News & Analysis as of May 7, 2025

Cybersecurity › Third-Party Service Provider › Personally Identifiable Information

+ Follow

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now. less -

Hospital Administrators – Is Your Hospital Cyber-Secure?

Lippes Mathias LLP on 11/20/2024

On October 2, 2024, New York adopted new regulations requiring general hospitals to implement heightened cybersecurity safeguards. General hospitals, as defined in Article 28 of the NY Public Health Law, generally must begin...more

Mount Desert Island Hospital Notifies 24,180 of Data Breach Involving Leaked Social Security Numbers

Console and Associates, P.C. on 7/6/2023

On June 30, 2023, Mount Desert Island Hospital (“MDIH”) filed a notice of data breach with the U.S. Department of Health and Human Services Office for Civil Rights after discovering that an unauthorized party had gained...more

FTC Actions Hold Data Privacy Lessons For 2023

Rothwell, Figg, Ernst & Manbeck, P.C. on 1/4/2023

The Federal Trade Commission will have its eye on privacy and data security enforcement in 2023. In August, the agency announced that it is exploring ways to crack down on lax data security practices. In the announcement,...more

School Nutrition Vendor Sued for Compromise of 867,209 K-12 Student Records

Robinson+Cole Data Privacy + Security Insider on 4/23/2021

PCS Revenue Control Systems, Inc. (PCS) was hit with a proposed class action lawsuit last week alleging that it discovered a data breach from a hacking attack in December 2019 but failed to notify the affected students until...more

Tyler Technologies Victim of Cyber-Attack

Robinson+Cole Data Privacy + Security Insider on 10/5/2020

As one of the largest information technology service providers to local governments, the cyber-attack on Tyler Technologies (Tyler) in Plano, Texas is a sobering reminder of how a cyber-attack on a third-party vendor can put...more

Managing Third-Party Vendor Regulatory Compliance

Mitratech Holdings, Inc on 8/7/2020

Data breaches are a hot topic and will undoubtedly get even hotter. Cybersecurity for your own enterprise isn’t enough — you must evaluate your vendors and determine if they’re prepared to resist cyberattacks. ...more

Addressing Data Privacy and Security Provisions in COVID-19 Related Service Provider Agreements and Beyond

Epstein Becker & Green on 6/26/2020

Employers’ engagement and use of various types of vendors has expanded recently, to include vendors who assist with office re-entry screening and contact tracing as employees return to work during the COVID-19 pandemic. ...more

Bringing Your Business Online: Written Information Security Programs (WISPs)

Partridge Snow & Hahn LLP on 5/19/2020

The current COVID-19 pandemic has forced many businesses online in order to survive. In many cases, businesses had no plans to be online. Others were forced to move online more quickly than planned. In order to assist these...more

Energy Newsletter - April 2020

King & Spalding on 4/17/2020

Developing Contingency Plans: The NYDFS Mandate on Licensed Virtual Currency Businesses - The events surrounding COVID-19 have increased the use of fintech products, both out of necessity and convenience. Shelter-in-place...more

New York Dept of Financial Services (NYDFS) Extends Cybersecurity Compliance Deadline

Mintz - Privacy & Cybersecurity Viewpoints on 4/1/2020

The NYDFS has announced that it has extended the deadline for compliance with certain cybersecurity requirements due to the coronavirus emergency. The announcement from the Superintendent of Financial Services of the State...more

New York’s SHIELD Act Cheat Sheet

White and Williams LLP on 12/13/2019

Effective October 23, 2019 for changes in data breach notification requirements, and March 21, 2020 for new data security requirements, New York’s “Stop Hacks and Improve Electronic Data Security Act” (SHIELD Act) broadens...more

A Glossary Guide to the CCPA

Mitratech Holdings, Inc on 11/15/2019

To get prepared for the California Consumer Privacy Act (CCPA), get a grasp of the basic jargonese and terms involved. The CCPA will impact hundreds of thousands of businesses worldwide. In “A Glossary Guide to the CCPA”,...more

Latest California Consumer Privacy Act Amendments Impact Business Compliance Initiatives

