Data Security
- Risk Mitigation
- Incident Response
- Litigation
Oct. 2, 2024
How to Manage AI Procurement: Five Steps
Sep. 18, 2024
How to Manage AI Procurement: Leadership and Preparation
Aug. 7, 2024
How Privacy Efforts Can Boost Revenue
Jul. 31, 2024
Challenges, Risks and Future of the CISO Role
Jun. 26, 2024
A Mock Cyber Incident Tabletop: Day Two and Beyond
May 15, 2024
Applying AI in Information Security
Apr. 17, 2024
AI Governance Strategies for Privacy Pros
Mar. 20, 2024
AI Drives Rise in Private Funds’ Use of Alternative Data
Jan. 24, 2024
Emerging Cyber Threats and Defenses
Jan. 10, 2024
Ten Cybersecurity Resolutions for 2024
Dec. 6, 2023
Dos and Don’ts for Employee Use of Generative AI
Nov. 15, 2023
Navigating NIST’s AI Risk Management Framework
Nov. 8, 2023
Understanding the Growing Use of PETs
Nov. 1, 2023
Checklist for Selecting Privacy Tech Solutions
Nov. 1, 2023
Compliance Challenges in Records Management
Oct. 4, 2023
Considerations for Managing Third-Party Cyber Risks
Sep. 27, 2023
The Good, Bad and Ugly of Summer’s Cyber Incidents
Aug. 16, 2023
Checklist for Framing and Assessing Third-Party Risk
Aug. 16, 2023
Why Companies Unintentionally Fail to Honor Opt-Outs
Jul. 12, 2023
SEC Remains Focused on Off-Channel Communications
Jun. 14, 2023
Messaging Apps Come Under Increasing Regulatory Scrutiny
May 31, 2023
How CPOs Communicate Privacy’s Value to the Board
Mar. 1, 2023
Getting Used to Zero Trust? Meet Zero Copy
Feb. 8, 2023
AI Governance Gets Real: Core Compliance Strategies
Nov. 30, 2022
Understanding and Implementing Privacy Audits
Oct. 26, 2022
Takeaways From the New Push for a Federal AI Law
Sep. 14, 2022
Shaping the BIPA Landscape: Avoiding Liability
Aug. 10, 2022
Protecting Against Crypto Theft
Jul. 13, 2022
New AI Rules: Five Compliance Takeaways
Jun. 15, 2022
New AI Rules: NYC First to Mandate Audit
May 4, 2022
Effective Use of Privacy Impact Assessments
Jan. 26, 2022
Lessons From SolarWinds
Jan. 19, 2022
Privacy Resolutions for 2022
Jan. 12, 2022
Cybersecurity Resolutions for 2022
Dec. 15, 2021
Understanding Differential Privacy
Dec. 15, 2021
A Guide to Privacy Frameworks: Finding the Best Fit
Dec. 8, 2021
A Guide to Privacy Frameworks: Examining Options
Nov. 17, 2021
Data Localization: Cybersecurity Challenges Abound
Nov. 3, 2021
Data Localization: Laws Spread and Enforcement Rises
Oct. 27, 2021
IOSCO Issues Final Guidance on AI and Machine Learning
Sep. 22, 2021
Jacki Cheslow on IEEE’s Remote Program Assessment
Sep. 15, 2021
Essential Technology Contract Elements
Jul. 28, 2021
Incident Response in the Financial Services Industry
Apr. 28, 2021
AI Compliance Playbook: Understanding Algorithm Audits
Feb. 17, 2021
A Fake Zoom Invite Hack: Eight More Lessons
Feb. 10, 2021
A Fake Zoom Invite Hack: What Happened and Three Lessons
Jan. 20, 2021
Privacy Resolutions for 2021
Jan. 13, 2021
Checklist for IoT Security Audits
Jan. 13, 2021
Cybersecurity Resolutions for 2021
Nov. 4, 2020
A Guided Tour of Enterprise IoT Device Hazards
Jun. 17, 2020
The Current State and Future of AI Regulation
Apr. 8, 2020
Wide-Ranging Lessons From Notable Breaches in Q1
Apr. 1, 2020
When Do Force Majeure Clauses Excuse Performance?
Mar. 11, 2020
The Keys to Encryption: Legal and Regulatory Framework
Mar. 11, 2020
Privacy and Cyber Due Diligence in M&A Transactions
Feb. 12, 2020
Compliance Records Are a Strategic Gold Mine
Dec. 11, 2019
Not Just GDPR: Examining the Other European Privacy Laws
Dec. 11, 2019
How to Handle E.U. Data Subject Access Requests
Oct. 23, 2019
CFTC Issues $1.5-Million Fine After Phishing Attack
Sep. 11, 2019
Using “Red-Teaming” to Test and Improve Cyber Defenses
Jul. 17, 2019
Maine Enacts Sweeping Broadband Customer Privacy Law
Jun. 26, 2019
Preparing for the Latest SEC Cyber Sweeps
May 15, 2019
What Does It Mean to Be Technologically Competent?
Apr. 3, 2019
FCA Evaluates Firms’ Cyber Resilience
Mar. 13, 2019
Mitigating the Risks of Open-Source Software
Feb. 20, 2019
Fixing the Chinks in Companies’ Cyber Armor: Executives
Jan. 9, 2019
Ten Cyber and Privacy Resolutions for the New Year
Nov. 14, 2018
Negotiating SaaS Agreements
Oct. 10, 2018
Lessons From the SEC’s First Red Flags Rule Settlement
Sep. 26, 2018
Five Takeaways From the Fiserv Wake-Up Call
Mar. 28, 2018
Evaluating Cybersecurity Coverage in Light of the GDPR
Mar. 14, 2018
Developing an Effective Third-Party Management Program
Mar. 14, 2018
How Will the GDPR Affect Due Diligence?
Oct. 25, 2017
How to Outsource Vulnerability Assessments to Hackers
Sep. 13, 2017
Negotiating an Effective Cloud Service Agreement
Jun. 14, 2017
How Internal Audit Can Improve Cybersecurity
Jun. 14, 2017
Navigating the Evolving Cyber Insurance Market
May 31, 2017
Advice on Incorporating Cybersecurity in eDiscovery
May 17, 2017
Tracking Data and Maximizing Its Potential
Apr. 19, 2017
How to Ensure Cyber Risks Do Not Derail an IPO
Jan. 11, 2017
Ten Cybersecurity Priorities for 2017
Nov. 30, 2016
New NIST and DHS IoT Guidance Signal Regulatory Growth
Sep. 21, 2016
Staying Cybersecure Without Mobile Device Management
Aug. 24, 2016
Cybersecurity Due Diligence in M&A Is No Longer Optional
Jul. 20, 2016
Using Data Analytics to Combat Internal Cyber Threats
Jun. 8, 2016
Minimizing Class Action Risk in Breach Response
Feb. 17, 2016
Cybersecurity Preparedness Is Now a Business Requirement
Apr. 8, 2015
Ten Actions for Effective Data Risk Management
Jun. 26, 2024
A Mock Cyber Incident Tabletop: Day Two and Beyond
May 15, 2024
Applying AI in Information Security
May 1, 2024
Navigating Ransomware’s Challenges
Feb. 14, 2024
Mitigating CISO Personal Liability Post-SolarWinds
Jan. 24, 2024
Emerging Cyber Threats and Defenses
Jan. 10, 2024
Ten Cybersecurity Resolutions for 2024
Sep. 27, 2023
The Good, Bad and Ugly of Summer’s Cyber Incidents
Apr. 26, 2023
Ransomware Incident Response Checklist
Nov. 9, 2022
Lessons From the Conviction of Uber’s Former CISO
Aug. 10, 2022
Protecting Against Crypto Theft
Jun. 29, 2022
Navigating the Intersection of Digital Assets and AML
May 25, 2022
Ransomware and Sanctions in the Time of War
Jan. 26, 2022
Lessons From SolarWinds
Jan. 12, 2022
Cybersecurity Resolutions for 2022
Oct. 27, 2021
IOSCO Issues Final Guidance on AI and Machine Learning
Jul. 28, 2021
Incident Response in the Financial Services Industry
Jun. 9, 2021
To “Cure” or Not to “Cure,” That Is the Question
Feb. 17, 2021
A Fake Zoom Invite Hack: Eight More Lessons
Feb. 10, 2021
A Fake Zoom Invite Hack: What Happened and Three Lessons
Jan. 20, 2021
Disputed Twitter Fine Offers Breach Response Lessons
Jan. 13, 2021
Checklist for IoT Security Audits
Jan. 13, 2021
Cybersecurity Resolutions for 2021
Nov. 4, 2020
A Guided Tour of Enterprise IoT Device Hazards
Oct. 28, 2020
Ten Tips for Fighting Breaches Like Fires
Sep. 23, 2020
Identifying and Preventing Ransomware Attacks
Sep. 9, 2020
Action Steps to Respond to Ransomware Attacks
Apr. 8, 2020
Wide-Ranging Lessons From Notable Breaches in Q1
Apr. 1, 2020
When Do Force Majeure Clauses Excuse Performance?
Apr. 1, 2020
Investigation Strategies During Social Distancing
Feb. 19, 2020
Preparing for and Responding to Ransomware Attacks
Dec. 11, 2019
Not Just GDPR: Examining the Other European Privacy Laws
Oct. 23, 2019
CFTC Issues $1.5-Million Fine After Phishing Attack
Oct. 2, 2019
Preserving Customer Goodwill After a Breach
Sep. 11, 2019
Using “Red-Teaming” to Test and Improve Cyber Defenses
Jul. 31, 2019
Learning From the Equifax Settlement
Jul. 17, 2019
How to Establish an Efficient Incident Response Plan
May 29, 2019
Keeping CISOs and the C-Suite Off the Witness Stand
Feb. 20, 2019
Fixing the Chinks in Companies’ Cyber Armor: Executives
Jan. 16, 2019
Key Cyber Threats and Targets for 2019
Jan. 9, 2019
Ten Cyber and Privacy Resolutions for the New Year
Dec. 19, 2018
Ten Steps for Effective Crisis Communications
Dec. 19, 2018
Interim Response Lessons From the Marriott Breach
Sep. 26, 2018
Five Takeaways From the Fiserv Wake-Up Call
Jan. 11, 2017
Ten Cybersecurity Priorities for 2017
Jan. 11, 2017
FTC Priorities for 2017 and Beyond
Jul. 20, 2016
Checklist for an Effective Incident Response Plan
Jun. 8, 2016
Minimizing Class Action Risk in Breach Response
Feb. 17, 2016
Cybersecurity Preparedness Is Now a Business Requirement
Apr. 22, 2015
Steps to Take Following a Healthcare Data Breach
Nov. 13, 2024
Unpacking the Second Circuit’s Bombshell VPPA Ruling
Feb. 14, 2024
Mitigating CISO Personal Liability Post-SolarWinds
Mar. 22, 2023
ECJ Ruling Expands Legal Professional Privilege
Sep. 14, 2022
Shaping the BIPA Landscape: Avoiding Liability
Aug. 10, 2022
Protecting Against Crypto Theft
Mar. 16, 2022
No End in Sight: Biometrics Litigation Trends
Oct. 20, 2021
Collective Actions in the U.K. After Lloyd v. Google
Jun. 9, 2021
To “Cure” or Not to “Cure,” That Is the Question
Feb. 17, 2021
Big Questions for BIPA Case Law in 2021
Jan. 20, 2021
Disputed Twitter Fine Offers Breach Response Lessons
Jan. 22, 2020
How to Stem the Coming Tide of CCPA Private Litigation
May 29, 2019
Keeping CISOs and the C-Suite Off the Witness Stand
Jan. 30, 2019
Navigating Cloud Litigation’s Claims and Theories
Dec. 19, 2018
Interim Response Lessons From the Marriott Breach
Jan. 17, 2018
A Wake-Up Call: Data Breach Standing Is Getting Easier
Aug. 24, 2016
Takeaways From the FTC’s Revival of the LabMD Action
Jun. 8, 2016
Minimizing Class Action Risk in Breach Response
Nov. 11, 2015
Liability Lessons from Data Breach Enforcement Actions
Sep. 16, 2015
Privacy and Cybersecurity in Canada: Legal Risk Update
Most-Read Articles
-
Nov. 13, 2024
Unpacking the Second Circuit’s Bombshell VPPA Ruling -
Oct. 30, 2024
Seventh Circuit Refuses to Compel BIPA Mass Arbitration Against Samsung: Legal Analysis Breakdown -
Oct. 30, 2024
What to Know (and Do) About DOJ’s Efforts to Identify and Prosecute Cybersecurity Fraud Under the False Claims Act -
Nov. 20, 2024
SEC Charges Four Companies for Misleading Cyber Incident Disclosures: New Expectations? -
Oct. 30, 2024
Emerging Issues in Workplace Privacy: Regulations and Compliance Strategies
We Celebrate Data Privacy Day 2024
Read the full brief here.