Consumer Finance Monitor Podcast Episode: Navigating the Consumer Financial Protection Bureau’s Proposed Personal Financial Data Rule
A Look at Recent Federal Trade Commission and Consumer Financial Protection Bureau Initiatives Concerning Privacy and Data Security
Edible Bites Episode 9: Emerging Issues in Cannabis Privacy
Data… the Good, the Bad and the Soon to be Regulated
The SEC’s amended Regulation S-P, adopted last year, will soon enhance data privacy protections for broker-dealers, investment companies, registered investment advisors, and transfer agents. The updated rule requires these...more
As Vermont joins the growing number of states with comprehensive consumer data privacy laws, it stands out from the crowd with the ability of Vermonters to bring a private right of action (PRA) against large data holders. In...more
In the late summer, the Consumer Financial Protection Bureau (CFPB) issued a circular that concluded in no uncertain terms that insufficient data protection or information security could be considered an unfair practice under...more
The Consumer Financial Protection Bureau (“CFPB”) recently issued Consumer Financial Protection Circular 2022-04, confirming its increased focus on financial companies that violate federal consumer financial protection law...more
The Federal Government continues ramping up enforcement of data security requirements by deploying significant new enforcement theories and tools in support of cyber and data security controls required by federal law....more
Ransomware has become the fastest growing type of cybercrime facing businesses today. In 2021, loss values were estimated to have reached at least 57 times those in 2015, exceeding $20 billion. Data and privacy issues are so...more
New York AG Letitia James reached a settlement with online water filtration retailer Filters Fast LLC to resolve allegations that it failed to protect customers’ payment card information in a 2019 data breach in violation of...more
On July 21, 2020, the New York Department of Financial Services (“DFS”) filed its first enforcement action under New York’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R. Part 500 (“Reg 500”). Reg...more
This post discusses litigation exposure that businesses collecting personal information about California consumers should consider in the wake of the California Legislature’s passage of the California Consumer Privacy Act of...more
Most companies have a privacy policy in place for the protection of consumer data (or should), but merely adopting a reasonable privacy policy is by itself not enough. Rather, a company must also actively ensure compliance...more
Recently the state of California passed a data privacy and security law called the California Consumer Privacy Act (“CCPA”) (Assembly Bill 375). The law, which takes effect on January 1, 2020, is aimed at establishing a...more
On June 28, a new law took effect in California that gives California residents greater control over the collection and processing of their personal information. The law, called The California Consumer Privacy Act of 2018...more
The California Consumer Privacy Act of 2018 (“CCPA”) offers a new, very broad framework for data protection with increased obligations for businesses, and its reach is far and wide. It was passed in a whirlwind seven days. On...more