In this month's edition of our Privacy & Cybersecurity Update, we examine the European Commission's second annual review of the Privacy Shield and the Department of Commerce's guidance on how to comply with the Privacy Shield...more
1/4/2019
/ Artificial Intelligence ,
Banking Sector ,
Cybersecurity ,
Data Protection ,
Data Protection Commissioner ,
Ethics ,
EU ,
EU-US Privacy Shield ,
European Central Bank ,
European Commission ,
Federal Trade Commission (FTC) ,
Financial Institutions ,
General Data Protection Regulation (GDPR) ,
Human Rights ,
Identity Theft ,
Payment Systems ,
Popular ,
Privacy Policy ,
Proposed Amendments ,
Public Comment ,
Security Risk Assessments ,
U.S. Commerce Department ,
UK Brexit
In this month's edition of our Privacy & Cybersecurity Update, we examine new privacy laws in Germany, an FTC settlement with an alleged consumer loan company over unfair and deceptive practices, the dismissal of a data...more
8/2/2017
/ Children's Toys ,
Civil Monetary Penalty ,
Consumer Financial Products ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Protection ,
Dismissals ,
EU ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Germany ,
Incident Response Plans ,
Lenders ,
Member State ,
Popular ,
Privacy Laws ,
Risk Mitigation ,
Settlement ,
Standing ,
Unfair or Deceptive Trade Practices
In this edition of our Privacy & Cybersecurity Update, we discuss how the prospect of a new chair and three new commissioners at the FTC may impact the agency's approach to cybersecurity regulation, a new Massachusetts...more
2/4/2017
/ Administrative Appointments ,
Breach Notification Rule ,
Cyber Insurance ,
Cybersecurity ,
Cybersecurity Framework ,
Data Breach ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Internet of Things ,
NIST ,
OCR ,
Popular ,
Privacy Policy ,
Public Disclosure ,
Software ,
Swiss Privacy Shield ,
Trump Administration
President Donald Trump’s statements to date on regulation in general and cybersecurity regulation in particular suggest a conflict between his desire to strengthen the country’s cybersecurity efforts and his general antipathy...more
In this month's Privacy & Cybersecurity Update, we review an 11th Circuit case involving the longstanding battle between the FTC and medical company LabMD, recent NIST guidelines for securing devices connected to the...more
12/2/2016
/ Administrative Appeals ,
Appeals ,
China ,
Critical Infrastructure Sectors ,
Cybersecurity ,
Data Breach ,
Data Security ,
Federal Trade Commission (FTC) ,
FTC Act ,
Geo-Blocking ,
LabMD ,
LinkedIn ,
NIST ,
Russia ,
Section 5 ,
Third-Party Service Provider ,
Unfair or Deceptive Trade Practices
In this edition of our Privacy & Cybersecurity Update, we take a look at the FCC's new rules for broadband privacy, the FTC's new playbook for data breach response and notification, the NHTSA's voluntary guidance for...more
11/2/2016
/ Actual Injuries ,
Automotive Industry ,
Breach Notification Rule ,
Broadband ,
Cloud Computing ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
Data Breach Plans ,
Driverless Cars ,
EU ,
FCC ,
Federal Bank Regulatory Agencies ,
Federal Trade Commission (FTC) ,
Financial Institutions ,
FTC Guidelines ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Incident Response Plans ,
IP Addresses ,
National Broadband Plan ,
NHTSA ,
Popular ,
Privacy Laws ,
Risk Assessment ,
Risk Mitigation
In this edition of our Privacy & Cybersecurity Update, we examine the Sixth Circuit's decision to allow injury-in-fact to be established by alleging a "substantial risk of harm" in a data breach case, New York state's...more
10/3/2016
/ Article III ,
CFTC ,
Class Action ,
Commodities ,
Corporate Counsel ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Protection Authority ,
EU ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
Financial Institutions ,
Financial Markets ,
Germany ,
International Data Transfers ,
NIST ,
NYDFS ,
Personal Data ,
Popular ,
Standing ,
UK ,
Young Lawyers
In this edition of our Privacy & Cybersecurity Update, we highlight guidance issued by the Irish data protection authority regarding the use of location data, as well as the FTC's request for comment on its Standards for...more
9/2/2016
/ Attorney General ,
Centers for Medicare & Medicaid Services (CMS) ,
Class Action ,
Consent ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Protection Authority ,
Federal Trade Commission (FTC) ,
Injury-in-Fact ,
Internet Retailers ,
Invasion of Privacy ,
Ireland ,
Location Data ,
Misrepresentation ,
NAIC ,
Nursing Homes ,
Personal Data ,
Privacy Laws ,
Public Comment ,
Right to Privacy ,
Safeguards Rule ,
Settlement ,
Social Media Policy ,
Standing ,
State Data Breach Notification Statutes
In this edition of our Privacy & Cybersecurity Update, we examine the impact of Brexit on EU data protection, court rulings on cyber insurance policy exclusions and coverage gaps, recent statements from the FTC and the...more
6/30/2016
/ Banks ,
Bonds ,
Class Action ,
Corporate Counsel ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Protection Authority ,
Electronic Health Record Incentives ,
EU Data Protection Laws ,
EU-US Privacy Shield ,
Fashion Industry ,
Federal Trade Commission (FTC) ,
FFIEC ,
Fraudulent Transfers ,
Germany ,
Hackers ,
Internet of Things ,
Privacy Laws ,
Spokeo v Robins ,
Standing ,
UK Brexit ,
Young Lawyers
In this edition of our Privacy & Cybersecurity Update, we examine changes to EU privacy and data protection laws, new state laws addressing data breach notifications, Congress' review of cyber insurance, and recent court...more
5/3/2016
/ Class Action ,
Commercial General Liability Policies ,
Corporate Counsel ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Encryption ,
EU ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
Future Harm ,
General Data Protection Regulation (GDPR) ,
Mobile Health Apps ,
Notice Requirements ,
Standing ,
State Data Breach Notification Statutes ,
Young Lawyers
Two days after the original January 31 deadline, the European Union and United States have announced a replacement for the Safe Harbor agreement — the EU-U.S. Privacy Shield — which, if approved, will provide a new framework...more
Entering 2016, the relentless stream of cyberattacks continues unabated, having become a "business as usual" reality to which companies must adapt. All companies, regardless of size or industry, are potential targets, and the...more
1/21/2016
/ Administrative Authority ,
Class Action ,
Cybersecurity ,
Data Privacy ,
EU ,
EU Data Protection Laws ,
Federal Trade Commission (FTC) ,
FTC Act ,
General Data Protection Regulation (GDPR) ,
Incident Response Plans ,
Information Sharing ,
Injury-in-Fact ,
LabMD ,
OCIE ,
Privacy Laws ,
Risk Assessment ,
Section 5 ,
Securities and Exchange Commission (SEC) ,
Third-Party Release Agrements ,
US-EU Safe Harbor Framework ,
Vendors ,
Wyndham
Consumer Electronics Association Releases Best Practices For Privacy and Security of Personal Wellness Data -
In late October 2015, the Consumer Electronics Association released guiding principles governing the...more
11/30/2015
/ Actual Injuries ,
Commodity Exchange Act (CEA) ,
Cybersecurity ,
Do Not Track ,
EU Data Protection Laws ,
FCC ,
Federal Trade Commission (FTC) ,
Financial Services Industry ,
International Data Transfers ,
Privacy Concerns ,
US-EU Safe Harbor Framework
“Decision 2000/520 is invalid.” With those four words, the Court of Justice of the European Union (CJEU) sent shock waves through the European and U.S. business communities on October 6, 2015, with a landmark decision finding...more
10/7/2015
/ Cybersecurity ,
Data Protection Authority ,
Edward Snowden ,
EU Data Protection Laws ,
European Commission ,
European Court of Justice (ECJ) ,
Facebook ,
Federal Trade Commission (FTC) ,
International Data Transfers ,
Ireland ,
National Security ,
National Security Agency (NSA) ,
Personal Data ,
Privacy Laws ,
Right to Privacy ,
Safe Harbors ,
Schrems I & Schrems II ,
U.S. Commerce Department ,
US-EU Safe Harbor Framework
Third Circuit Affirms FTC’s Authority Over Cybersecurity:
In the Wyndham case, the Third Circuit affirmed that the FTC has the authority to regulate cybersecurity under Section 5 of the FTC Act, and that the language of...more
9/2/2015
/ Administrative Authority ,
Automobile Recall ,
Brokers ,
Compliance ,
Connected Cars ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Security ,
Federal Trade Commission (FTC) ,
FTC v Wyndham ,
Hackers ,
Metadata ,
National Security Agency (NSA) ,
Privacy Concerns ,
