News & Analysis as of

Cybersecurity Personal Information Corporate Counsel

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Shook, Hardy & Bacon L.L.P.

California Adopts Regulations on Cybersecurity Audits

Shook, Hardy & Bacon L.L.P. on

California has approved new regulations requiring some companies to conduct annual audits of their cybersecurity programs, including the policies, procedures, and practices for protecting personal information. On July 24,...more

Falcon Rappaport & Berkman LLP

Navigating the Patchwork of State Consumer Privacy Statutes: An E-Commerce Compliance Playbook

Falcon Rappaport & Berkman LLP on

Online retailers now face an increasingly complex matrix of state consumer-privacy statutes that impose prescriptive requirements on data collection, monetization, and cybersecurity practices. ...more

Skadden, Arps, Slate, Meagher & Flom LLP

Eight-State Consortium of Privacy Regulators Marks Shift Toward Coordinated Enforcement

Skadden, Arps, Slate, Meagher & Flom LLP on

In a major development for businesses subject to state data privacy laws, eight state privacy regulators have joined forces to form the “Consortium of Privacy Regulators,” a bipartisan coalition aimed at coordinating...more

Goodwin

DOJ’s Data Export Rule Is In Force April 8: What You Need to Do

Goodwin on

On April 8, 2025, a sweeping rule issued by the US Department of Justice (DOJ) will take effect. The rule imposes restrictions—and in some cases, outright prohibitions—on US companies in connection with certain types of data...more

Kilpatrick

Five New State Privacy Laws Effective January 2025

Kilpatrick on

Starting January 2025, five state privacy laws will take effect, providing consumer privacy rights to a new swath of individuals across the country. Delaware, Iowa, Nebraska, and New Hampshire’s laws will go into effect on...more

Carlton Fields

CPPA Advances New Privacy Rules for Businesses

Carlton Fields on

The California Privacy Protection Agency (CPPA), at its board meeting on November 8, 2024, voted 4–1 to advance proposed regulations to a formal rulemaking. As currently drafted, these regulations would, among other things...more

Wilson Sonsini Goodrich & Rosati

Seven New States Join Patchwork of U.S. Comprehensive Privacy Laws: Top 10 Trends from the First Half of 2024

Wilson Sonsini Goodrich & Rosati on

In the first half of 2024, seven new states—Kentucky, Maryland, Minnesota, Nebraska, New Hampshire, New Jersey, and Rhode Island—all enacted their takes on comprehensive privacy laws, bringing the total number of states with...more

Ballard Spahr LLP

XZ Utils Supply Chain Attack Sheds Light on Vulnerabilities in Widely Adopted Open Source System

Ballard Spahr LLP on

In a reminder that open source products can carry significant risks beyond intellectual property, a vulnerability in a compression tool commonly used by developers has triggered widespread concerns....more

WilmerHale

China Finalizes Rules to Ease Data Export Compliance Burden

WilmerHale on

On March 22, 2024, the Cyberspace Administration of China (“CAC”) promulgated the final version of the Provisions on the Promotion and Regulation of Cross-Border Data Flows (the “Final Provisions”), bringing to conclusion the...more

Mintz - Privacy & Cybersecurity Viewpoints

Further Updates to the CPPA Proposed Regulations: Risk Assessments and Automated Decisionmaking Technology

Mintz - Privacy & Cybersecurity Viewpoints on

After years of internal discussion, the Board of the California Privacy Protection Agency (CPPA), at their March 8th meeting, voted to progress toward formalizing the proposed regulations on risk assessments and automated...more

Kilpatrick

Colorado Department of Law Issues Universal Opt-Out Shortlist Under the Colorado Privacy Act – What to Do Next

Kilpatrick on

The Colorado Department of Law has published its Universal Opt-Out Shortlist under the Colorado Privacy Act (“CPA”). This is eagerly awaited guidance for organizations who are subject to the CPA as the guidance provides...more

Troutman Pepper Locke

More Safe Harbor Protections for Navigating Cyber and Privacy Litigation

Troutman Pepper Locke on

Cybersecurity and data privacy risks continue to loom large with potentially significant consequences. Litigation, often filed soon after incidents, adds to the possible repercussions. In our previous article, we discussed a...more

Mintz - Privacy & Cybersecurity Viewpoints

Updates to CCPA Proposed Regulations: Cybersecurity Audits

Mintz - Privacy & Cybersecurity Viewpoints on

The California Privacy Protection Agency (“CPPA”) published a revised set of Draft Cybersecurity Audit Regulations ahead of the CPPA Board’s December 8, 2023 meeting. When the CPPA Board met on December 8, several key...more

Husch Blackwell LLP

CPPA Publishes Revised Draft Cybersecurity Audit Regulations

Husch Blackwell LLP on

Keypoint: The California Privacy Protection Agency continued its rulemaking efforts by releasing revised draft cybersecurity audit regulations although the Agency has yet to initiate the formal rulemaking process....more

WilmerHale

China Publishes Draft Rules to Ease Data Export Compliance Burden

WilmerHale on

The Cyberspace Administration of China (“CAC”) on September 28, 2023 issued the draft Provisions on the Regulation and Promotion of Cross-Border Data Flows (“draft Provisions”),  just one year after China’s data export...more

Miller Nash LLP

The State of State Privacy Laws: What Businesses Need to Know

Miller Nash LLP on

Summer days are over and it’s time to hit the books. State legislatures were busy in 2023 making up for the U.S. Congress’s inability to pass a comprehensive privacy law. ...more

Davis Wright Tremaine LLP

China's Cyberspace Administration Releases "Interim" Rules Regulating the Use of Generative AI

Davis Wright Tremaine LLP on

The Cybersecurity Administration of China ("CAC") and six other agencies jointly promulgated Interim Measures for the Administration of Generative Artificial Intelligence Services ("Generative AI Measures" or "Rules"), that...more

Bilzin Sumberg

What Does the Florida Digital Bill of Rights Mean for Your Business?

Bilzin Sumberg on

Florida Governor Ron DeSantis signed into law Senate Bill 262, known as the “Florida Digital Bill of Rights” (“FDBR”), on June 6, 2023.  The FDBR will go into effect on July 1, 2024, which means businesses subject to it...more

Kelley Drye & Warren LLP

What’s in the Indiana Consumer Data Protection Act?

Kelley Drye & Warren LLP on

Indiana’s Consumer Data Protection Act advanced in the state legislature last week and now heads to Governor Eric J. Holcomb’s desk. The bill mirrors comprehensive privacy legislation enacted in Virginia, Utah, and Iowa,...more

Davis Wright Tremaine LLP

Now We Are Six: Iowa Becomes the Sixth State to Enact a Comprehensive Privacy Law

Davis Wright Tremaine LLP on

With the unanimous passage of Senate File 262 by the Iowa House and Senate and the Governor's signature Tuesday, the Hawkeye State joins California, Colorado, Connecticut, Virginia, and Utah as one of six states with a...more

Morgan Lewis

Global Privacy Year in Review - March 2023

Morgan Lewis on

The need for privacy and cybersecurity compliance measures has become a paramount consideration as businesses become more digitally driven, data breaches become more publicized, and regulation continues to increase. Morgan...more

Jones Day

China Finalizes Measures on the Standard Contract for Cross-Border Transfers of Personal Information

Jones Day on

On February 24, 2023, the Cyberspace Administration of China ("CAC") issued the long-awaited Measures on the Standard Contract for Outbound Cross-Border Transfer of Personal Information ("Measures")....more

White & Case LLP

New requirements for outbound data transfers from China

White & Case LLP on

The Cybersecurity Administration of China (the "CAC") has published guidelines concerning outbound data transfers of personal information and "important data" from China to other jurisdictions. Businesses must comply with...more

Blake, Cassels & Graydon LLP

Revue de l’année 2022 du droit canadien de la protection de la vie privée

Blake, Cassels & Graydon LLP on

En 2022, le droit canadien de la protection de la vie privée et de la cybersécurité a continué d’évoluer considérablement. Comme dans les années passées, afin de souligner la Journée de la protection des données, nous...more

Bond Schoeneck & King PLLC

2023 State and Federal Data Privacy Legislation

Bond Schoeneck & King PLLC on

The United States is gearing up for another noteworthy year in data privacy and cybersecurity. 2023 will likely be a year of transition as certain data privacy laws come into effect. As concerns around data protection and...more

141 Results
 / 
View per page
Page: of 6
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide