On October 6, the U.S. Department of Justice (DOJ) announced the launch of a National Cryptocurrency Enforcement Team (NCET) to add structure to and coordinate the DOJ’s investigative capabilities concerning unlawful uses of...more
On October 6, 2021, the Department of Justice opened up a new front in cybersecurity compliance when it announced a Civil Cyber-Fraud Initiative using the False Claims Act and other civil enforcement tools against government...more
On August 30, the Securities and Exchange Commission (SEC) announced settled charges with several investment advisory firms and broker-dealers following email account takeovers. These settlements are the latest in a string of...more
The New York State Department of Financial Services (DFS) is continuing its focus on financial institutions’ cybersecurity, issuing new guidance, probing cybersecurity as part of routine examinations, and signaling increased...more
On June 2, 2021, President Biden issued a memorandum providing "recommended best practices" for protecting against ransomware. The memorandum urged corporate executives and business leaders to...more
Join in-house counsel, chief privacy and information officers, and C-suite leaders for an in-depth program featuring Carlton Fields' Cybersecurity and Privacy attorneys.
For companies subject to the CCPA, the law ushered...more
8/11/2020
/ California Consumer Privacy Act (CCPA) ,
Chief Information Officers (CIO) ,
Chief Privacy Officer ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Enforcement Actions ,
Personally Identifiable Information ,
Privacy Laws ,
State Attorneys General ,
Statutory Damages ,
Statutory Requirements ,
Webinars
Join in-house counsel, chief privacy and information officers, and C-suite leaders for in-depth program featuring Carlton Fields’ Cybersecurity and Privacy attorneys.
For companies subject to the CCPA, the law ushered in...more
5/14/2020
/ California Consumer Privacy Act (CCPA) ,
Chief Information Officers (CIO) ,
Chief Privacy Officer ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Data Protection ,
Data Security ,
Enforcement Actions ,
Personally Identifiable Information ,
Privacy Laws ,
State Attorneys General ,
Statutory Requirements ,
Webinars
The new data security requirements provision of New York’s Stop Hacks and Improve Electronic Data Security (SHIELD) Act went into full force as of March 21, 2020, and all people and businesses, regardless of the state in...more
4/2/2020
/ Cybersecurity ,
Data Management ,
Data Protection ,
Data Security ,
Gramm-Leach-Blilely Act ,
Information Technology ,
New Legislation ,
Personal Data ,
Personally Identifiable Information ,
Risk Management ,
Security Standards ,
SHIELD Act ,
State and Local Government ,
State Data Breach Notification Statutes
California passed a sweeping new privacy law that will impact many businesses. The California Consumer Privacy Act of 2018 (CCPA) is the first U.S. law to grant consumers extensive rights as to their personal information and...more
10/22/2019
/ Banks ,
California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Gaming ,
General Data Protection Regulation (GDPR) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
lender ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Privacy Laws ,
State and Local Government ,
Transparency
Despite its breadth, California's new privacy law, the California Consumer Privacy Act (CCPA), creates an exemption designed around the federal Health Insurance Portability and Accountability Act (HIPAA). That exemption is...more
9/11/2019
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Consumer Rights Directive ,
Covered Entities ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Exemptions ,
Health Care Providers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Marketing ,
Mobile Apps ,
Patient Privacy Rights ,
Personal Data ,
Personally Identifiable Information ,
PHI ,
Popular ,
Privacy Laws
California’s new privacy statute imposes a number of new requirements on businesses that touch the personal information of California consumers. Its reach includes banks and financial services companies....more
8/30/2019
/ Banks ,
California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Customer Privacy ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Financial Services Industry ,
Gramm-Leach-Blilely Act ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Privacy Laws
SEC Tells Firms to Stop Missing the Basics on Cybersecurity -
The SEC’s Office of Compliance Inspections and Examinations (OCIE) reported in a recent Risk Alert that many investment advisers and broker-dealers are failing to...more
7/19/2019
/ Broker-Dealer ,
Cybersecurity ,
Data Integrity ,
Data Protection ,
Investment Adviser ,
Notice Requirements ,
OCIE ,
Policies and Procedures ,
Popular ,
Privacy Notice Rule ,
Regulation S-P ,
Regulatory Oversight ,
Risk Alert ,
Securities and Exchange Commission (SEC) ,
Securities Regulation
Independent schools, like other non-profits, have valuable digital assets that bring cybersecurity obligations with them. For example, schools typically extend financial aid to students and medical benefits to employees only...more
3/18/2019
/ Best Practices ,
Cybersecurity ,
Data Management ,
Digital Assets ,
Educational Institutions ,
FERPA ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Risk Assessment ,
State Data Breach Notification Statutes ,
Student Privacy ,
WISP