The Presumption of Innocence Podcast: Episode 45 - The Grit, Grace and Gift of Second Chances
The Justice Insiders Podcast - The Ever-Expanding Net: Corporate Compliance in an Era of Increasing Trade Sanctions and Restrictions
False Claims Act Insights - Are All Healthcare “Kickbacks” Subject to FCA Liability?
Episode 333 -- The Boeing Proposed Plea Agreement
DOJ’s New Self-Disclosure Policy and Corporate Whistleblower Awards Pilot Program
False Claims Act Insights - Assessing the Fallout from a Thermonuclear FCA Verdict
FCPA Survival Guide - Step 8 - Investing in Compliance
Exploring the AI and Crypto Intersection
The Justice Insiders Podcast: Jarkesy’s Implications for the Administrative State
The Presumption of Innocence Podcast: Episode 41 - The Dynamics of Decision-Making: Psychology and the Criminal Justice System
INTERPOL and Child Kidnapping Cases. What are INTERPOL’s Abilities and Limitations?
False Claims Act Insights - Eureka! Government Investigators Seek Out Research Misconduct
The Justice Insiders Podcast - AI-Washing: Everything Old Is New Again
The CFPB and State AGs Act Jointly Against Online Educational Company
Will the U.S. Have a GDPR? With Rachael Ormiston of Osano
Episode 328 -- Sanctions Enforcement Risks and Redlines
FCPA Survival Guide: Step 3 - Extensive Remediation
Episode 324 -- Third-Party Risks and Sanctions Compliance
Compliance Tip of the Day – Compliance Lessons from the Albemarle FCPA Enforcement Action
The Presumption of Innocence Podcast: Episode 38 - A Blueprint for Compliance: The Fraud Pentagon Theory
The SEC recently issued an order and settlement against a company from a pair of cyberattacks in which millions of dollars of client funds were stolen. While the company was able to recover a portion of the funds and...more
Patreon, a popular platform connecting creators with their fans, has recently agreed to a $7.2 million settlement to end a legal battle concerning the Video Privacy Protection Act (VPPA)....more
The State of Texas and Meta Platforms Inc. (“Meta”) have agreed to a $1.4 billion settlement, to be paid out over five years, to resolve claims relating to Meta’s alleged use of facial recognition technology without user...more
The SEC continues to expand its cybersecurity enforcement authority to include allegations that a company's failure to monitor its managed security service providers (MSSP) amounts to violations of federal securities laws....more
In an ongoing effort to enforce the California Consumer Privacy Act (CCPA) and the Children’s Online Privacy Protection Act (COPPA), the California Attorney General's Office (CAG) announced a recent settlement against Tilting...more
The Securities and Exchange Commission (“SEC”) has announced the adoption of amendments to Regulation S-P (“Amendments”) to modernize and enhance the rules that govern the treatment of consumers’ nonpublic personal...more
Businesses take heed: California state officials just warned that the law prohibits you from collecting unnecessary data and retaining data for longer than necessary. The California Privacy Protection Agency published its...more
On April 2, the California Privacy Protection Agency (CPPA or “the Agency”) issued the Agency’s first-ever enforcement advisory. The advisory (“Applying Data Minimization to Consumer Requests”) reaffirms data minimization as...more
The Brazilian Data Protection Authority (Autoridade Nacional de Proteção de Dados, “ANPD”), applied its first two sanctions of 2024 against two Brazilian governmental institutions. It is worth noting that, as both are public...more
State regulators across the country continue to increase their focus on cyber security and data privacy compliance and enforcement. For years, cloud company Blackbaud, a service provider to thousands of nonprofit enterprises,...more
In Short - The Situation: Following a cyberattack on a law firm's systems, the Securities and Exchange Commission ("SEC") subpoenaed the firm for information, including the identity of clients whose information may have...more
California employers, beware: the state’s top prosecutor just announced his office is conducting an investigative sweep of whether and how large California employers have complied with data privacy and consumer protection...more
The FTC recently proposed amendments to the Health Breach Notification Rule (HBNR). This is on trend with its aggressive interest over the last couple of years in health data not covered by HIPAA....more
In February 2023, the Brazilian National Data Protection Authority (ANPD) published the rules for the application of sanctions and the methodology for calculating fines for violation of their General Data Protection Law...more
Businesses can breathe a little easier now that one of the world’s top five ransomware networks, the Hive, has been infiltrated and disbanded by the FBI....more
On December 19, 2022, the Federal Trade Commission (“FTC”) and the U.S. Department of Justice jointly announced that Epic Games Inc. (“Epic Games”) will pay two record fines, in twin settlements, totaling half a billion...more
On January 27, the FTC finalized an order with an education technology (ed tech) provider which claimed that the provider’s lax data security practices led to the exposure of millions of users and employees’ sensitive...more
On January 9, the U.S. District Court for the District of New Mexico granted preliminary approval of a class action settlement in a data breach suit that allegedly compromised approximately 191,000 individuals’ personally...more
The Federal Trade Commission will have its eye on privacy and data security enforcement in 2023. In August, the agency announced that it is exploring ways to crack down on lax data security practices. In the announcement,...more
Amended data privacy legislation enabled Hong Kong courts to convict doxxing offences, though their ability to enforce cessation notices remains unclear. In October 2021, Hong Kong amended its data privacy law, the...more
On October 31, 2022, the Federal Trade Commission (FTC) announced it has taken action against education technology provider Chegg Inc. (“Chegg”) for its “careless” cybersecurity practices that exposed sensitive personal...more
Texas Attorney General Ken Paxton filed a lawsuit against Google for alleged “blatant defiance” of Texas’s biometric privacy law, which prohibits capturing biometric identifiers without prior consumer consent. The complaint...more
This year has seen some substantial new data breach settlements including a $500,000 Federal Trade Commission (FTC) fine against CafePress, a $1.25 million multi-state class action settlement and $5 million New York...more
In order to provide an overview for busy in-house counsel and compliance professionals, we summarize below some of the most important SEC enforcement developments from the past month, which was an active one as the SEC...more
In a recent Securities and Exchange Commission (“SEC”) enforcement action, the SEC concluded that a registered broker-dealer and investment adviser (the “Firm”) violated Rule 30 of Regulation S-P by failing to adopt...more