Current Issue Headlines
Vol. 4, No. 24 (Aug. 8, 2018)
Print This Issue
-
U.K.’s Cyber Essentials Provide a Window Into GDPR Security Infrastructure Requirements
The GDPR’s requirements were purposefully left flexible to be adaptable to many types of companies and circumstances. Sensible though the legislators’ goal of flexibility may be, it can be frustrating for data security teams to try to translate a standard into specific policies, procedures and practices, and organizations are eager to obtain prescriptive guidance. The U.K.’s Information Commissioner’s Office (ICO) has provided such guidance, and in this guest article, Hogan Lovells attorney Nathan Salminen analyzes the advice and distills the valuable insights it gives, focusing on some of the most noteworthy topics discussed including mobile devices, patching, service providers, documentation of decisions, locking down systems and devices and patching. See also “Direct From the Irish Data Commissioner: GDPR Enforcement Priorities (Part Two of Two)” (May 2, 2018).
Read full article … -
A Fund Manager’s Roadmap to Big Data: Its Acquisition and Proper Use (Part One of Three)
Given the potential predictive value of raw data, spending on big data continues to increase and is largely focused on third-party vendors. The goal is to leverage the data not only to generate alpha, but to respond to new regulatory requirements, reduce costs and assist with other operational and managerial functions. But how can fund managers successfully and economically achieve these aims? This article, the first in a three-part series, explores the big-data landscape and how fund managers can acquire and use big data. The second article will analyze issues and best practices surrounding the acquisition of material nonpublic information; web-scraping; and the quality and testability of data. The third article will discuss risks associated with data privacy, the acquisition of data from third parties and the use of drones, as well as ways fund managers can mitigate those risks. See “Tips and Warnings for Fund Managers When Navigating the Big Data Minefield” (Sep. 13, 2017).
Read full article … -
Essential Cyber, Tech and Privacy M&A Due Diligence Considerations
Evolving threats, regulatory focus and innovation require every transaction to now include some technology, privacy and cybersecurity due diligence. A target’s problems in these areas can manifest themselves in painful ways, whereas a robust infrastructure can dramatically improve value. This article covers a recent ACA Aponix program that detailed key issues to consider when reviewing cybersecurity, information technology and regulatory compliance at target and portfolio companies. See also “Effective M&A Contract Drafting and Internal Cyber Diligence and Disclosure” (Dec. 20, 2017).
Read full article … -
Global Cyber Expert Joins Greenberg Traurig As Shareholder in San Francisco
Gretchen Ramos has joined Greenberg Traurig as a shareholder in San Francisco, where her practice will focus on privacy, cybersecurity and information management. She advises a wide range of clients on compliance with state and federal U.S. laws, GDPR, APAC and other global privacy laws. For more from Greenberg Traurig, see “Federal Judge Offers Advice on Litigating Data Privacy, Security Breach and TCPA Class Action Suits” (Apr. 27, 2016).
Read full article … -
Reed Smith Deepens Bench of Healthcare Practice in New York
Reed Smith has announced its welcome of Kimberly Gold as a partner in the firm’s life sciences health industry group, and as a co-leader of the HIPAA and health privacy & security practice. Gold focuses on data privacy and cybersecurity matters, primarily for healthcare and life-sciences companies, and assists them develop and implement compliance programs. She also advises clients on compliance with the GDPR. For more from Reed Smith, see “Data Preservation and Collection During a Government Data Breach Investigation” (Apr. 5, 2017).
Read full article …