News & Analysis as of

Third-Party Information Technology

A&O Shearman

European Commission rejects draft technical standards on sub-contracting ICT services under Digital Operational Resilience Act

A&O Shearman on

The European Commission has published a letter (dated 21 January 2025) addressed to the Joint Committee of the European Supervisory Authorities (ESAs) rejecting certain draft regulatory technical standards (RTS) the ESAs...more

Perkins Coie

Security Breach Notification Chart - November 2024

Perkins Coie on

Perkins Coie’s Privacy & Security practice maintains this comprehensive chart of state laws regarding security breach notification. The chart is for informational purposes only and is intended as an aid in understanding each...more

Barnea Jaffa Lande & Co.

Understanding DORA: An Overview of the Digital Operational Resilience Act

The Digital Operational Resilience Act (DORA) is an EU regulatory framework, aimed at enhancing the financial sector’s ability to withstand and recover from ICT (information and communication technology) disruptions....more

Society of Corporate Compliance and Ethics...

Third-party due diligence: Are supplier questionnaire(s) the answer?

Numerous laws (U.K. Bribery Act guidance document, German Supply Chain Act, Foreign Corrupt Practices Act resource guide, OECD Due Diligence Guidance for Responsible Supply Chains of Minerals from Conflict-Affected and...more

Cozen O'Connor

A Third Party in New Jersey May be Unable to Avoid Fee Awards Under an Exception to the American Rule

Cozen O'Connor on

As a cautionary tale, in Accounteks.Net, Inc. v. CKR Law, LLP, and Christian Montes, the New Jersey Appellate Court ruled on May 9, 2023, that, under an exception to the American Rule, a third party can be liable for...more

American Conference Institute (ACI)

The Role of Artificial Intelligence in Ephemeral Messaging

As U.S. regulators and enforcement authorities alike become increasingly focused on corporate oversight practices of their employees' use of third-party messaging applications, including ephemeral messaging, companies should...more

King & Spalding

Global Trends in IT Outsourcing

King & Spalding on

The IT sector has been demonstrating its value in the wake of the COVID-19 pandemic. As more businesses adopt hybrid or even permanent remote work, worldwide IT spending is forecast to reach $4.5 trillion in 2022 and expand...more

Sheppard Mullin Richter & Hampton LLP

Federal Government Outlines New Security and Attestation Requirements for Software

Per Executive Order 14028, Improving the Nation’s Cybersecurity, the Office of Management and Budget (OMB) issued a memorandum on September 14, 2022 requiring federal agencies to only use software from software producers that...more

Perkins Coie

Fintech Legal Report - July 2021

Perkins Coie on

President Biden Issues an Executive Order on Competition with Implications for Financial Institutions - On July 9, 2021, President Biden issued an Executive Order on Promoting Competition in the American Economy. The...more

Jackson Lewis P.C.

Data Protection And The Role Of Vendor Management

Jackson Lewis P.C. on

The SolarWinds hack highlights the critical need for organizations of all sizes to include cyber supply chain risk management as part of their information security program. It is also a reminder that privacy and security...more

Jackson Lewis P.C.

California State Healthcare Worker Accesses COVID-19 Data On More Than 2,000 Patients And Employees

Jackson Lewis P.C. on

As we noted in late January 2020, the spread of infectious disease raises particular concerns for healthcare workers who want to do their jobs and care for their patients, while also protect themselves and their families....more

American Conference Institute (ACI)

[Virtual Event] U.S. Export & Reexport Compliance For Canadian Operations - January 26th - 27th, 9:00 am - 5:00 pm EST

For a whole decade, ACI’s U.S. Export & Reexport Compliance for Canadian Operations conference continues to stand apart as the only practical, comprehensive event of its kind for the export compliance community in Canada. ...more

Spirit Legal

CJEU: Website operators are "jointly responsible" for embedding social media or 3rd party code

Spirit Legal on

Website and app operators are jointly liable with Facebook for violations of European data protection law - In its judgment of 29 July 2019 (ref.C-40/17), the European Court of Justice has ruled on two essential points...more

Thomas Fox - Compliance Evangelist

Four Things Compliance Practitioner Should Know About the Eurasian Economic Union

Four Things Compliance Practitioner Should Know About the Eurasian Economic Union - An effective Compliance risk management at emerging markets for any business significantly depends on timeous observation of changes in...more

14 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide