Shoba Pillay

Shoba Pillay

Jenner & Block

Contact
View Bio
RSS

Latest Posts › Data Protection

Share:

Client Alert: New Rules for Data Flows Take Effect: What You Need to Know

On April 8, 2025, the United States Department of Justice’s (DOJ) National Security Division’s (NSD) final rule (Final Rule) regulating certain sensitive US data transfers took effect. DOJ has made clear that it will take...more

4/18/2025  /  Data Protection , Data Security , Department of Justice (DOJ) , Enforcement Actions , Executive Orders , Final Rules , International Data Transfers , National Security , New Regulations , Regulatory Requirements

Client Alert: New York Issues Significant Amendments to its Forward-Leaning Cyber Regulations

In 2017, the New York Department of Financial Services (“NYDFS”) enacted a landmark regulation requiring financial services institutions such as banks and insurance companies in the state to meet substantial cybersecurity...more

11/8/2023  /  Banking Sector , Covered Entities , Cybersecurity , Cybersecurity Framework , Data Protection , Financial Institutions , Financial Regulatory Reform , Financial Services Industry , NYDFS , Regulatory Agenda , Regulatory Reform , Regulatory Requirements , Risk Management

Client Alert: SEC’s Approach to Enforcement After Cyber Incidents: Key Takeaways for Public Companies from a Recent Speech

Last month, Gurbir Grewal, the Director of the SEC’s Division of Enforcement, spoke at the Financial Times Cyber Resilience Summit. During the remarks, he outlined the importance of cybersecurity and signaled that the SEC is...more

7/11/2023  /  Amended Rules , Cyber Incident Reporting , Cybersecurity , Data Breach , Data Protection , Disclosure Requirements , Enforcement Actions , Financial Institutions , Incident Response Plans , Personal Data , Policies and Procedures , Publicly-Traded Companies , Risk Management , Securities and Exchange Commission (SEC)

Client Alert: Biden-Harris Administration Cybersecurity Strategy

On March 1, 2023, the White House released a new National Cybersecurity Strategy (the Strategy) documenting the Biden-Harris administration’s approach to improving cybersecurity across the digital ecosystem. The Strategy...more

3/9/2023  /  Biden Administration , Critical Infrastructure Sectors , Cyber Incident Reporting , Cybersecurity , Cybersecurity Information Sharing Act (CISA) , Data Protection , Data Security , National Security , Risk Management

DOJ Revises CFAA Charging Policy to Provide Clarity for Cybersecurity Research and Terms of Use

On May 19, 2022, the Department of Justice (DOJ) issued revisions to its existing policy for charging offenses under the Computer Fraud and Abuse Act (CFAA) (2022 CFAA Policy). The revisions state that “good-faith” security...more

6/2/2022  /  Computer Fraud and Abuse Act (CFAA) , Cybersecurity , Data Protection , Department of Justice (DOJ) , New Guidance , Policy Statement , Popular , Regulatory Reform

The Cyber Incident Reporting for Critical Infrastructure Act of 2022

On March 15, 2022, President Biden signed into law the “Cyber Incident Reporting for Critical Infrastructure Act of 2022” (the Act) as part of the 2022 federal funding bill. Among other things, the Act requires critical...more

3/18/2022  /  Biden Administration , Cyber Incident Reporting for Critical Infrastructure Act of 2022 (CIRCIA) , Cybersecurity , Data Breach , Data Protection , Federal Breach Notification Standard , Homeland Security Cybersecurity & Infrastructure Security Agency (CISA) , New Legislation , Ransomware , Regulatory Reform , Regulatory Requirements

SEC Proposes Rules on Cybersecurity Risk Management, Strategy, Governance, and Incident Disclosure by Public Companies

Last week, the SEC proposed rule amendments to enhance and standardize disclosures regarding cybersecurity risk management, strategy, governance, and incident reporting by public companies. The proposed rules include an...more

3/17/2022  /  Cyber Attacks , Cybersecurity , Data Breach , Data Protection , Disclosure Requirements , Proposed Rules , Publicly-Traded Companies , Regulatory Agenda , Securities and Exchange Commission (SEC) , Securities Regulation

Securities and Exchange Commission Chair Emphasizes SEC’s Role in Cybersecurity and Suggests Additional Cybersecurity Regulations...

In a speech to the Securities Regulation Institute conference last week, Chair Gary Gensler signaled the SEC may implement more stringent cybersecurity regulations, and in the meantime, would work to enforce existing...more

2/1/2022  /  Cybersecurity , Data Protection , Data Security , Disclosure Requirements , Personally Identifiable Information , Publicly-Traded Companies , Regulation S-P , Regulation SCI , Regulatory Oversight , Securities and Exchange Commission (SEC)

New Civil Cyber-Fraud Initiative Uses False Claims Act to Enforce Cybersecurity Requirements

The Department of Justice (DOJ) announced this week a new Civil Cyber-Fraud initiative which will use the False Claims Act (FCA) to enforce government contract cybersecurity requirements. The initiative will be led by the...more

10/8/2021  /  Cybersecurity , Data Protection , Department of Justice (DOJ) , False Claims Act (FCA) , Federal Contractors , Fraud , Information Technology , Regulatory Oversight
9 Results
 / 
View per page
Page: of 1

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide