Regulations & Enforcement
- Legislation
- Investigations and Actions
- Regulatory Bodies
Jan. 16, 2019
GDPR Provides Model for Privacy and Security Laws in Latin America and Asia (Part Two of Two)
{{:ArticleIntro}}
Jan. 16, 2019
How a New Ethics Rule and Error in Manafort Case Highlight the Importance of Lawyers’ Technology Competence
{{:ArticleIntro}}
Jan. 9, 2019
GDPR Provides Model for Privacy and Security Laws in Latin America and Asia (Part One of Two)
{{:ArticleIntro}}
Jan. 9, 2019
FTC Data Security Hearing Examines M&A Cybersecurity Risks and Promoting Better Policies
{{:ArticleIntro}}
Dec. 12, 2018
Illinois Appellate Decision Creates Split on Standing to Sue Under BIPA
{{:ArticleIntro}}
Dec. 12, 2018
Understanding the Potential Implications of Pennsylvania’s Newly Recognized Common Law Duty to Protect Personal Information
{{:ArticleIntro}}
Dec. 12, 2018
Implications of a Dynamic Regulatory and Threat Environment on E.U. and U.S. Cyber Insurance Markets
{{:ArticleIntro}}
Nov. 28, 2018
SEC Officials and the Defense Bar Talk Cybersecurity Enforcement Trends and Takeaways From Recent Cases
{{:ArticleIntro}}
Nov. 7, 2018
How to Improve Risk Analysis in the Wake of the Anthem’s Record Settlement
{{:ArticleIntro}}
Oct. 31, 2018
SEC Signals That Insufficient Internal Accounting Controls May Lead to Investigation and Enforcement
{{:ArticleIntro}}
Oct. 31, 2018
How to Comply With Canada’s New Privacy Breach Reporting and Record-Keeping Rules
{{:ArticleIntro}}
Oct. 24, 2018
California Enacts Groundbreaking IoT Law and Requires Disclosure of Bot Use
{{:ArticleIntro}}
Oct. 24, 2018
Unregistered Crypto Asset Fund Hit With Multiple Securities Laws Violations by SEC
{{:ArticleIntro}}
Sep. 12, 2018
Information Sharing in the Private Sector: Lessons From the Financial Services Industry
{{:ArticleIntro}}
Sep. 12, 2018
Colorado’s Revised Cybersecurity Law Clarifies and Strengthens Existing Requirements
{{:ArticleIntro}}
Aug. 22, 2018
A Fund Manager’s Roadmap to Big Data: Privacy Concerns, Third Parties and Drones
{{:ArticleIntro}}
Aug. 15, 2018
A Fund Manager’s Roadmap to Big Data: MNPI, Web Scraping and Data Quality
{{:ArticleIntro}}
Aug. 8, 2018
U.K.’s Cyber Essentials Provide a Window Into GDPR Security Infrastructure Requirements
{{:ArticleIntro}}
Jul. 25, 2018
GDPR Essentials for the Financial Sector: Staying Compliant and Special Challenges (Part Three of Three)
{{:ArticleIntro}}
Jul. 18, 2018
GDPR Essentials for the Financial Sector: Compliance Steps (Part Two of Three)
{{:ArticleIntro}}
Jul. 18, 2018
Overcoming Barriers to Cross-Border Data Flows, Contract Provisions and Other Digital Transformation Issues
{{:ArticleIntro}}
Jul. 11, 2018
GDPR Essentials for the Financial Sector: Benchmarking and Assessing the Risks (Part One of Three)
{{:ArticleIntro}}
Jul. 11, 2018
Is Encryption Obligatory? HHS Upholds Texas Hospital $4.3M HIPPA Fine
{{:ArticleIntro}}
Jun. 27, 2018
Implementation of NIS Directive Commences Unprecedented E.U.-Wide Cybersecurity Regime
{{:ArticleIntro}}
Jun. 27, 2018
What Are the GDPR’s Implications for Alternative Investment Managers? (Part Two of Two)
{{:ArticleIntro}}
Jun. 20, 2018
What Are the GDPR’s Implications for Alternative Investment Managers? (Part One of Two)
{{:ArticleIntro}}
Jun. 13, 2018
CFTC Commissioner Encourages Formation of Self-Regulatory Organization for Cryptocurrency Spot Platforms
{{:ArticleIntro}}
May 9, 2018
How Financial Services Firms Should Structure Their Cybersecurity Programs
{{:ArticleIntro}}
May 9, 2018
The Right to Be Forgotten: English High Court Details When Google Must Delist Links to Crimes
{{:ArticleIntro}}
May 2, 2018
Direct From the Irish Data Commissioner: GDPR Enforcement Priorities (Part Two of Two)
{{:ArticleIntro}}
Apr. 25, 2018
Direct From the Irish Data Protection Commissioner: Supervising Facebook (Part One of Two)
{{:ArticleIntro}}
Apr. 18, 2018
Guidance and Clarification on Asia’s Evolving Cybersecurity and Data Protection Laws
{{:ArticleIntro}}
Apr. 11, 2018
Breaking the Cloud: CLOUD Act Brings Data Held Overseas Under U.S. Jurisdiction
{{:ArticleIntro}}
Apr. 11, 2018
Virtual Currencies Ruled Commodities Under the Commodities Exchange Act by District Court
{{:ArticleIntro}}
Mar. 28, 2018
Singapore Focuses on Critical Infrastructure With New Cybersecurity Law
{{:ArticleIntro}}
Mar. 28, 2018
Beware of False Friends: A Hedge Fund Manager’s Guide to Social Engineering Fraud
{{:ArticleIntro}}
Mar. 28, 2018
EY Global Data Analytics Survey Finds Lack of GDPR Preparedness and Need for Cross-Functional Collaboration
{{:ArticleIntro}}
Mar. 14, 2018
FTC Enters Into Stiff Settlement With PayPal for Venmo’s Deceptive Practices, but Eases up on a 2009 Sears Order
{{:ArticleIntro}}
Feb. 28, 2018
How South Korea Regulates Cryptocurrency and Why U.S. Lawyers and Investors Should Take Notice
{{:ArticleIntro}}
Feb. 28, 2018
Financial Firms Must Supervise Their IT Providers to Avoid CFTC Enforcement Action
{{:ArticleIntro}}
Feb. 14, 2018
NY AG and HHS Flex Regulatory Muscles in Recent Protected Health Information Breach Settlements
{{:ArticleIntro}}
Feb. 14, 2018
Dynamic Regulations and Shareholder Actions Guide the Board’s Shifting Role in Cyber (Part Two of Two)
{{:ArticleIntro}}
Feb. 14, 2018
Virtual Currencies Present Significant Risk and Opportunity, Demanding Focus From Regulators, According to CFTC Chair
{{:ArticleIntro}}
Jan. 31, 2018
Dynamic Regulations and Shareholder Actions Guide the Board’s Shifting Role in Cyber (Part One of Two)
{{:ArticleIntro}}
Jan. 31, 2018
Lessons and Trends From FTC’s 2017 Privacy and Data Security Update: Enforcement Actions (Part One of Two)
{{:ArticleIntro}}
Jan. 31, 2018
Biometric Data Protection Laws and Litigation Strategies (Part One of Two)
{{:ArticleIntro}}
Jan. 17, 2018
Deadline Passes for DOD Contractors and Subcontractors to Provide “Adequate Security”: Are They Ready?
{{:ArticleIntro}}
Jan. 17, 2018
How Blockchain Will Continue to Revolutionize the Private Funds Sector in 2018
{{:ArticleIntro}}
Dec. 20, 2017
Five Months Until GDPR Enforcement: Addressing Tricky Questions and Answers
{{:ArticleIntro}}
Dec. 20, 2017
Electronic Signatures: Implementation Considerations for the Financial Sector (Part Two of Two)
{{:ArticleIntro}}
Dec. 6, 2017
Electronic Signatures: Implementation Considerations for the Financial Sector (Part One of Two)
{{:ArticleIntro}}
Nov. 22, 2017
Getting to Know the DPO and How to Adapt Corporate Structure to Comply With GDPR Requirements for the Role
{{:ArticleIntro}}
Nov. 22, 2017
A Discussion With Ireland’s Data Protection Commissioner Helen Dixon About GDPR Compliance Strategies
{{:ArticleIntro}}
Nov. 22, 2017
European Data Protection Supervisor Offers Advice on Privacy Shield Review and GDPR Preparation
{{:ArticleIntro}}
Nov. 22, 2017
E.U. Data Regulators Weigh in on GDPR Prep in Asia and Across the Globe
{{:ArticleIntro}}
Nov. 8, 2017
E.U. Data Regulators Weigh in on GDPR Prep in Asia and Across the Globe
{{:ArticleIntro}}
Oct. 11, 2017
Reconciling Data Localization Laws and the Global Flow of Information
{{:ArticleIntro}}
Sep. 27, 2017
New Criteria for Employee Monitoring Practices in Light of ECHR Decision
{{:ArticleIntro}}
Sep. 13, 2017
Focus on Children’s Privacy by FTC and Plaintiffs Calls for Prioritizing COPPA
{{:ArticleIntro}}
Aug. 23, 2017
Implications and Analysis of the E.U.-Canada Data Sharing Agreement Rejection
{{:ArticleIntro}}
Aug. 23, 2017
SEC Report Cites Cybersecurity Progress Along With Gaps in Training and Compliance
{{:ArticleIntro}}
Aug. 23, 2017
Inside Advice on the Growing Cyber Insurance Market for the Financial Sector
{{:ArticleIntro}}
Aug. 9, 2017
Overcoming the Challenges and Reaping the Benefits of Multi-Factor Authentication in the Financial Sector (Part Two of Two)
{{:ArticleIntro}}
Aug. 9, 2017
What the Financial Sector Should Know to Recognize and Combat Cyber Threats (Part Two of Two)
{{:ArticleIntro}}
Aug. 9, 2017
Nestlé Employee Convictions Highlight Interconnectivity of Chinese Data Privacy and Bribery Laws
{{:ArticleIntro}}
Aug. 9, 2017
Identifying and Managing Third-Party Cybersecurity Risks for Asset Managers
{{:ArticleIntro}}
Jul. 26, 2017
Overcoming the Challenges and Reaping the Benefits of Multi-Factor Authentication in the Financial Sector (Part One of Two)
{{:ArticleIntro}}
Jul. 12, 2017
Navigating the Intersection of ERISA Fiduciary Duties and Cybersecurity Risk
{{:ArticleIntro}}
Jul. 12, 2017
Blockchain and the Financial Services Industry: Potential Impediments to Its Eventual Adoption (Part Three of Three)
{{:ArticleIntro}}
Jul. 12, 2017
Synthesizing New York and Colorado’s Trailblazing Data Security Regulations for Financial Firms
{{:ArticleIntro}}
Jun. 28, 2017
How Financial Service Providers Can Use Blockchain to Improve Operations and Compliance (Part Two of Three)
{{:ArticleIntro}}
Jun. 28, 2017
Surveys Show Cyber Risk Remains High for Financial Services Despite Preventative Steps
{{:ArticleIntro}}
May 31, 2017
One Year Until GDPR Enforcement: Five Steps Companies Should Take Now
{{:ArticleIntro}}
May 17, 2017
Executive Order on Cybersecurity Signed Amidst Massive Worldwide Ransomware Attack
{{:ArticleIntro}}
May 3, 2017
European Data Protection Supervisor Offers Advice on Privacy Shield Review and GDPR Preparation
{{:ArticleIntro}}
May 3, 2017
SEC Officials Flesh Out Cybersecurity Enforcement and Examination Priorities (Part One of Two)
{{:ArticleIntro}}
May 3, 2017
Practical and Innovative Permissioning Within the Framework of Europe’s Upcoming Data Protection Regulations
{{:ArticleIntro}}
May 3, 2017
Infrastructure Cybersecurity Challenges: A View Through the Oil and Gas Pipeline Lens
{{:ArticleIntro}}
Apr. 5, 2017
Best Practices for Mitigating Compliance Risks When Investment Advisers Use Social Media
{{:ArticleIntro}}
Apr. 5, 2017
A Discussion With Ireland’s Data Protection Commissioner Helen Dixon About GDPR Compliance Strategies (Part Two of Two)
{{:ArticleIntro}}
Mar. 22, 2017
A Discussion With Ireland’s Data Protection Commissioner Helen Dixon About GDPR Compliance Strategies (Part One of Two)
{{:ArticleIntro}}
Mar. 8, 2017
What Covered Financial Entities Need to Know About New York’s New Cybersecurity Regulations
{{:ArticleIntro}}
Feb. 22, 2017
Lessons for Connected Devices From the FTC’s Warning Against Unexpected Data Collection
{{:ArticleIntro}}
Feb. 8, 2017
Getting to Know the DPO and How to Adapt Corporate Structure to Comply With GDPR Requirements for the Role (Part Two of Two)
{{:ArticleIntro}}
Feb. 8, 2017
How Fund Managers Can Prepare for Investor Cybersecurity Due Diligence
{{:ArticleIntro}}
Jan. 25, 2017
Getting to Know the DPO and Adapting Corporate Structure to Comply With the GDPR (Part One of Two)
{{:ArticleIntro}}
Jan. 25, 2017
Preparing to Meet the Deadlines of DFS’ Revised New York Cybersecurity Regulation
{{:ArticleIntro}}
Jan. 25, 2017
FINRA Emphasizes the Importance of Proper Electronic Record Storage in Enforcement Actions
{{:ArticleIntro}}
Jan. 11, 2017
The Sword of Damocles in the Information Age: How to Face the New Challenges Under the Chinese Cybersecurity Law
{{:ArticleIntro}}
Jan. 11, 2017
Privacy, Security Risks and Applicable Regulatory Regimes of Smart TVs
{{:ArticleIntro}}
Dec. 14, 2016
Advice From Compliance Officers on Getting the C-Suite to Show You the Money for Your Data Privacy Program
{{:ArticleIntro}}
Dec. 14, 2016
Presidential Commission Recommends Ways For Public and Private Sectors to Improve Cybersecurity
{{:ArticleIntro}}
Nov. 16, 2016
WilmerHale Attorneys Explain the Evolving Cybersecurity Environment of the Energy Sector
{{:ArticleIntro}}
Nov. 2, 2016
Navigating the Early Months of Privacy Shield Certification Amidst Uncertainty
{{:ArticleIntro}}
Oct. 19, 2016
SEC Emphasizes Protecting Information From More Than Just Cyber Threats in Deutsche Bank Case
{{:ArticleIntro}}
Oct. 19, 2016
How the Financial Services Industry Can Handle Cybersecurity Threats, Acquisition Diligence and Breach Response
{{:ArticleIntro}}
Oct. 5, 2016
FCA Director Lays Out Cybersecurity Expectations for Financial Services Firms
{{:ArticleIntro}}
Oct. 5, 2016
Examining Newly Released Privacy and Security Guidance for the Fast-Driving Development of Autonomous Cars
{{:ArticleIntro}}
Sep. 21, 2016
Steps Financial Institutions Should Take to Meet New York’s Proposed Cybersecurity Regulation
{{:ArticleIntro}}
Sep. 21, 2016
Managing Data Privacy Challenges While Conducting Due Diligence and Investigations in China (Part Two of Two)
{{:ArticleIntro}}
Sep. 7, 2016
Understanding Data Privacy and Cybersecurity in China (Part One of Two)
{{:ArticleIntro}}
Aug. 3, 2016
Procedures for Hedge Fund Managers to Safeguard Trade Secrets From Rogue Employees
{{:ArticleIntro}}
Aug. 3, 2016
Second Circuit Quashes Warrant for Microsoft to Produce Email Content Stored Overseas
{{:ArticleIntro}}
Jul. 6, 2016
Understanding the Far-Reaching Impact of Chinese State Secrets Laws on Data Flow
{{:ArticleIntro}}
Jul. 6, 2016
Enforcing Consumer Consent: FTC Focuses on Location Tracking and Children’s Privacy
{{:ArticleIntro}}
Jun. 22, 2016
Morgan Stanley Action Signals SEC’s Continued Enforcement of Safeguards Rule
{{:ArticleIntro}}
May 11, 2016
SEC Teaches Broker-Dealer a Lesson About Keeping Business Emails Secure
{{:ArticleIntro}}
Apr. 27, 2016
Federal Judge Offers Advice on Litigating Data Privacy, Security Breach and TCPA Class Action Suits
{{:ArticleIntro}}
Apr. 27, 2016
Designing Privacy Policies for Products and Devices in the Internet of Things
{{:ArticleIntro}}
Apr. 13, 2016
Ten Steps to Minimize Data Privacy and Security Risk and Maximize Compliance
{{:ArticleIntro}}
Mar. 30, 2016
Securing Connected Medical Devices to Ensure Regulatory Compliance and Customer Safety (Part One of Two)
{{:ArticleIntro}}
Mar. 30, 2016
In-House and Outside Counsel Offer Strategies for Navigating the TCPA, Avoiding Litigation and Responding to Breaches
{{:ArticleIntro}}
Mar. 30, 2016
Steps for Companies to Take This Week, This Month and This Year to Meet the Challenges of International Cyberspace Governance
{{:ArticleIntro}}
Mar. 16, 2016
How Financial Service Providers Can Address Common Cybersecurity Threats
{{:ArticleIntro}}
Mar. 2, 2016
Expert Advice on Newly Effective NFA Cybersecurity Requirements for Market Participants
{{:ArticleIntro}}
Mar. 2, 2016
Synthesizing Breach Notification Laws in the U.S. and Across the Globe
{{:ArticleIntro}}
Feb. 17, 2016
HIPAA Privacy Rule Permits Disclosures to Firearm Background Check System
{{:ArticleIntro}}
Feb. 17, 2016
Legal and Regulatory Expectations for Mobile Device Privacy and Security (Part Two of Two)
{{:ArticleIntro}}
Feb. 3, 2016
Legal and Regulatory Expectations for Mobile Device Privacy and Security (Part One of Two)
{{:ArticleIntro}}
Jan. 20, 2016
What OFAC’s New Cyber-Related Sanctions Regulations Mean for Companies
{{:ArticleIntro}}
Jan. 6, 2016
FTC Director Analyzes Its Most Significant 2015 Cyber Cases and Provides a Sneak Peek Into 2016
{{:ArticleIntro}}
Jan. 6, 2016
Keeping Up with Technology and Regulatory Changes in Online Advertising to Mitigate Risks
{{:ArticleIntro}}
Jan. 6, 2016
Cybersecurity and Whistleblowing Converge in a New Wave of SEC Activity
{{:ArticleIntro}}
Jan. 6, 2016
Opportunities and Challenges of the Long-Awaited Cybersecurity Act of 2015
{{:ArticleIntro}}
Dec. 9, 2015
Year-End HIPAA Settlements May Signal More Aggressive Enforcement by HHS
{{:ArticleIntro}}
Nov. 11, 2015
New NFA Notice Provides Cybersecurity Guidance to Futures and Derivatives Market
{{:ArticleIntro}}
Nov. 11, 2015
California Law Enforcement Faces Higher Bar in Acquiring Electronic Information
{{:ArticleIntro}}
Oct. 28, 2015
Orrick Attorneys Explain California’s New Specific Standards for Breach Notification
{{:ArticleIntro}}
Oct. 28, 2015
Privacy and Data Security Considerations for Life Sciences and Health Technology Companies (Part Two of Two)
{{:ArticleIntro}}
Oct. 28, 2015
MasterCard and U.S. Bancorp Execs Share Tips for Awareness and Prevention of Mushrooming Cyber Risk (Part Two of Two)
{{:ArticleIntro}}
Oct. 28, 2015
How the Department of Commerce Can Help Companies Address Cybersecurity and Corruption Concerns
{{:ArticleIntro}}
Oct. 28, 2015
Federal Courts Offer a Modern Interpretation of the VHS-Era Video Privacy Protection Act
{{:ArticleIntro}}
Oct. 14, 2015
MasterCard and U.S. Bancorp Execs Share Tips for Awareness and Prevention of Mushrooming Cyber Risk (Part One of Two)
{{:ArticleIntro}}
Oct. 14, 2015
Privacy and Data Security Considerations for Life Sciences and Health Technology Companies (Part One of Two)
{{:ArticleIntro}}
Sep. 30, 2015
Investment Adviser Penalized for Weak Cyber Polices; OCIE Issues Investor Alert
{{:ArticleIntro}}
Sep. 30, 2015
What the OCIE Cybersecurity Risk Alert Means for Investment Advisers and Broker-Dealers
{{:ArticleIntro}}
Sep. 16, 2015
How the Legal Industry Is Sharing Information to Combat Cyber Threats
{{:ArticleIntro}}
Sep. 16, 2015
Learning from the Target Data Breach About Effective Third-Party Risk Management (Part One of Two)
{{:ArticleIntro}}
Aug. 26, 2015
The Development of E-Currency and Its Potential Impact on the Future
{{:ArticleIntro}}
Aug. 12, 2015
Can an Employee Be Liable for Inadvertently Providing Security Details to a Fraudulent Caller?
{{:ArticleIntro}}
Jul. 15, 2015
Understanding and Mitigating Liability Under the Children’s Online Privacy Protection Act
{{:ArticleIntro}}
Jul. 1, 2015
Coordinating Legal and Security Teams in the Current Cybersecurity Landscape (Part One of Two)
{{:ArticleIntro}}
Jul. 1, 2015
Regulatory Compliance and Practical Elements of Cybersecurity Testing for Fund Managers (Part Two of Two)
{{:ArticleIntro}}
Jul. 1, 2015
SEC Commissioner Says Public-Private Partnership Is Key to Effective Cybersecurity
{{:ArticleIntro}}
Jul. 1, 2015
What Companies Need to Know About the FCC’s Actions Against Unwanted Calls and Texts
{{:ArticleIntro}}
Jun. 17, 2015
Regulatory Compliance and Practical Elements of Cybersecurity Testing for Fund Managers (Part One of Two)
{{:ArticleIntro}}
Jun. 3, 2015
Navigating Data Breaches and Regulatory Compliance for Employee Benefit Plans
{{:ArticleIntro}}
May 20, 2015
Analyzing and Mitigating Cybersecurity Risks to Investment Managers (Part Two of Two)
{{:ArticleIntro}}
May 20, 2015
After a Cyber Breach, What Laws Are in Play and Who Is Enforcing Them?
{{:ArticleIntro}}
May 6, 2015
Gibson Dunn Attorneys Discuss the Impact of Obama’s Executive Order Creating New Tools to Fight Cyber Attacks
{{:ArticleIntro}}
May 6, 2015
Analyzing and Mitigating Cybersecurity Threats to Investment Managers (Part One of Two)
{{:ArticleIntro}}
Apr. 22, 2015
Debunking Cybersecurity Myths and Setting Program Goals for the Financial Services Industry
{{:ArticleIntro}}
Apr. 8, 2015
ECJ Hearing on Safe Harbor Challenges How U.S. Companies Handle European Data
{{:ArticleIntro}}
Jan. 9, 2019
FTC Data Security Hearing Examines M&A Cybersecurity Risks and Promoting Better Policies
{{:ArticleIntro}}
Dec. 5, 2018
Answers to Four Critical Questions on Privilege in Internal Investigations
{{:ArticleIntro}}
Nov. 28, 2018
SEC Officials and the Defense Bar Talk Cybersecurity Enforcement Trends and Takeaways From Recent Cases
{{:ArticleIntro}}
Nov. 7, 2018
How to Improve Risk Analysis in the Wake of the Anthem’s Record Settlement
{{:ArticleIntro}}
Oct. 31, 2018
SEC Signals That Insufficient Internal Accounting Controls May Lead to Investigation and Enforcement
{{:ArticleIntro}}
Oct. 24, 2018
Unregistered Crypto Asset Fund Hit With Multiple Securities Laws Violations by SEC
{{:ArticleIntro}}
Oct. 3, 2018
Lax Privacy Policies, Security Measures and Vendor Oversight Lead to FTC Settlement for Mobile Phone Manufacturer
{{:ArticleIntro}}
Jul. 25, 2018
Implications of the Supreme Court’s Carpenter Decision on the Treatment of Cellphone Location Records
{{:ArticleIntro}}
Jul. 11, 2018
Is Encryption Obligatory? HHS Upholds Texas Hospital $4.3M HIPPA Fine
{{:ArticleIntro}}
Jun. 20, 2018
Managing Cyber Investigations: A CISO and In-House Counsel Discuss Best Practices for Real-Life Scenarios
{{:ArticleIntro}}
Jun. 13, 2018
The Devil Is in the Details: LabMD Imposes Limitations on the FTC’s Enforcement Authority
{{:ArticleIntro}}
May 9, 2018
How Financial Services Firms Should Structure Their Cybersecurity Programs
{{:ArticleIntro}}
May 2, 2018
Lessons on Litigation Privilege in Internal Investigations from the U.K.’s Bilta v. Royal Bank of Scotland Case
{{:ArticleIntro}}
Mar. 28, 2018
FTC Recommends Greater Transparency, Better Recordkeeping and Further Streamlining of Mobile Security Practices
{{:ArticleIntro}}
Mar. 14, 2018
FTC Enters Into Stiff Settlement With PayPal for Venmo’s Deceptive Practices, but Eases up on a 2009 Sears Order
{{:ArticleIntro}}
Feb. 28, 2018
Financial Firms Must Supervise Their IT Providers to Avoid CFTC Enforcement Action
{{:ArticleIntro}}
Feb. 28, 2018
FCA Head of Technology Outlines Regulator’s Cybersecurity Expectations and Three Key Lessons
{{:ArticleIntro}}
Feb. 14, 2018
Lessons and Trends From FTC’s 2017 Privacy and Data Security Update: Workshops and Guidance (Part Two of Two)
{{:ArticleIntro}}
Feb. 14, 2018
NY AG and HHS Flex Regulatory Muscles in Recent Protected Health Information Breach Settlements
{{:ArticleIntro}}
Jan. 31, 2018
Lessons and Trends From FTC’s 2017 Privacy and Data Security Update: Enforcement Actions (Part One of Two)
{{:ArticleIntro}}
Jan. 31, 2018
Biometric Data Protection Laws and Litigation Strategies (Part One of Two)
{{:ArticleIntro}}
Dec. 20, 2017
Effective M&A Contract Drafting and Internal Cyber Diligence and Disclosure
{{:ArticleIntro}}
Dec. 6, 2017
Online Tax Prep Service TaxSlayer Settles FTC Allegations of Privacy and Security Rules
{{:ArticleIntro}}
Oct. 11, 2017
FTC Launches Stick With Security Series, Adding Detail and Guidance to Its Start With Security Guide (Part Two of Two)
{{:ArticleIntro}}
Sep. 27, 2017
SEC Hack Will Not Prevent It From Sharpening Cybersecurity Enforcement
{{:ArticleIntro}}
Sep. 13, 2017
Dispelling Myths About When Attorney-Client Privilege Applies to Communications With In-House Counsel
{{:ArticleIntro}}
Sep. 13, 2017
Focus on Children’s Privacy by FTC and Plaintiffs Calls for Prioritizing COPPA
{{:ArticleIntro}}
Sep. 13, 2017
FTC Launches Stick With Security Series, Adding Detail and Guidance to Its Start With Security Guide (Part One of Two)
{{:ArticleIntro}}
Aug. 9, 2017
Nestlé Employee Convictions Highlight Interconnectivity of Chinese Data Privacy and Bribery Laws
{{:ArticleIntro}}
May 31, 2017
Takeaways From State AGs’ Record-Breaking Target Data Breach Settlement
{{:ArticleIntro}}
May 17, 2017
SEC Officials Flesh Out Cybersecurity Enforcement and Examination Priorities (Part Two of Two)
{{:ArticleIntro}}
May 3, 2017
SEC Officials Flesh Out Cybersecurity Enforcement and Examination Priorities (Part One of Two)
{{:ArticleIntro}}
Apr. 19, 2017
Goodbye to the Blame Game: Forging the Connection Between Companies and Law Enforcement in Incident Response
{{:ArticleIntro}}
Apr. 19, 2017
How to Walk the Tightrope of Cooperation and Privilege When Facing Government Investigations and Parallel Litigation
{{:ArticleIntro}}
Apr. 5, 2017
Multimillion-Dollar Scheme Serves As Backdrop for Lessons on Preventing and Mitigating Phishing Attacks
{{:ArticleIntro}}
Apr. 5, 2017
Best Practices for Mitigating Compliance Risks When Investment Advisers Use Social Media
{{:ArticleIntro}}
Apr. 5, 2017
Data Preservation and Collection During a Government Data Breach Investigation
{{:ArticleIntro}}
Mar. 22, 2017
Assessing Regulatory Responsibility When Reporting Postmarket Cybersecurity “Corrections” to the FDA
{{:ArticleIntro}}
Feb. 22, 2017
Lessons for Connected Devices From the FTC’s Warning Against Unexpected Data Collection
{{:ArticleIntro}}
Jan. 25, 2017
FINRA Emphasizes the Importance of Proper Electronic Record Storage in Enforcement Actions
{{:ArticleIntro}}
Jan. 25, 2017
FTC Data Security Enforcement Year-In-Review: Do We Know What “Reasonable” Security Is Yet?
{{:ArticleIntro}}
Nov. 30, 2016
Attorney-Consultant Privilege? Structuring and Implementing the Kovel Arrangement (Part Two of Two)
{{:ArticleIntro}}
Nov. 30, 2016
How to Respond to Law Enforcement Demands for Geolocation Data and Data Stored Abroad
{{:ArticleIntro}}
Nov. 16, 2016
Attorney-Consultant Privilege? Key Considerations for Invoking the Kovel Doctrine (Part One of Two)
{{:ArticleIntro}}
Nov. 16, 2016
Complying With New Rules as the FCC Forges Its Role in Privacy and Data Security
{{:ArticleIntro}}
Nov. 2, 2016
Demystifying the FTC’s Reasonableness Requirement in the Context of the NIST Cybersecurity Framework (Part Two of Two)
{{:ArticleIntro}}
Nov. 2, 2016
FBI Veteran Discusses Using Law Enforcement’s Cyber Resources to Improve Security and Obtain Board Buy-In
{{:ArticleIntro}}
Oct. 19, 2016
Demystifying the FTC’s Reasonableness Requirement in the Context of the NIST Cybersecurity Framework (Part One of Two)
{{:ArticleIntro}}
Oct. 19, 2016
SEC Emphasizes Protecting Information From More Than Just Cyber Threats in Deutsche Bank Case
{{:ArticleIntro}}
Oct. 5, 2016
FCA Director Lays Out Cybersecurity Expectations for Financial Services Firms
{{:ArticleIntro}}
Sep. 21, 2016
Managing Data Privacy Challenges While Conducting Due Diligence and Investigations in China (Part Two of Two)
{{:ArticleIntro}}
Aug. 3, 2016
Key Post-Breach Shareholder Litigation, Disclosure and Insurance Selection Considerations
{{:ArticleIntro}}
Aug. 3, 2016
Six State Secrets and Data Privacy Considerations in Chinese Internal Investigations
{{:ArticleIntro}}
Jul. 6, 2016
Law Enforcement on Cybersecurity Matters: Corporate Friend or Foe? (Part Two of Two)
{{:ArticleIntro}}
Jul. 6, 2016
Enforcing Consumer Consent: FTC Focuses on Location Tracking and Children’s Privacy
{{:ArticleIntro}}
Jul. 6, 2016
Understanding the Far-Reaching Impact of Chinese State Secrets Laws on Data Flow
{{:ArticleIntro}}
Jun. 22, 2016
Morgan Stanley Action Signals SEC’s Continued Enforcement of Safeguards Rule
{{:ArticleIntro}}
Jun. 22, 2016
Law Enforcement on Cybersecurity Matters: Corporate Friend or Foe? (Part One of Two)
{{:ArticleIntro}}
Jun. 22, 2016
How to Avoid Common Mistakes and Manage the First 48 Hours Post-Breach
{{:ArticleIntro}}
Jun. 8, 2016
Eight Attributes In-House Counsel Look For in Outside Cybersecurity Counsel
{{:ArticleIntro}}
May 25, 2016
Key Considerations for Public Companies for Mitigating and Disclosing Cybersecurity Risks
{{:ArticleIntro}}
May 25, 2016
Foreign Attorneys Share Insight on Data Privacy and Privilege in Multinational Investigations
{{:ArticleIntro}}
May 11, 2016
SEC Teaches Broker-Dealer a Lesson About Keeping Business Emails Secure
{{:ArticleIntro}}
Apr. 27, 2016
Regulators Speak Candidly About Cybersecurity Trends, Priorities and Coordination
{{:ArticleIntro}}
Apr. 13, 2016
Ten Steps to Minimize Data Privacy and Security Risk and Maximize Compliance
{{:ArticleIntro}}
Apr. 13, 2016
Securing Connected Medical Devices to Ensure Regulatory Compliance and Customer Safety (Part Two of Two)
{{:ArticleIntro}}
Apr. 13, 2016
Picking up the Pieces After a Cyber Attack and Understanding Sources of Liability
{{:ArticleIntro}}
Apr. 13, 2016
The Regulators’ View of Best Practices for Social Media and Mobile Apps
{{:ArticleIntro}}
Mar. 30, 2016
Securing Connected Medical Devices to Ensure Regulatory Compliance and Customer Safety (Part One of Two)
{{:ArticleIntro}}
Mar. 16, 2016
FCC Flexes Its Muscles With Proposed Broadband Privacy Rules and Verizon Settlement
{{:ArticleIntro}}
Mar. 2, 2016
Prosecuting Borderless Cyber Crime Through Proactive Law Enforcement and Private Sector Cooperation
{{:ArticleIntro}}
Mar. 2, 2016
Synthesizing Breach Notification Laws in the U.S. and Across the Globe
{{:ArticleIntro}}
Feb. 3, 2016
So, You Just Got a Letter From the FTC: A Guide for Attorneys (Part Two of Two)
{{:ArticleIntro}}
Feb. 3, 2016
The FTC’s Big Data Report Helps Companies Maximize Benefits While Staying Compliant
{{:ArticleIntro}}
Feb. 3, 2016
Legal and Regulatory Expectations for Mobile Device Privacy and Security (Part One of Two)
{{:ArticleIntro}}
Jan. 20, 2016
So, You Just Got a Letter From the FTC: A Guide for Attorneys (Part One of Two)
{{:ArticleIntro}}
Jan. 6, 2016
FTC Director Analyzes Its Most Significant 2015 Cyber Cases and Provides a Sneak Peek Into 2016
{{:ArticleIntro}}
Jan. 6, 2016
Cybersecurity and Whistleblowing Converge in a New Wave of SEC Activity
{{:ArticleIntro}}
Dec. 9, 2015
Avoiding Privacy Pitfalls While Using Social Media for Internal Investigations
{{:ArticleIntro}}
Dec. 9, 2015
Proactive Steps to Protect Your Company in Anticipation of Future Data Security Litigation (Part Two of Two)
{{:ArticleIntro}}
Dec. 9, 2015
Year-End HIPAA Settlements May Signal More Aggressive Enforcement by HHS
{{:ArticleIntro}}
Nov. 25, 2015
Proactive Steps to Protect Your Company in Anticipation of Future Data Security Litigation (Part One of Two)
{{:ArticleIntro}}
Nov. 25, 2015
FTC Chair Addresses the Agency’s Data Privacy Concerns with Cross-Device Tracking
{{:ArticleIntro}}
Nov. 11, 2015
Target Privilege Decision Delivers Guidance for Post-Data Breach Internal Investigations
{{:ArticleIntro}}
Nov. 11, 2015
California Law Enforcement Faces Higher Bar in Acquiring Electronic Information
{{:ArticleIntro}}
Sep. 30, 2015
What the OCIE Cybersecurity Risk Alert Means for Investment Advisers and Broker-Dealers
{{:ArticleIntro}}
Sep. 30, 2015
Investment Adviser Penalized for Weak Cyber Polices; OCIE Issues Investor Alert
{{:ArticleIntro}}
Sep. 16, 2015
Tackling Cybersecurity and Data Privacy Issues in Mergers and Acquisitions (Part One of Two)
{{:ArticleIntro}}
Sep. 16, 2015
Examining Evolving Legal Ethics in the Age of the Cloud, Mobile Devices and Social Media (Part Two of Two)
{{:ArticleIntro}}
Aug. 26, 2015
In the Wyndham Case, the Third Circuit Gives the FTC a Green Light to Regulate Cybersecurity Practices
{{:ArticleIntro}}
Aug. 26, 2015
Meeting Expectations for SEC Disclosures of Cybersecurity Risks and Incidents (Part Two of Two)
{{:ArticleIntro}}
Aug. 12, 2015
Meeting Expectations for SEC Disclosures of Cybersecurity Risks and Incidents (Part One of Two)
{{:ArticleIntro}}
Jul. 29, 2015
Analyzing and Complying with Cyber Law from Different Vantage Points (Part Two of Two)
{{:ArticleIntro}}
Jul. 15, 2015
Conflicting Views of Safety, Vulnerability and Privacy Fuel Encryption Debate
{{:ArticleIntro}}
Jul. 15, 2015
The FTC Asserts Its Jurisdiction and Provides Ten Steps to Enhance Cybersecurity
{{:ArticleIntro}}
Jul. 15, 2015
Understanding and Mitigating Liability Under the Children’s Online Privacy Protection Act
{{:ArticleIntro}}
Jul. 1, 2015
Cybersecurity and Information Governance Considerations in Mergers and Acquisitions
{{:ArticleIntro}}
Jul. 1, 2015
Regulatory Compliance and Practical Elements of Cybersecurity Testing for Fund Managers (Part Two of Two)
{{:ArticleIntro}}
Jul. 1, 2015
SEC Commissioner Says Public-Private Partnership Is Key to Effective Cybersecurity
{{:ArticleIntro}}
Jul. 1, 2015
Preserving Privilege Before and After a Cybersecurity Incident (Part Two of Two)
{{:ArticleIntro}}
Jul. 1, 2015
What Companies Need to Know About the FCC’s Actions Against Unwanted Calls and Texts
{{:ArticleIntro}}
Jun. 17, 2015
Model Cybersecurity Contract Terms and Guidance for Investment Managers to Manage Their Third-Party Vendors
{{:ArticleIntro}}
Jun. 17, 2015
Regulatory Compliance and Practical Elements of Cybersecurity Testing for Fund Managers (Part One of Two)
{{:ArticleIntro}}
Jun. 17, 2015
Preserving Privilege Before and After a Cybersecurity Incident (Part One of Two)
{{:ArticleIntro}}
Jun. 3, 2015
Private and Public Sector Perspectives on Producing Data to the Government
{{:ArticleIntro}}
May 20, 2015
Weil Gotshal Attorneys Advise on Key Ways to Anticipate and Counter Cyber Threats
{{:ArticleIntro}}
May 20, 2015
After a Cyber Breach, What Laws Are in Play and Who Is Enforcing Them?
{{:ArticleIntro}}
May 6, 2015
Analyzing and Mitigating Cybersecurity Threats to Investment Managers (Part One of Two)
{{:ArticleIntro}}
Apr. 22, 2015
Debunking Cybersecurity Myths and Setting Program Goals for the Financial Services Industry
{{:ArticleIntro}}
Apr. 22, 2015
FCC Makes Its Mark on Cybersecurity Enforcement with Record Data Breach Settlement
{{:ArticleIntro}}
FTC
Aug. 1, 2018
Staying Current With Geolocation Restrictions
Oct. 25, 2017
Privacy Shield Survives First Annual Review
Jan. 11, 2017
FTC Priorities for 2017 and Beyond
Aug. 24, 2016
Takeaways From the FTC’s Revival of the LabMD Action
Nov. 25, 2015
FTC Loses Its First Data Security Case
Nov. 11, 2015
Liability Lessons from Data Breach Enforcement Actions
DOJ
FBI
FCC
SEC
Oct. 10, 2018
Lessons From the SEC’s First Red Flags Rule Settlement
Jul. 26, 2017
How the CCO Can Use SEC Guidance to Tackle Cyber Threats
State Attorneys General
Nov. 28, 2018
The Growing Role of State AGs in Privacy Enforcement
Nov. 11, 2015
Liability Lessons from Data Breach Enforcement Actions
Most-Read Articles
-
Jan. 2, 2019
The Cybersecurity Law Report’s Most-Read Articles of 2018 -
Jan. 9, 2019
Ten Cyber and Privacy Resolutions for the New Year -
Jan. 9, 2019
GDPR Provides Model for Privacy and Security Laws in Latin America and Asia (Part One of Two) -
Jan. 16, 2019
Key Cyber Threats and Targets for 2019 -
Jan. 16, 2019
GDPR Provides Model for Privacy and Security Laws in Latin America and Asia (Part Two of Two)
Webinar: Building a Strong Relationship Between Privacy and Information Security Teams for Effective Data Protection
Join the Cybersecurity Law Report on January 24, 2019, from 12:00pm-1:00pm EST, for a complimentary webinar about how privacy and security professionals can effectively coordinate for strong data protection programs. Dan Koslofsky, associate general counsel at Gap Inc., and Aaron Weller, co-founder and strategy VP for Sentinel LLC, will join the Cybersecurity Law Report’s Jill Abitbol to discuss, among other topics, the evolving roles of privacy and security professionals and practical examples of best practices for successful communication and coordination of efforts. Registration information is here.