News & Analysis as of

Cybersecurity Data Protection Corporate Counsel

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Carlton Fields

No Password Required: Former Lead Attorney at U.S. Cyber Command, Cyber Law Strategist, and Appreciator of ‘Mad Men’ Hats

Carlton Fields on

On this episode, hosts Jack Clabby of Carlton Fields and Kayley Melton, executive director of operations at the Cognitive Security Institute, sit down with Kurt Sanger — a seasoned cyber law leader and former deputy general...more

Shook, Hardy & Bacon L.L.P.

California Adopts Regulations on Cybersecurity Audits

Shook, Hardy & Bacon L.L.P. on

California has approved new regulations requiring some companies to conduct annual audits of their cybersecurity programs, including the policies, procedures, and practices for protecting personal information. On July 24,...more

Paul Hastings LLP

ICO Annual Report Provides Insight Into Data Protection Risks for Businesses

Paul Hastings LLP on

The UK Information Commissioner’s Office’s (the ICO’s) latest Annual Report summarises its accomplishments and priorities, including last year’s enforcement actions. Based on our review of the report, we see the ICO focusing,...more

Baker Botts L.L.P.

EU Releases General-Purpose AI Code of Practice

Baker Botts L.L.P. on

On July 10, 2025, the EU published its Code of Practice for General-Purpose AI Models, a comprehensive, though not exhaustive, framework designed to guide Artificial Intelligence ("AI") providers in complying with the...more

Fisher Phillips

New SEC Cybersecurity Compliance Deadlines are Coming: What 5 Things Should Covered Institutions Do to Prepare?

Fisher Phillips on

The SEC’s amended Regulation S-P, adopted last year, will soon enhance data privacy protections for broker-dealers, investment companies, registered investment advisors, and transfer agents. The updated rule requires these...more

Falcon Rappaport & Berkman LLP

Navigating the Patchwork of State Consumer Privacy Statutes: An E-Commerce Compliance Playbook

Falcon Rappaport & Berkman LLP on

Online retailers now face an increasingly complex matrix of state consumer-privacy statutes that impose prescriptive requirements on data collection, monetization, and cybersecurity practices. ...more

Skadden, Arps, Slate, Meagher & Flom LLP

Key Themes From the 2025 IAPP Global Privacy Summit

Skadden, Arps, Slate, Meagher & Flom LLP on

On April 23 and 24, 2025, regulators, industry leaders and data privacy leaders from across the globe convened in Washington, D.C. for the 2025 International Association of Privacy Professionals (IAPP) Global Privacy Summit....more

Troutman Pepper Locke

DOJ’s Latest Guidance on the Data Security Program – What’s New?

Troutman Pepper Locke on

The new Department of Justice (DOJ) Data Security Program (DSP) took effect on April 8....more

Lowenstein Sandler LLP

Top AI Risks General Counsels Should Address

Lowenstein Sandler LLP on

Considering the rapid development and deployment of artificial intelligence (AI) in a wide array of applications and business sectors, it can be a daunting task for a company’s General Counsel (GC) to keep pace in identifying...more

Faegre Drinker Biddle & Reath LLP

Lessons from PayPal’s $2 Million Cybersecurity Settlement with the New York State Department of Financial Services

Faegre Drinker Biddle & Reath LLP on

On January 23, 2025, PayPal settled an enforcement action brought by the New York State Department of Financial Services (NY DFS) for failing to comply with cybersecurity regulations required for financial services businesses...more

Troutman Pepper Locke

2024 Privacy, AI & Cybersecurity Year in Review

Troutman Pepper Locke on

2024 was a pivotal year in the regulation of data practices, with increased scrutiny of artificial intelligence (AI), data brokers, and the ecosystem of commercial data, and the continued proliferation of comprehensive United...more

Morrison & Foerster LLP

Congressional Investigations Outlook: What to Expect from the 119th Congress

Morrison & Foerster LLP on

The 119th Congress is underway, and Republicans control both chambers. With President Trump in the White House, both the House and the Senate will focus more of their oversight on the private sector. Continuing a trend over...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

New DHS Security Requirements Impact Compliance for Employers with Workers in Six “Countries of Concern”

Ogletree, Deakins, Nash, Smoak & Stewart,... on

The U.S. Department of Homeland Security (DHS) recently published new security requirements for certain restricted transactions covered by the U.S. Department of Justice’s (DOJ) sensitive data export rules. ...more