Troutman Pepper Locke on 9/17/2019

On September 13, the final day of its legislative session, the California Legislature approved five amendments to the California Consumer Privacy Act (CCPA), the state’s sweeping new privacy law that takes effect on January...more

Delta Sues Vendor for Causing Data Breach

Robinson+Cole Data Privacy + Security Insider on 8/15/2019

In an unusual move, Delta Airlines (Delta) sued one of its vendors last week for the data breach it experienced in 2017. It’s an unusual move for several reasons. First, in our experience when a vendor causes a data breach,...more

Happy First Day of Spring! Ohio Insurance Law Effective Today

Sheppard Mullin Richter & Hampton LLP on 3/21/2019

Ohio recently followed South Carolina as the second state to adopt cybersecurity legislation modeled after the NAIC’s Insurance Data Security Model Law. The Ohio law, Senate Bill 273, applies to insurers authorized to do...more

New Year, New Data Security Requirement: South Carolina Adopts New Data Security Law

Bradley Arant Boult Cummings LLP on 1/7/2019

On January 1st, South Carolina became the first state to adopt the model insurance data security law requiring certain insurance licensees to investigate and report cybersecurity events in the state of South Carolina. The law...more

Company’s Vendor Suffers Breach, No Business Associate Agreement, $500K OCR Settlement

Sheppard Mullin Richter & Hampton LLP on 12/21/2018

A Florida staffing agency which provides physicians to hospitals and nursing homes, has agreed to a $500,000 settlement with the U.S. Department of Health and Human Services, Office for Civil Rights. The settlement comes...more

Data Breach in Brief: Knowing the Risks and Protecting Your Company

Ogletree, Deakins, Nash, Smoak & Stewart,... on 12/17/2018

Data breaches continue to be an unfortunate risk that companies face with increasing frequency. In this podcast, Rebecca Bennett, Stephen Riga, and Justin Tarka discuss data breaches from both a U.S. and EU perspective,...more

Uber and FTC Arrive at Settlement: Extensive Monitoring, but no FTC Fines Ahead

Mintz - Privacy & Cybersecurity Viewpoints on 11/16/2018

Recently, the Federal Trade Commission (“FTC”) announced that it has finalized its expanded settlement with ride-haling giant, Uber Technologies, Inc. (“Uber”) related to two major data breach incidents. The initial breach...more

Privacy Perils: Ignorance is Not Bliss

Bass, Berry & Sims PLC on 10/29/2018

After several years of cyberattacks, you may be lulled into thinking large, sophisticated companies have now employed adequate safeguards to prevent disclosure of your confidential information. Don’t be so sure. Earlier this...more

New York Department of Financial Services Cybersecurity Regulation 18-month Compliance Deadline Arrives

Robinson+Cole Data Privacy + Security Insider on 9/10/2018

On September 4, 2018, the third stage of compliance deadlines under the New York Department of Financial Services’ (DFS) expansive cybersecurity regulation went into effect....more

California’s New Landmark Data Privacy Regulation and What Companies Need to Do to Comply

Fenwick & West LLP on 7/17/2018

What You Need to Know Now - • The new law takes effect January 1, 2020, but there’s a lot to do so you need to start work now. • The new law expands the definition of personal information and gives California consumers...more

California Passes Landmark Consumer Privacy CCPA—What it Means for Businesses

Akin Gump Strauss Hauer & Feld LLP on 7/9/2018

• California recently passed the landmark California Consumer Privacy Act that goes into effect in 2020, which grants California residents new privacy rights. • The CCPA creates a private right of action for California...more

Data Breaches Prove Costly for Major Businesses

Searcy Denney Scarola Barnhart & Shipley on 6/27/2018

In an age where data is widely available and almost everything is stored online, data breaches are becoming more common, and the outcomes of cases involving data breaches are unpredictable. Data involved in a breach can range...more

Colorado Enacts New Privacy and Cybersecurity Legislation

Stinson LLP on 6/6/2018

On May 29, 2018, Colorado passed House Bill 18-1128, which requires "covered entities" to comply with new rules regarding the security and disposal of "personal identifying information" (PII). The new law also provides an...more

49 Results

/

View per page

Page: of 2

Next »