News & Analysis as of

Proposed Rules Data Breach

Frost Brown Todd

Proposed HIPAA Security Rule Requires AI Governance

Frost Brown Todd on

In terms of healthcare data breaches, 2024 was the worst year ever, with the records of at least 53% of the U.S. population involved and two of the biggest healthcare data breaches of 2024 ranking in the top 10 of all time. ...more

Jackson Lewis P.C.

Industry Groups Urge Rescission of Proposed HIPAA Security Rule Updates

Jackson Lewis P.C. on

In February, a coalition of healthcare organizations sent a letter to President Donald J. Trump and the U.S. Department of Health and Human Services (HHS) (the Letter), urging the immediate rescission of a proposed update to...more

McDermott+

To Comment or Not to Comment: Looking at the Biden Administration’s HIPAA Cybersecurity Proposed Reg

McDermott+ on

One of the Biden Administration’s last healthcare regs was a proposed rule that, if finalized, would make significant changes to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule to...more

Fisher Phillips

9 Sweeping Changes Proposed in India’s Latest Data Protection Draft Rules: What U.S. Employers Can Do to Prepare

Fisher Phillips on

India just released a landmark draft of new rules to refine and implement the Digital Personal Data Protection Act (DPDP Act) – which is India’s first comprehensive data privacy legislation regulating digital personal data...more

Orrick, Herrington & Sutcliffe LLP

Proposed HIPAA Security Rule Update: What It Means for Cybersecurity in Health Care

Recently, the Department of Health and Human Services’ Office for Civil Rights (OCR) issued a notice of proposed rulemaking (NPRM) to update the Health Insurance Portability and Accountability Act (HIPAA) Security Rule—the...more

Dorsey & Whitney LLP

India Draft Digital Personal Data Protection Rules, 2025

Dorsey & Whitney LLP on

On January 03, 2025, the government released the much awaited draft Digital Personal Data Protection Rules, 2025, (Draft Rules / Rules) for public consultation and invited stakeholder feedback by February 18, 2025 (access the...more

Walkers

Channel Islands Regulatory Update - January 2025

Walkers on

On 5 December 2024 the UK's Sanctions (EU Exit) (Miscellaneous Amendments) (No.2) Regulations 2024 came into force. The UK Regulations are made under the UK Sanctions and Anti-Money Laundering Act 2018 ("SAMLA") and make...more

Fisher Phillips

PEOs Need to Prepare for Increased Cybersecurity Requirements Thanks to Proposed HIPAA Security Rule Revisions

Fisher Phillips on

With the HIPAA Security Rule set to undergo a massive overhaul to boost cybersecurity protections, PEOs need to take note. After all, as stewards of worksite employee and client company data – and as sponsors of group health...more

Goodwin

HHS Proposes Major Revisions to HIPAA Security Rule

Goodwin on

On December 27, 2024, the Department of Health and Human Services (HHS) issued a notice of proposed rulemaking (NPRM) related to the Security Rule under the Health Insurance Portability and Accountability Act (HIPAA). ...more

Fisher Phillips

Proposed Updates to HIPAA Security Rule Would Require Entities to Adopt Enhanced Cybersecurity Measures

Fisher Phillips on

The HIPAA Security Rule may soon undergo a big overhaul that would better defend healthcare data from cybersecurity threats – and require much more from covered entities when it comes to establishing and maintaining defenses....more

Mintz - Health Care Viewpoints

OCR Proposes Sweeping HIPAA Security Rule Amendments

Last fall at the Safeguarding Health Information: Building Assurance Through HIPAA Security 2024 conference, U.S. Department of Health & Human Services Office for Civil Rights (OCR) promised that before year’s end, it would...more

WilmerHale

8 Questions To Ask Before Final CISA Breach Reporting Rule

WilmerHale on

On April 4, the Cybersecurity and Infrastructure Security Agency published a notice of proposed rulemaking setting out mandatory reporting requirements for covered entities that experience cybersecurity incidents or make...more

Hinckley Allen

Navigating Profound Change: CISA Announces Proposed Rule for Mandated Cyber Incident Reporting

Hinckley Allen on

In 2025, new federal reporting requirements will require hundreds of thousands of organizations to report cyber incidents within hours of discovery to the United States Government, marking a significant impact on how...more

Mayer Brown

Proposed Rule Issued to Implement Cyber Incident Reporting for Critical Infrastructure Act

Mayer Brown on

On March 27, 2024, the Cybersecurity & Infrastructure Security Agency (CISA) within the US Department of Homeland Security released a much-anticipated notice of proposed rulemaking (NPRM) to implement the Cyber Incident...more

Epiq

Federal Contractors Face Stricter Regulation Over Cyber Incident Response Reporting

Epiq on

Last October, the Federal Acquisition Regulation (FAR) Council proposed two new rules, one of which that will influence cyber incident response practices. The scope is limited as it only applies to federal government...more

Pillsbury Winthrop Shaw Pittman LLP

AI and the “G” in ESG

As artificial intelligence (AI) expands into virtually every industry, companies should consider AI’s potential impacts on corporate governance and internal controls. Companies should integrate AI thoughtfully to ensure...more

Seward & Kissel LLP

FTC Imposes New Data Breach Notification Requirements

Seward & Kissel LLP on

On October 27, 2023, the Federal Trade Commission (the “FTC”) adopted a final rule (“Final Rule”) to amend the Standards for Safeguarding Customer Information (the “Safeguards Rule”). Among other things, the Final Rule will...more

Blank Rome LLP

The BR Privacy & Security Download: November 2023

Blank Rome LLP on

Welcome to this month's issue of The BR Privacy & Security Download, the digital newsletter of Blank Rome’s Privacy, Security & Data Protection practice....more

Jaburg Wilk

New FTC Rule Expands Reach of Data Breach Notification Requirement to Non-Banking Financial Institutions

Jaburg Wilk on

In an amendment to the Safeguards Rule of the Gramm-Leach-Bliley Act (GLBA), which was officially announced on October 27, 2023, the Federal Trade Commission (FTC) will mandate that a wide array of nonbank financial...more

Akin Gump Strauss Hauer & Feld LLP

Government Contractors Beware: New Cybersecurity Rules and False Claims Act Enforcement Actions on the Rise

Two years after the Department of Justice (DOJ) established its Civil-Cyber Fraud Initiative, there has been a recent uptick in enforcement and regulatory activity related to cybersecurity. September opened with the unsealing...more

McGuireWoods LLP

FTC Proposes Modifying Health Breach Notification Rule for Non-HIPAA Entities

McGuireWoods LLP on

In an effort to formalize its Sept. 15, 2021, Statement of the Commission on Breaches by Health Apps and Other Connected Devices, as previously discussed in a McGuireWoods Oct. 5, 2021, alert, the Federal Trade Commission...more

Wilson Sonsini Goodrich & Rosati

Preparing for the SEC’s Cybersecurity Disclosure Rules

The U.S. Securities and Exchange Commission’s (SEC) 2023 Spring Unified Agenda of Regulatory and Deregulatory Actions was released last month and includes an anticipated action date for finalizing rules for cybersecurity...more

Nelson Mullins Riley & Scarborough LLP

FTC Proposes to Vastly Expand the Health Breach Notification Rule

The Federal Trade Commission (FTC) recently proposed changes to the Health Breach Notification Rule (Rule), enacted in 2009, to clarify that the Rule applies directly to an estimated 170,000 health and wellness mobile...more

Davis Wright Tremaine LLP

SEC Proposes Host of New Rules for Data Security, Cybersecurity, and IT Resilience

The Securities and Exchange Commission (SEC or Commission) voted on March 15, 2023, to propose three new sets of rules for data security, cybersecurity, and IT operational resilience. The newly proposed rules would, among...more

Venable LLP

FCC Proposes Updating Its CPNI Breach Reporting Rules

Venable LLP on

The Federal Communications Commission (FCC) is seeking to update and strengthen its rules governing breaches of consumer data and personal information. Public comments on the new rules are due February 22, 2023, and reply...more

49 Results
 / 
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide