On July 26, 2023, the U.S. Securities and Exchange Commission (“SEC”) adopted final rules relating to enhanced cybersecurity disclosures, which became effective on September 5, 2023 (the “Final Rules”). Beginning in December...more
11/3/2023
/ Cyber Incident Reporting ,
Cyber Insurance ,
Cybersecurity ,
Disclosure Requirements ,
Due Diligence ,
Incident Response Plans ,
New Rules ,
Regulation S-K ,
Risk Management ,
Securities and Exchange Commission (SEC) ,
Vendor Contacts
On January 17, 2023, Assistant Attorney General (“AAG”) Kevin Polite announced revisions to the Department of Justice’s (“DOJ”) Corporate Enforcement Policy (“CEP”), which will apply to all corporate criminal matters. The...more
On January 9, 2023, the Federal Trade Commission (“FTC”) finalized an order with Drizly, LLC, an online marketplace for alcohol delivery services, and its Chief Executive Officer (“CEO”), James Cory Rellas over alleged...more
1/25/2023
/ CEOs ,
Consent Order ,
COPPA ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Retention ,
Data Security ,
Employee Training ,
Federal Trade Commission (FTC) ,
Individual Accountability ,
Liability ,
Penalties ,
Personal Information
During the last 20 years, the state of the law regarding personal data transfers between the U.S. and Europe has undergone many changes and evolutions. Initially, the European Commission and the U.S. Government worked...more
The California Privacy Protection Agency (CPPA) held a board meeting on October 28 - 29, 2022 (the “Meeting”) to review proposed modifications to the California Privacy Rights Act (CPRA). The CPRA is effectively an amendment...more