Husch Blackwell LLP

Proposed State Privacy Law Update: February 3, 2025

Husch Blackwell LLP on

Keypoint: It was another busy week with Virginia lawmakers advancing three bills and new consumer and children’s privacy bills introduced in multiple states. Below is the fourth weekly update on the status of proposed state...more

Vinson & Elkins LLP

Watch What You Say: SEC Enforcement Scrutinizes Cybersecurity Incident Disclosures

Vinson & Elkins LLP on

On January 13, 2025, the Securities and Exchange Commission (“SEC”) filed a settled enforcement action against Ashford Inc. (“Ashford” or “the Company”), a company that provides products and services to the real estate and...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

The EU’s Digital Operational Resilience Act Comes Into Effect

Ogletree, Deakins, Nash, Smoak & Stewart,... on

The European Union’s Digital Operational Resilience Act (DORA) came into effect on January 17, 2025. DORA aims to harmonise rules concerning the provision of information and communication technology (ICT) services to...more

DLA Piper

EU: DLA Piper GDPR Fines and Data Breach Survey: January 2025

DLA Piper on

The seventh annual edition of DLA Piper’s GDPR Fines and Data Breach Survey has revealed another significant year in data privacy enforcement, with an aggregate total of EUR1.2 billion (USD1.26 billion/GBP996 million) in...more

Ogletree, Deakins, Nash, Smoak & Stewart,...

New York Amends Data Breach Notification Law to Enhance Notification Requirements, Expand Definition of ‘Private Information’

Ogletree, Deakins, Nash, Smoak & Stewart,... on

On December 24, 2024, New York Governor Kathy Hochul signed into law amendments to New York’s private-sector data breach notification law (General Business Law § 899-aa) and government agency data breach notification law (New...more

Morris, Manning & Martin, LLP

Cyber Incidents: Why General Counsels Are Critical to Navigating the Storm

Morris, Manning & Martin, LLP on

In today’s hyperconnected world, cyberattacks are no longer a question of if but when. For general counsels (GCs), the responsibility extends far beyond legal risk management - it’s about guiding the organization through the...more

Stoel Rives - Global Privacy & Security Blog®

Data Privacy and Cybersecurity Look Ahead: First Half of 2025

Stoel Rives - Global Privacy & Security Blog® on

Privacy and cybersecurity are incredibly dynamic, and in 2025 we have committed ourselves to a look ahead post every six months, with the next one in July 2025. The new Congress convened on January 3, 2025, and a new...more

McDermott Will & Emery

Data Privacy and Cybersecurity Developments We Are Watching in 2025

McDermott Will & Emery on

The act of predicting what will become the dominating storyline of data privacy and cybersecurity in 2025 is a hazardous enterprise, as one is almost surely to get something wrong. Without fail, every year, regulators and the...more

Robinson+Cole Data Privacy + Security Insider

A Year in Privacy and Security: Privacy Violations, Large-Scale Data Breaches, and Big Fines and Settlements

Robinson+Cole Data Privacy + Security Insider on

2024 was a year chock-full of data breaches and privacy violations. Many new data privacy and cybersecurity regulations were introduced (and became effective), and regulators sent a strong message to businesses that privacy...more

Mintz

Kentucky’s Consumer Privacy Law Is Coming, But on a Slow Track

Mintz on

To round out this year’s series on new state consumer privacy laws, we are covering the statute passed by Kentucky earlier this year. Please also keep your eye out for our 2024 round-up article that will be published soon, as...more

Morgan Lewis - Health Law Scan

2024 Year-End Recap of California Consumer Privacy Act Activity

Morgan Lewis - Health Law Scan on

First passed into law in 2018, the California Consumer Privacy Act (CCPA) received its first major update in 2020 by way of the California Privacy Rights Act (CPRA), through which the California Privacy Protection Agency...more

Kilpatrick

Five New State Privacy Laws Effective January 2025

Kilpatrick on

Starting January 2025, five state privacy laws will take effect, providing consumer privacy rights to a new swath of individuals across the country. Delaware, Iowa, Nebraska, and New Hampshire’s laws will go into effect on...more

684 Results
 / 
View per page
Page: of 28
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide