Covered institutions will need to review their cybersecurity and incident response policies and procedures ahead of the applicable compliance deadline. ...more
8/12/2024
/ Broker-Dealer ,
Brokers ,
Compliance ,
Covered Entities ,
Cyber Incident Reporting ,
Cybersecurity ,
Disclosure Requirements ,
Incident Response Plans ,
Investment Companies ,
New Rules ,
Policies and Procedures ,
Registered Investment Advisors ,
Regulation S-P ,
Securities and Exchange Commission (SEC) ,
Transfer Agents
Covered institutions will need to review their cybersecurity and incident response policies and procedures ahead of the applicable compliance deadline.
The Securities and Exchange Commission (SEC) recently adopted...more
8/9/2024
/ Broker-Dealer ,
Compliance ,
Compliance Dates ,
Cyber Incident Reporting ,
Cybersecurity ,
Incident Response Plans ,
Investment Adviser ,
Investment Companies ,
Policies and Procedures ,
Popular ,
Registered Investment Advisors ,
Risk Mitigation ,
S&P ,
Securities and Exchange Commission (SEC) ,
Transfer Agents
Businesses need to be proactive in updating their compliance measures to meet the ever-evolving set of privacy laws and regulatory expectations in 2024 and beyond.
Following the notable uptick in state-level privacy laws...more
5/21/2024
/ Compliance ,
Consumer Privacy Rights ,
Data Brokers ,
New Legislation ,
Personal Data ,
PHI ,
Privacy Laws ,
Proposed Legislation ,
Regulatory Requirements ,
Sensitive Personal Information ,
State Privacy Laws
Oregon and Delaware have become the seventh and eighth US states this year to enact general data privacy legislation — growing the US state privacy framework to 13 states. This blog post analyzes the key requirements of both...more
The new framework provides an additional route for personal data transfers from the EEA to the US.
On 10 July 2023, the European Commission (EC) took the final step to enable businesses to start relying on the new EU-US...more
8/1/2023
/ Adequacy Requirement ,
Certification Requirements ,
Compliance ,
Data Privacy ,
Department of Transportation (DOT) ,
Enforcement Authority ,
EU ,
EU-US Privacy Shield ,
European Commission ,
European Economic Area (EEA) ,
Federal Trade Commission (FTC) ,
Framework Agreement ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Personal Data ,
Privacy Framework ,
Schrems I & Schrems II ,
Standard Contractual Clauses ,
Surveillance ,
Switzerland ,
US-EU Safe Harbor Framework
Covered companies will need to take additional steps to comply with the law in light of the new obligations relating to consumer health data and minors under 18 years old.
On June 6, 2023, the Connecticut legislature...more
7/13/2023
/ Amended Legislation ,
Data Controller ,
Dating Services ,
Effective Date ,
Electronic Protected Health Information (ePHI) ,
Internet Retailers ,
Minors ,
Online Platforms ,
Personal Data ,
PHI ,
Social Media ,
State Privacy Laws ,
Websites
Businesses will need to take additional steps to ensure compliance as exemptions under the California Consumer Privacy Act expire at the end of 2022.
The California legislature adjourned its 2022 session without...more