We get Privacy for work — Episode 8: The Surge in Data Breach Lawsuits: Trends and Tactics
The Privacy Insider Podcast Episode 17: Security, Cyber-Intel, and a Sense of Humor with Nir Rothenberg of Rapyd
We get Privacy for work — Episode 7: What Is a WISP and Why Your Organization Must Have One
Under the Radar: DOJ's Data Security Rules and Their Impact on Payments Companies — Payments Pros – The Payments Law Podcast
No Password Required: Former Lead Attorney at U.S. Cyber Command, Cyber Law Strategist, and Appreciator of ‘Mad Men’ Hats
We get Privacy for work – Episode 6: The Potential Privacy Risks Inherent to Mergers and Acquisitions
Taking the Pulse, A Health Care and Life Sciences Video Podcast | Episode 243: HIPAA Compliance and Potential Changes with Shannon Lipham of Maynard Nexsen
We get Privacy for work: The Privacy Pitfalls of a Remote Workforce
No Password Required: From AOL to Award-Winning Cuisine to High-Stakes Hacking
Driving Digital Security: The FTC's Safeguards Rule Explained — Moving the Metal: The Auto Finance Podcast
Privacy for Risk Management: Bridge the Business, Technology and Compliance Gaps
Innovation in Compliance: Real-Time Fraud Prevention Strategies for Financial Loss Prevention with Vince Walden
Innovation in Compliance: The Critical Importance of Mobile Application Security: Insights from Subho Halder
Compliance and AI: Using AI for Data Loss Prevention Systems with Vinay Goel
Safeguarding Your Business Data
Navigating the Maze: eDiscovery Essentials for Employers — Hiring to Firing Podcast
Top Healthcare Compliance Priorities for 2025
Business Better Podcast Episode: Bridging Campuses: Legal Insights on Education Industry Consolidation – Privacy and Data Security
Episode 366 -- DOJ Issues Data Security Program Requirements
FCPA Compliance Report: AI, Data Compliance, and Ownership - A Conversation with Andrew Hopkins
As promised, the CFPB is issuing an Advance Notice of Proposed Rulemaking soliciting comments on the agency’s open banking rule....more
In June 2025, the ABA held its annual Risk and Compliance Conference. The conference heavily focused on how banks are leveraging AI to support front-, middle-, and back-office functions. Conference participants noted that...more
In the rapidly evolving financial ecosystem, financial institutions (FIs) increasingly rely on third parties, including Fintech companies, Banking-as-a-Service (BaaS) providers, and other financial service entities—to expand...more
On April 8, the Office of the Comptroller of the Currency (OCC) officially notified Congress of a significant information security incident involving its email system. This notification, mandated by the Federal Information...more
On April 3, 2025, the New York State Department of Financial Services (“DFS”) issued reminders about upcoming implementation and reporting deadlines related to its cybersecurity regulations. Upcoming deadlines require...more
Members of the health care and financial industries, along with other industries that hold sensitive data, are warned that a ChatGPT vulnerability is being actively exploited by threat actors to attack security flaws in AI...more
On January 14, 2025, the American Fintech Council (AFC) submitted a letter to the Ohio Department of Financial Institutions, urging it to re-examine its recent guidance on responsible bank partnerships and provide more...more
On October 22, 2024, the Consumer Financial Protection Bureau (CFPB) finalized its long-anticipated rule implementing Section 1033 of the Dodd-Frank Act. The 594-page final rule arrives nearly one year after the CFPB’s...more
In the highly competitive payments space, where safety and efficiency tools are table stakes, financial institutions are increasingly employing artificial intelligence (AI) solutions....more
Welcome to the Class Action & MDL Roundup, our quarterly review of decisions and settlements in the class action arena. In this edition, student-athletes win an NIL round, Canadians in California isn’t personal...more
Compliance is difficult, and litigation and enforcement risks are high for financial services companies. Navigating a Proustian rulebook, it’s impossible to get everything right all the time. Legal and compliance work in...more
FTC Amends Safeguards Rule to Require Non-Banking Financial Institutions to Report Data Security Breaches - “Amendment will require non-bank financial institutions to report when they discover that information affecting...more
It’s hard to keep up with all the recent changes to labor and employment law. While the law always seems to evolve at a rapid pace, there have been an unprecedented number of changes for the past few years — and this past...more
Headlines - ..New FDIC Guidance Highlights Risks from Multiple NSF Fees for Re-presented Items ..Fed Provides Advice to Banks Engaging in Crypto-Asset-Related Activities ..Federal Banking Agencies Propose Policy...more
The CFPB recently published a circular clarifying liability under consumer financial protection law for financial companies that fail to safeguard consumer data. The circular describes how firms may be violating the CFPA’s...more
On August 11, the CFPB published a circular clarifying liability under consumer financial protection law for bank and nonbank financial companies that fail to safeguard consumer data. The circular describes how firms may be...more
Broadly, there are two sets of rules governing obtaining authorizations to debit consumers’ bank accounts. One is Regulation E (12 C.F.R. Part 210). The other are the Operating Rules & Guidelines (the “Nacha Rules”),...more
The last few months have seen a flurry of new federal cybersecurity incident reporting requirements and proposals impacting private entities in the financial sector. As the number and frequency of cyber attacks continue to...more
Given the omnipresent concern about cyber attacks targeting the banking industry, the FDIC, OCC and Federal Reserve recently published a new joint final rule establishing enhanced security incident notification requirements...more
Data Aggregators Launch Open Finance Data Security Standard - A group of data aggregator fintechs and security and compliance companies recently released a new data security standard for the open finance industry – the...more
Federal banking regulators issued a final rule that impacts how banks and other regulated entities report certain data incidents. Those subject to these new reporting requirements include U.S. banks and bank service...more
Last month, the FDIC, Federal Reserve Board, and the OCC announced a final rule to improve information sharing about cyber incidents that may affect the U.S. banking system. Among other things, the final rule requires...more
The European Cloud User Coalition (ECUC) published a paper (the Position Paper) on May 17 recommending, among other matters, the adoption of “model clauses” for the long-term compliant use of cloud technologies....more
THE SITUATION: In recent years, cryptocurrency has presented an exciting opportunity to invest in a new asset class—at the cost of accepting certain risks. Unlike traditional financial assets, cryptocurrency has lacked...more
Over 95% of Anti Money Laundering (AML) alerts are false positives. Despite this, today’s under-staffed and under-resourced institutions continue to use outdated, reactive, and expensive systems for AML monitoring. This...more