Kelly Hagedorn

Kelly Hagedorn

Alston & Bird

Contact
View Bio
RSS

Latest Posts › Regulatory Requirements

Share:

UK Data Protection Regulator Fines 23andMe ~$3.1 Million Following Credential Stuffing Attack

On June 5, 2025, the UK’s Information Commissioner’s Office (ICO) fined 23andMe £2.31 million (~$3.1 million). The fine was for failing to implement adequate security measures to protect the personal data of over 155,000 UK...more

7/3/2025  /  23andMe , Cybersecurity , Data Breach , Data Privacy , Data Protection , Enforcement Actions , Fines , General Data Protection Regulation (GDPR) , Regulatory Requirements , UK

European Vulnerability Database Published by the European Union Agency for Cybersecurity

The European Union Agency for Cybersecurity (ENISA) has launched the European Vulnerability Database (EUVD), a tool designed to enhance digital security across the EU. The EUVD is available here....more

6/2/2025  /  Cyber Threats , Cybersecurity , Data Security , EU , Information Technology , Regulatory Requirements , Risk Management , Software , Technology Sector , Vulnerability Assessments

UK Publishes Software Security Code

Cyber security supply chain risks are growing, and attacks on vendors and other third parties cause severe disruption to businesses. For example, in recent years we have seen many incidents that have involved threat actors...more

5/16/2025  /  Best Practices , Cyber Threats , Cybersecurity , Data Security , Regulatory Requirements , Risk Management , Software , Software Developers , Supply Chain , UK

UK Government Publishes Cyber Governance Code of Practice for Boards and Directors

On April 8, 2025, the UK government published the Cyber Code of Practice (the “Code”) to support board directors in governing cybersecurity risks. The Code is available online. The UK’s data protection regulator is actively...more

4/11/2025  /  Board of Directors , Compliance , Corporate Governance , Cyber Attacks , Cybersecurity , Data Breach , Data Protection , Regulatory Requirements , Risk Management , UK

Green Light for the Enforcement of NIS 2 in Limited EU Countries Only

EU Member States had until today, October 17, 2024, to transpose the Network and Information Security (NIS) 2 Directive into their national laws. As Directives are not directly applicable in EU Member States, the EU...more

10/18/2024  /  Cyber Incident Reporting , Cybersecurity , Data Protection , Data Security , EU , European Commission , Member State , Regulatory Requirements
5 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide