Regulations & Enforcement
- Legislation
- Investigations and Actions
- Regulatory Bodies
Feb. 17, 2021
A Fake Zoom Invite Hack: Eight More Lessons
Feb. 10, 2021
GDPR Lives On in the U.K. Post-Brexit
Feb. 10, 2021
A Fake Zoom Invite Hack: What Happened and Three Lessons
Jan. 20, 2021
Privacy Resolutions for 2021
Jan. 20, 2021
Disputed Twitter Fine Offers Breach Response Lessons
Dec. 9, 2020
What the New IoT Act Means for the Private Sector
Sep. 23, 2020
Identifying and Preventing Ransomware Attacks
Sep. 9, 2020
Implementing the CCPA Regulations: Are You Ready?
Aug. 12, 2020
Navigating China’s Cybersecurity Regulatory Maze
May 27, 2020
Recent Developments in E.U. Cybersecurity Regulation
Mar. 25, 2020
Gauging the GDPR’s Global Reach
Mar. 11, 2020
The Keys to Encryption: Legal and Regulatory Framework
Feb. 12, 2020
How to Approach CCPA’s Under-16 Opt-In Consent
Jan. 22, 2020
How to Stem the Coming Tide of CCPA Private Litigation
Dec. 11, 2019
Not Just GDPR: Examining the Other European Privacy Laws
Dec. 11, 2019
How to Handle E.U. Data Subject Access Requests
Nov. 13, 2019
AI for Fund Managers and Beyond: Government Guidance
Oct. 23, 2019
CFTC Issues $1.5-Million Fine After Phishing Attack
Aug. 21, 2019
Examining Portugal’s GDPR Implementation Statute
Jul. 17, 2019
Maine Enacts Sweeping Broadband Customer Privacy Law
Jul. 17, 2019
How to Establish an Efficient Incident Response Plan
Jul. 10, 2019
Can GDPR Hinder AI Made in Europe?
Jul. 10, 2019
Implications of Nevada’s New Privacy Law
Jun. 26, 2019
Preparing for the Latest SEC Cyber Sweeps
Jun. 19, 2019
Kids, Privacy & Legal Compliance
Mar. 13, 2019
Mitigating the Risks of Open-Source Software
Feb. 6, 2019
Analyzing Early GDPR Enforcement: France
Jan. 30, 2019
Analyzing Early GDPR Enforcement: U.K. and Austria
Jan. 23, 2019
Analyzing Early GDPR Enforcement: Portugal and Germany
Nov. 28, 2018
The Growing Role of State AGs in Privacy Enforcement
Nov. 7, 2018
How GoDaddy Built an Effective Privacy Program
Oct. 17, 2018
Regulating AI: U.S., E.U. and Industry Laws and Guidance
Oct. 10, 2018
Lessons From the SEC’s First Red Flags Rule Settlement
Sep. 26, 2018
Five Takeaways From the Fiserv Wake-Up Call
Mar. 28, 2018
Evaluating Cybersecurity Coverage in Light of the GDPR
Mar. 14, 2018
How Will the GDPR Affect Due Diligence?
Mar. 14, 2018
Developing an Effective Third-Party Management Program
Feb. 28, 2018
The GDPR’s Data Subject Rights and Why They Matter
Feb. 14, 2018
Using Technology to Comply With the GDPR
Oct. 25, 2017
Privacy Shield Survives First Annual Review
Jul. 26, 2017
How the CCO Can Use SEC Guidance to Tackle Cyber Threats
May 17, 2017
Tracking Data and Maximizing Its Potential
Apr. 19, 2017
How to Ensure Cyber Risks Do Not Derail an IPO
Jan. 11, 2017
Ten Cybersecurity Priorities for 2017
Jan. 11, 2017
FTC Priorities for 2017 and Beyond
Nov. 16, 2016
Navigating U.S. and E.U. Cybersecurity Requirements
Jul. 20, 2016
Challenges Facing Chief Privacy Officers
Jul. 20, 2016
Key Requirements of the Newly Approved Privacy Shield
Feb. 17, 2016
Deal Struck to Maintain the Transatlantic Data Flow
Feb. 17, 2016
White House Lays Out Its Broad Cybersecurity Initiatives
Feb. 3, 2016
Safe Harbor 2.0 Agreement Reached
Nov. 11, 2015
Liability Lessons from Data Breach Enforcement Actions
Aug. 26, 2015
Seeking Solutions to Cross-Border Data Realities
Apr. 22, 2015
Steps to Take Following a Healthcare Data Breach
Jan. 20, 2021
Privacy Resolutions for 2021
Jul. 29, 2020
Remote Forensic Data Collection Steps Into the Spotlight
Apr. 1, 2020
Investigation Strategies During Social Distancing
Oct. 23, 2019
CFTC Issues $1.5-Million Fine After Phishing Attack
Jul. 31, 2019
Learning From the Equifax Settlement
Jun. 26, 2019
Preparing for the Latest SEC Cyber Sweeps
Apr. 3, 2019
FCA Evaluates Firms’ Cyber Resilience
Nov. 28, 2018
The Growing Role of State AGs in Privacy Enforcement
Oct. 10, 2018
Lessons From the SEC’s First Red Flags Rule Settlement
Aug. 1, 2018
Staying Current With Geolocation Restrictions
Mar. 14, 2018
How Will the GDPR Affect Due Diligence?