Safe Harbors ,
Section 5 ,
Settlement ,
Target ,
Technology ,
Unfair or Deceptive Trade Practices ,
Visa Inc ,
Wyndham
Seventh Circuit Decision May Make It Easier for Class Action Plaintiffs to Establish Standing in Data Breach Cases -
The Seventh Circuit has issued a decision that could make it much easier for class action plaintiffs to...more
8/4/2015
/ Attorney General ,
Class Action ,
Cyber Attacks ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Security ,
FCC ,
Federal Trade Commission (FTC) ,
FFIEC ,
Identity Theft ,
Personal Data ,
Security Risk Assessments ,
Standing ,
TCPA
In This Issue:
- Second Circuit Rules Patriot Act Does Not Authorize Bulk Metadata Collection; Congress Reconsiders Certain Patriot Act Authorities
- SEC Issues Cybersecurity Guidance for Investment Companies...more
6/2/2015
/ Broadband ,
Commercial Bankruptcy ,
Customer Lists ,
Cyber Crimes ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Enforcement ,
FBI ,
FCC ,
Federal Trade Commission (FTC) ,
Insurance Litigation ,
Internet of Things ,
Investment Adviser ,
Investment Funds ,
Jurisdiction ,
Online Privacy Protection Act ,
Patriot Act ,
Personally Identifiable Information ,
Privacy Laws ,
RadioShack ,
Securities and Exchange Commission (SEC)
This past year has been called the "year of the massive data breach," with many high-profile attacks on well-known companies. Skadden partners Cyrus Amir-Mokri, Patrick Fitzgerald, Marc S. Gerber, Stuart D. Levi and Timothy...more
1/27/2015
/ Best Practices ,
Corporate Counsel ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Popular ,
Retailers ,
Risk Assessment ,
Risk Management ,
Senate Banking Committee ,
Target
In This Issue:
- EU Issues Guidelines on ‘Right to be Forgotten’
- FFIEC Observations on Bank Cybersecurity Provides Important Guidelines for Every Industry
- Remarks by Comptroller Curry Highlight OCC...more
12/1/2014
/ Automotive Industry ,
Banks ,
Cyber Threats ,
Cybersecurity ,
Data Breach ,
EU ,
Federal Trade Commission (FTC) ,
FFIEC ,
FTC v Wyndham ,
Google ,
NIST ,
OCC ,
Privacy Laws ,
Retailers ,
Right to Be Forgotten ,
Securities and Exchange Commission (SEC)
In This Issue:
- Home Depot Data Breach — Lawsuits, Calls to Action and Lessons Learned
- Skadden Participates in FBI Cyber-Intelligence Workshop
- FTC Explores Impact of ‘Big Data’ on American...more
10/1/2014
/ Adobe ,
Banking Sector ,
Big Data ,
Class Action ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
EU ,
FBI ,
FDIC ,
Federal Trade Commission (FTC) ,
FTC v Wyndham ,
Home Depot ,
Neiman Marcus ,
Popular ,
Target
In This Issue:
- Treasury Secretary Calls for Increased Focus on Cybersecurity
- New Requirements for ‘Cleared Intelligence’ Contractors
- FTC Clarifies Verifiable Parental Consent Methods Under COPPA
- Small...more
In This Issue:
- EU Court of Justice Creates Broad Interpretation of the ‘Right to be Forgotten’
- White House Publishes Report on Risks and Opportunities Posed by ‘Big Data’ Practices
- California AG...more
5/30/2014
/ Attorney General ,
Big Data ,
Cybersecurity ,
Do Not Track ,
ECPA ,
EU ,
Federal Trade Commission (FTC) ,
Notice Requirements ,
Popular ,
Privacy Disclosures ,
Right to Be Forgotten ,
Right to Privacy ,
Snapchat ,
Zynga
In This Issue:
- NIST Releases Final Framework Document
..Key Changes From The Preliminary Framework
..The Framework Roadmap
..The DHS “C-Cubed” Program
..Next Steps
- California Suggests Upper...more
2013 likely will be considered a watershed period in the role of cybersecurity in corporate strategy and management. While there were few significant legislative developments, a marked increase in cybersecurity attacks...more
1/29/2014
/ Cyber Insurance ,
Cyber Threats ,
Cybersecurity ,
Cybersecurity Framework ,
Data Breach ,
Data Protection ,
Data Theft ,
Federal Trade Commission (FTC) ,
Hackers ,
NIST ,
Target
In This Issue:
- Ramifications of the Target Data Breach
- California Federal Judge Winnows Down Massive Privacy Class Action
- White House Launches “Big Data” Review
- Senator Rockefeller Issues Data Broker...more
1/28/2014
/ Australia ,
Big Data ,
Class Action ,
Cybersecurity ,
Data Breach ,
Data Brokers ,
Data Protection ,
EU ,
Federal Trade Commission (FTC) ,
Internet ,
Privacy Laws ,
Safe Harbors ,
Target