Current Issue Headlines
Vol. 4, No. 38 (Nov. 14, 2018)
Print This Issue
-
A Roadmap to Preparing for and Managing a Cyber Investigation
A successful cyber investigation starts before an incident with creating an effective incident response plan and fostering strong relationships between legal and information security teams to set the foundation for tackling the challenges that arise once an investigation has begun. In this guide, we provide a roadmap to help companies ensure they take a successful approach to preparing for and managing a cyber investigation. See “Managing Cyber Investigations: A CISO and In-House Counsel Discuss Best Practices for Real-Life Scenarios” (Jun. 20, 2018) and “Investigative Realities: Working Effectively With Forensic Firms (Part One of Two)” (May 3, 2017); Part Two (May 17, 2017).
Read full article … -
How Privacy Professionals Can Benefit Cybersecurity Programs: Practical Tips From Gap and Privacy Panacea
Privacy and security go hand in hand but, without a technical background, privacy professionals may feel unprepared to work with and provide oversight to security teams. To help overcome that hurdle, the associate general counsel of Gap Inc., and the president of Privacy Panacea, a boutique privacy advising firm, shared candid and practical tips on overseeing a cybersecurity program for non-technical privacy professionals at IAPP’s Privacy. Security. Risk. 2018 conference. For attorneys in the privacy space, “security has become much more of a legal issue,” Gap’s associate general counsel Dan Koslofsky said. See also “Tech Meets Legal Spotlight: Advice on Working With Information Security” (Jan. 11, 2017).
Read full article … -
Negotiating SaaS Agreements
Software-as-a-service, or SaaS, contracts are superseding the traditional licenses that customers received when purchasing other types of software. This article provides insight from a recent Strafford program on negotiating key provisions of SaaS contracts, including data ownership, controls over data, data security, indemnification, reps and warranties and levels of service. The program featured counsel from Microsoft, Culhane Meadows and Sycamore Legal. See also “Essential Cyber, Tech and Privacy M&A Due Diligence Considerations” (Aug. 8, 2018); and “What Lawyers Need to Know About Security Technologies and Techniques (Part Three of Three)” (Jun. 13, 2018).
Read full article … -
Former DOJ Privacy Head Joins Davis Wright Tremaine as Co-Chair of Privacy Practice
Nancy Libin, former Chief Privacy and Civil Liberties Officer at the DOJ, has joined Davis Wright Tremaine as a partner and co-chair of the firm’s privacy and security practice. For more from Davis Wright, see “What Lawyers Need to Know About Security Techniques and Technologies to Mitigate Breach Risk (Part One of Three)” (May 30, 2018); Part Two (Jun. 6, 2018); Part Three (Jun. 13, 2018).
Read full article … -
Former SEC Deputy Director Joins Steptoe & Johnson Blockchain and Cryptocurrency Practices
Gary Goldsholle has joined Steptoe & Johnson as a partner in the firm’s financial services, public policy and blockchain and cryptocurrency practices in Washington, D.C. For more from Steptoe & Johnson, see “Gathering and Analyzing Compliance Data” (Dec. 6, 2017).
Read full article …