

First Tranche of Australia's Much Anticipated Privacy Law Reforms Revealed

Jones Day on

The first wave of Australia's expansive privacy law reforms has been introduced into Federal Parliament in the Privacy and Other Legislation Amendment Bill 2024 (Cth) ("Bill")....more

McDermott Will & Emery

Election 2024: Healthcare Innovation in the US

McDermott Will & Emery on

How would a Harris-Walz administration affect clients in your practice? Bottom line: It would likely put to rest or delay debates about the Affordable Care Act (ACA), allowing health policy and legislation to focus on other...more

Holland & Knight LLP

Podcast - Cybersecurity Roundup: Analyzing New and Proposed Rules for Contractors

Holland & Knight LLP on

In this episode of "Regulatory Phishing," Government Contracts and Cybersecurity attorney Eric Crusius delves into the latest developments from the Cybersecurity Maturity Model Certification (CMMC) program, National Institute...more

Morgan Lewis - Tech & Sourcing

China’s Proposed Regulations on National Network Identity Authentication Public Services

Morgan Lewis - Tech & Sourcing on

The Ministry of Public Security and the Cyberspace Administration of China (CAC) on July 26, 2024 released an announcement soliciting public comments on the Draft Measures for the Administration of National Network Identity...more

Orrick, Herrington & Sutcliffe LLP

California issues NPRM on its Delete Act to clarify terms

Orrick, Herrington & Sutcliffe LLP on

On July 5, the California Privacy Protection Agency (CPPA) issued its NPRM to amend sections of the Delete Act. As covered by InfoBytes here, the Delete Act was signed into law in 2023 as SB 362 and transferred the...more

Health Care Compliance Association (HCCA)

Privacy Briefs: April 2024

Health Care Compliance Association (HCCA) on

The Cybersecurity and Infrastructure Agency (CISA) is seeking comment on a proposed rule to implement reporting requirements for critical infrastructure entities, including health care entities, on cyberattacks and ransomware...more

Pillsbury Winthrop Shaw Pittman LLP

New CISA Rule Would Require Widespread Cyber Incident Reporting, Updated Timelines and Penalties for Critical Infrastructure...

Pillsbury Winthrop Shaw Pittman LLP on

Most businesses in the United States will have to file incident reports—including for ransomware payments—under the Proposed Rule. The Department of Homeland Security has the authority to issue subpoenas and even penalties...more

Troutman Pepper Locke

California’s Draft Proposed Regulations on Cybersecurity Audits

Troutman Pepper Locke on

Although not yet the subject of the formal rulemaking process, the California Privacy Protection Agency (the “CPPA”) has released draft proposed regulations for cybersecurity audits required by Section 1798.185(a)(15)(A) of...more

Paul Hastings LLP

CISA Proposes Sweeping Cybersecurity Incident Reporting for U.S. Companies

Paul Hastings LLP on

On March 27, 2024, the Cybersecurity & Infrastructure Security Agency (“CISA”) released proposed regulations requiring expansive new cybersecurity incident and ransomware payment reporting across sixteen “critical...more

Mintz - Privacy & Cybersecurity Viewpoints

Further Updates to the CPPA Proposed Regulations: Risk Assessments and Automated Decisionmaking Technology

Mintz - Privacy & Cybersecurity Viewpoints on

After years of internal discussion, the Board of the California Privacy Protection Agency (CPPA), at their March 8th meeting, voted to progress toward formalizing the proposed regulations on risk assessments and automated...more

Dorsey & Whitney LLP

AI regulation introduced in Europe - setting the way forward for the rest of the world or slowing down the adoption of new tech?

Dorsey & Whitney LLP on

The EU AI Act, which was passed by the European Parliament on 13 March and is set to become law later this year, will probably be the world’s first legislation to introduce a general regulatory framework for artificial...more

Spilman Thomas & Battle, PLLC

Promissory Notes - Banking & Finance Insights: V 4, Issue 2, March 2024

Spilman Thomas & Battle, PLLC on

Volume 4, Issue 2, 2024 Welcome! Welcome to the second issue of Promissory Notes - our banking and finance e-newsletter - for 2024. Business today is characterized by relentless change. To assist our clients in navigating...more

Woods Rogers

Executive Order Prohibits Transfer of Sensitive Personal Data to “Countries of Concern”

Woods Rogers on

On February 28, 2024, U.S. President Joe Biden issued Executive Order on Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern (EO), which authorizes...more

Jones Day

HHS Releases Cybersecurity Performance Goals to Enhance Cybersecurity for Health Care and Public Health Sectors

Jones Day on

The Department of Health and Human Services ("HHS") has released voluntary cybersecurity performance goals for the health care and public health sectors, which outline an increasingly standardized regulatory approach and...more

Goodwin

2023 Year in Review: Data Privacy and Cybersecurity

Goodwin on

Welcome to the Data Privacy and Cybersecurity chapter of our annual report Consumer Financial Services 2023 Year in Review. Looking Ahead to 2024 - Amendments to key rules and regulations will take effect in 2024,...more

Mayer Brown

Department of Commerce Seeks Comment on Proposed CIP Requirement and Foreign Access Restrictions for US Infrastructure as a...

Mayer Brown on

On January 29, 2024, the US Department of Commerce’s Bureau of Industry and Security (the “Department”) issued a notice of proposed rulemaking seeking comment on a proposed regulation in response to the Executive Order (E.O.)...more

238 Results
 / 
View per page
Page: of 10
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide