DE Under 3: Court Held That Workday Was an “Agent” to Employers Licensing its AI Applicant Screening Tools
Business Associates Here, There, and Everywhere: When Does Your Service Provider Really Need to Sign a HIPAA Business Associate Agreement?
In House Counsel: How To Measure the Effectiveness of Your Staffing Strategy
Sitting with the C-Suite: Identifying Opportunities to Leverage Human Capital
The CCPA for the Land Title Industry: Service Providers and Sale of Data Under the CCPA
Podcast - Risk Management: Troubleshooting & Problem Solving
Cybersecurity in the investment management industry
FCPA Compliance and Ethics Report-Episode 157-Training of Third Parties Under the FCPA
Special Report: The Hot-ish Swag at LegalTech New York 2015
If you’ve made the decision to implement an internal reporting system (or whistleblowing hotline), you might be wondering what to do next. ...more
BACKGROUND - On October 16, 2024, the New York State Department of Financial Services (DFS) issued an industry letter, Cybersecurity Risks Arising from Artificial Intelligence and Strategies to Combat Related Risks,...more
Organisations that make international transfers of personal data have undergone significant challenges and changes over the last few years. With the invalidation of the Privacy Shield agreement in 2020 and the introduction of...more
Long IT sub-contracting chains can make it hard for financial institutions to understand the vulnerabilities in their IT estate and the location of key functions (where these may be located in entities who do not have a...more
With under six months to go until the European Union Digital Operational Resilience Act (DORA) becomes applicable on 17 January 2025, DORA implementation projects are running full steam ahead. DORA lays down uniform...more
In December 2023, European Union (EU) lawmakers reached an agreement on the EU AI Act. Our article titled “An Introduction to the EU AI Act” focused on applicability, thresholds, timing, and penalties related to the EU AI...more
La Autoridad Nacional de Licencias Ambientales (ANLA) de Colombia expidió la Circular 000006-7 de 2024 para impartir lineamientos o instrucciones de carácter interno respecto al reconocimiento de terceros intervinientes...more
The sheer proliferation of supply chain transparency and accountability regulations at international scale itself warrants a closer look at the level of scrutiny required of organizations with complex, multi-faceted, global,...more
On July 26, 2023, the US Securities and Exchange Commission (SEC) released final rules requiring disclosure by public companies of material cybersecurity incidents and policies and procedures related to cybersecurity risk...more
On July 17, 2023, the Innovation, Cybersecurity and Technology (H) Committee of the National Association of Insurance Commissioners (NAIC) released for comment a highly anticipated model bulletin (Model Bulletin) on...more
On February 15, 2023 (updated February 16, 2023), the United States Department of Education (“ED,” or the “Department”) released a Dear Colleague Letter[1](the “DCL”) regarding the “Requirements and Responsibilities for...more
The Securities and Exchange Commission (the “SEC”) has proposed new rule 206(4)-11 (the “Proposed Rule”) under the Investment Advisers Act of 1940 (the “Advisers Act”). If adopted, the Proposed Rule would require registered...more
On July 13, the Federal Reserve, FDIC, and OCC proposed risk management guidance to help banking organizations manage risks related to third-party relationships, including relationships with vendors, FinTech companies,...more
The U.S. Department of Agriculture’s (USDA’s) Food Safety and Inspection Service (FSIS) has issued a revised compliance guideline for substantiating animal raising claims on labels for meat and poultry products. This updated...more
The CFPB has issued a new report on tradelines reported by third-party debt collectors as reflected on credit reports compiled by nationwide consumer reporting agencies. The third-party collector tradelines consist of those...more
...On April 4, 2019, California Assembly Member Wicks proposed sweeping changes to bill AB 1760, effectively repealing the California Consumer Privacy Act of 2018 (CCPA) and replacing it with the Privacy for All Act of 2019...more
Ohio is the second state in the country to adopt cybersecurity legislation modeled after the National Association of Insurance Commissioner’s (NAIC) Insurance Data Security Model Law. ...more
The Student Borrower Protection Center (SBPC)—an organization established by former CFPB Student Loan Ombudsman Seth Frotman—recently published an article examining the Department of Education’s oversight of “lead...more
It has been reported that, without announcement or warning, the regulations applicable to third-party debt collectors in Massachusetts may have changed. ...more
This week, these three bills were passed by the House Financial Services Committee. The first two bills were passed by unanimous votes and the third bill was passed by a vote of 34-22....more
On December 14, the Financial Stability Oversight Council (FSOC), which was established by the Dodd-Frank Act to analyze and mitigate potential threats to the financial sector, released its first report under the Trump...more
In a regulatory field already crowded with federal and state regulators mandating the processes financial services companies employ in managing their vendors, the rather short insertion in the Spring 2017 issue of the...more
We are thrilled to bring you the third installment of Stinson Leonard Street's Emerging Trends newsletter. We are proud of the depth and breadth of experience and knowledge across our firm's 13 offices nationwide and are...more
The National Association of Insurance Commissioners’ (NAIC) Cybersecurity Task Force released a revised draft of the Insurance Data Security Model Law (Model Law) last week. The Model Law’s goal is to “establish exclusive...more