A Less is More Strategy for Data Risk Mitigation
Data Retention and Document Holds
Healthcare Document Retention
The NYDFS Updates Its Stringent Cybersecurity Regulations. Is This a Bellwether of Coming Industry Change? - The Consumer Finance Podcast
Spring Cleaning for Legal Teams: The Cloud and Defensible Deletion of Data
M365 in 5 – Part 7: Teams Audio/Video (A/V) Conferencing
M365 in 5 – Part 6: Teams Channels – The virtual collaboration workspace
M365 in 5 – Part 5: Teams Chats – Modern communications
M365 in 5 – Part 4: Teams – An introduction to collaboration
M365 in 5 – Part 3: OneDrive for Business – Protected personal collaboration
M365 in 5 – Part 2: SharePoint Online – The new file-share environment
M365 in 5 – Part 1: Exchange Online – Not just a mailbox
Sitting with the C-Suite: Information Governance and eDiscovery - Key Compliance Issues for In-House Counsel
Sitting with the C-Suite: Trial Teams – Narrowing Data through Centric Search
Sitting with the C-Suite: Normalizing Business Practices through Litigation Data
Compliance Perspectives: Regulatory Conflicts in Data Privacy Laws
Jones Day Presents: Effect of GDPR, CCPA, and FTC on Blockchains
[WEBINAR] Public Records Act - Taming the Email Tiger
E14: The Three Pillars of GDPR
Three Key Data Retention Questions
Imagine receiving an email from an unknown actor claiming to have taken approximately 2 terabytes of data from your organization’s network. The threat actor provides a file tree and sample files to substantiate its claim....more
On April 22, 2025, the Federal Trade Commission’s (FTC) changes to the Children’s Online Privacy Protection Rule (COPPA Rule) were published in the Federal Register. The updates will go into effect on June 23, 2025, and...more
When we are retained by clients to guide them through a cyber-attack in which information has been stolen by a threat actor, we almost always find that the client has unnecessarily stored sensitive information far beyond the...more
On April 22, 2025, the Federal Trade Commission (FTC) published final updates to the Children’s Online Privacy Protection Act Rule (COPPA Rule). The final COPPA Rule goes into effect on June 23, 2025, 60 days after its...more
On June 23, 2025, businesses will face a new world of children’s privacy regulation, with amendments to the Children’s Online Privacy Protection Act (COPPA) imposing a host of requirements on operators. The sweeping new...more
On April 9, 2025, the coalition agreement of the future German Federal Government, consisting of the three German parties CDU, CSU and SPD, was published. The document entitled “Responsibility for Germany” contains several...more
The Belgian legislature recently adopted a new act on private investigations ("Act")....more
On March 10, 2025, the Belgian Data Protection Authority (BDPA) updated its 2020 guidance on the processing of personal data for direct marketing purposes (see the updated guidance here in French and in Dutch)....more
With new collaboration features, AI tools, and work technology developing at a dizzying pace, we know that the volume of data organizations must manage will only increase faster. What are the risks and costs involved with...more
Hawaii’s State Data Office recently issued a series of guidance documents for its state agencies on how to handle artificial intelligence. This includes guidance on data protection, data retention and use of Generative AI....more
On January 16, 2025, the Federal Trade Commission (FTC) finalized amendments to the Children’s Online Privacy Protection Act (COPPA) Rule (Final Rule) relating to the collection, use and disclosure of personal information...more
How the Right Features in Legal Hold Technology Can Streamline Compliance and Mitigate Risk - With compliance penalties for mishandled data skyrocketing — think $10 million or more for GDPR violations — choosing a robust...more
When the substantive provisions of Bermuda’s Personal Information Protection Act 2016 (PIPA) become operational on 1 January 2025, it is vital that all in scope organisations ensure their compliance with PIPA....more
With the 1 January 2025 implementation date of the Personal Information Protection Act 2016 (“PIPA”) fast approaching, Bermuda based organisations from small-businesses to multinationals, should be busy preparing for...more
Tired of the constant I-9 updates? Wondering about Virtual I-9 verification? HR professionals have been on a wild ride lately. From new forms to stricter deadlines, the USCIS seems to have a never-ending supply of changes....more
As calls for executive accountability for cybersecurity intensify, it is essential for companies to scrutinize the adequacy of ephemeral messengers, such as Signal, WhatsApp, WeChat, and Snapchat, in light of both present and...more
The Personal Information Protection Act ("PIPA") comes into full force on 1 January 2025. All organisations in Bermuda are expected to be in compliance with it by that date – time is running out! The Privacy Commissioner...more
Navigating Government Investigations in FDA-Regulated Industries - Government investigations are an increasingly common reality for companies operating in highly regulated industries like pharmaceuticals, medical devices,...more
In 1999, computer scientist Kevin Ashton coined the term “the Internet of Things” (“IoT”) in order to put a name to his idea of using RFID chips to track items as they moved throughout a supply chain. “Though there is no...more
In this four-part series, Conyers dives into different topics relating to Bermuda’s privacy legislation, including why we need privacy legislation and its purpose, how to prepare for PIPA, the role and requirements of privacy...more
What U.K. Firms Need to Know - INTRODUCTION - Over the past decade, the use of messaging applications, such as WhatsApp, for business purposes as an alternative to traditional email has grown exponentially. Ease of use...more
Google will spend the next three years with an independent compliance monitor scrutinizing its process for responding to warrants and other government data requests. This and other requirements are part of a settlement...more
Providers oftentimes ask how long they need to retain certain types of medical information. While there are some general rules regarding the timeframes for retaining medical information, the specific answer varies depending...more
Data retention policies are central guidelines that govern how an organization handles its data. These policies help determine the purpose of data held, what laws and regulations apply to it, how long it should be kept, and...more
This is the third in a series of articles about the implications of the California Privacy Rights Act for employers. - On January 1, 2023, the California Privacy Rights Act (CPRA) will go into effect and California...more