DE Under 3: OFCCP’s New Revisions & Additions to its Construction Contractor Compliance Audit Tools
Hinshaw Insurance Law TV – Cybersecurity Part One: Data Breach Notification
#WorkforceWednesday: SCOTUS Rules on PAGA, Fifth Circuit Rules on COVID-19 Under WARN, Illinois Expands Bereavement Leave - Employment Law This Week®
New NYS Law about Electronic Monitoring Takes Effect May 7
COBRA Deadlines and Proofs of Mailing in Carter v. Southwest Airlines Co. Board of Trustees
#WorkforceWednesday: NY Travel Advisory Changes, CA’s COVID-19 Exposure Notice, Executive Order Reversals - Employment Law This Week®
PODCAST: Williams Mullen's Benefits Companion - COVID-19 Edition - Deadline Extensions Impacting HIPAA, COBRA and ERISA
CF on Cyber: Leveraging the Incident Response Guide to Prepare for the CCPA
HR Law 101 Ep. 8: Handbooks and What to Include Part 3
Jones Day Talks: Doing Deals Down Under: Australia's Foreign Direct Investment Regime
Since the full implementation of Thailand’s Personal Data Protection Act (PDPA) in June 2022, the Personal Data Protection Committee (PDPC) has been instrumental in shaping the nation’s data protection framework. ...more
After a data breach, organizations need to understand the scope of the incident in order to quickly resolve it and ensure they are able to meet notification requirements. The urgency often leads to the misguided belief that...more
Virtually all organizations have an obligation to safeguard their personal data against unauthorized access or use, and, in some instances, to notify affected individuals in the event such access or use occurs. Those...more
The financial services industry has seen a litany of new data privacy and cybersecurity challenges through the first half of 2024. Financial institutions are facing unprecedented compliance hurdles resulting from the...more
As states take pioneering steps towards AI legislation, businesses face new compliance landscapes affecting their operation and strategic planning. California and Colorado are leading with distinct yet influential legislative...more
Keypoint: If signed into law, Colorado will become the first state to enact legislation regulating the use of high-risk artificial intelligence systems. On May 8, the Colorado legislature passed the Colorado Artificial...more
Publications and Advisories - November 13, 2023 – Kathleen Benway, Kate Hanniford, Amy Mushahwar, Kim Peretti, and Lance Taubin published “Privacy, Cyber & Data Strategy Advisory: FTC Approved New Data Breach Notification...more
A flurry of legislative activity over the past year has brought meaningful changes to a variety of privacy and security provisions in state and federal law. At the state level, as in 2022, we have seen a handful of changes to...more
A cyber incident response plan is a set of guidelines and protocols designed to help an organization detect, respond, contain, and manage any form of a cybersecurity breach. It outlines how best to safeguard the organization...more
The United Kingdom, Canada, and Germany have unveiled updates to their foreign investment screening regimes to improve each country’s ability to address foreign investments involving critical technology. These updates will...more
As ransomware attacks continue to dominate the news cycle, legislation has recently been introduced in several states that would place limits on certain entities’ ability to pay a ransom payment in the event of a ransomware...more
On April 19, 2020, the Centers for Medicare and Medicaid Services (CMS) announced that in addition to requiring that nursing homes report communicable diseases, healthcare-associated infections, and potential outbreaks to...more
Among the many issues employers are facing in the wake of the spread of the novel coronavirus (COVID-19) is the possibility of furloughs, temporary office and location closings, and short-term layoffs. A furlough involves...more
White & Case Technology Newsflash - Fulfilling a company's data breach and cybersecurity incident notification and disclosure requirements is an increasing challenge. Companies operating across industry sectors and around...more
This summer, Pearson notified a handful of Illinois school districts that its AIMSweb 1.0 Platform had experienced a data breach that impacted over 13,000 account holders nationally. ...more
In May 2018, the General Data Protection Regulation (GDPR) entered into effect in EU member states, replacing a longstanding and less rigorous data and e-privacy directive. ...more
With the General Data Protection Regulation (GDPR) now in force, the focus on privacy and data protection throughout the European Union (EU) is stronger than ever before. With this new law comes new obligations for companies...more
Although the GDPR comes into effect on May 25, 2018, the breadth of its reach will continue to develop long after its effective date. Domestic companies should be aware that the rules will likely change over time. While this...more
On Feb. 22, 2018, the Securities and Exchange Commission (SEC) issued its first interpretive guidance since October 2011 on public companies’ cybersecurity risk and incident disclosure obligations. ...more
Passage of the Frank R. Lautenberg Chemical Safety for the 21st Century Act, or "New Toxic Substances Control Act," introduces a number of changes to regulations for the collection and assessment of information concerning...more
Tennessee recently amended its data breach notification law, and in doing so, it has joined the ranks of states like Florida, Ohio, and Wisconsin that require notification to residents of a data breach within a defined time...more
Part I: Assessing the Risk to a Retailer from a Credit Card Data Breach - Debit and credit cards are now the primary form of retail payment. One source estimates that 60% of all retail transactions involve a payment card...more