Dec. 6, 2017
Gathering and Analyzing Compliance Data
Oct. 25, 2017
Privacy Shield Survives First Annual Review
Jul. 26, 2017
How the CCO Can Use SEC Guidance to Tackle Cyber Threats
Jan. 11, 2017
FTC Priorities for 2017 and Beyond
Aug. 24, 2016
Takeaways From the FTC’s Revival of the LabMD Action
Nov. 25, 2015
FTC Loses Its First Data Security Case
Nov. 11, 2015
Liability Lessons from Data Breach Enforcement Actions
Aug. 26, 2015
Seeking Solutions to Cross-Border Data Realities
FTC
Jan. 20, 2021
Privacy Resolutions for 2021
Jul. 31, 2019
Learning From the Equifax Settlement
Aug. 1, 2018
Staying Current With Geolocation Restrictions
Oct. 25, 2017
Privacy Shield Survives First Annual Review
Jan. 11, 2017
FTC Priorities for 2017 and Beyond
Aug. 24, 2016
Takeaways From the FTC’s Revival of the LabMD Action
Nov. 25, 2015
FTC Loses Its First Data Security Case
Nov. 11, 2015
Liability Lessons from Data Breach Enforcement Actions
DOJ
FBI
FCC
SEC
Jun. 26, 2019
Preparing for the Latest SEC Cyber Sweeps
Oct. 10, 2018
Lessons From the SEC’s First Red Flags Rule Settlement
Jul. 26, 2017
How the CCO Can Use SEC Guidance to Tackle Cyber Threats
U.S. States
Jan. 20, 2021
Privacy Resolutions for 2021
Sep. 9, 2020
Implementing the CCPA Regulations: Are You Ready?
Mar. 11, 2020
The Keys to Encryption: Legal and Regulatory Framework
Feb. 12, 2020
How to Approach CCPA’s Under-16 Opt-In Consent
Jan. 22, 2020
How to Stem the Coming Tide of CCPA Private Litigation
Jul. 17, 2019
Maine Enacts Sweeping Broadband Customer Privacy Law
Jul. 10, 2019
Implications of Nevada’s New Privacy Law
Jun. 19, 2019
Kids, Privacy & Legal Compliance
Nov. 28, 2018
The Growing Role of State AGs in Privacy Enforcement
Nov. 11, 2015
Liability Lessons from Data Breach Enforcement Actions
Global
Feb. 10, 2021
GDPR Lives On in the U.K. Post-Brexit
Jan. 20, 2021
Privacy Resolutions for 2021
Jan. 20, 2021
Disputed Twitter Fine Offers Breach Response Lessons
Aug. 12, 2020
Navigating China’s Cybersecurity Regulatory Maze
May 27, 2020
Recent Developments in E.U. Cybersecurity Regulation
Dec. 11, 2019
Not Just GDPR: Examining the Other European Privacy Laws
Oct. 23, 2019
A Glimpse at the New Cayman Islands Data Protection Law
Aug. 21, 2019
Examining Portugal’s GDPR Implementation Statute
Jul. 31, 2019
Takeaways From the U.K. ICO’s FaceApp Warning
Feb. 6, 2019
Analyzing Early GDPR Enforcement: France
Jan. 30, 2019
Analyzing Early GDPR Enforcement: U.K. and Austria
Jan. 23, 2019
Analyzing Early GDPR Enforcement: Portugal and Germany
Jul. 20, 2016
Key Requirements of the Newly Approved Privacy Shield
Feb. 17, 2016
Deal Struck to Maintain the Transatlantic Data Flow
Feb. 3, 2016
Safe Harbor 2.0 Agreement Reached
Sep. 16, 2015
Privacy and Cybersecurity in Canada: Legal Risk Update
Aug. 26, 2015
Seeking Solutions to Cross-Border Data Realities
Most-Read Articles
-
Feb. 17, 2021
Big Questions for BIPA Case Law in 2021 -
Feb. 10, 2021
What the New Information Security Reporting Standards Mean for Financial Institutions -
Jan. 13, 2021
Cybersecurity Resolutions for 2021 -
Feb. 10, 2021
A Fake Zoom Invite Hack: What Happened and Three Lessons -
Feb. 3, 2021
How to Prevent and Handle Disputes Over Ransomware Insurance Claims
Webinar on Getting a Handle on Vendor Contracts
On March 10, 2021, at 10:00 a.m. PST/1:00 p.m. EST the Cybersecurity Law Report and Sentinel LLP will co-host a webinar to delve into the challenges of a third-party risk management program from the controller’s perspective. Among other things, the panelists will discuss the legal and risk landscape, understanding who qualifies as a third party, keeping track of the universe of vendor contracts, important contract terms and ongoing compliance and monitoring. The program will feature Sentinel co-founder and President Aaron Weller and the Cybersecurity Law Report’s Senior Editor Jill Abitbol. To register for this complimentary program, please click here.
Cybersecurity Resolutions for 2021
In this quick take video, we talk about some of our cybersecurity resolutions for 2021.
H&M’s Data Protection Fine
In this short video, we discuss Germany’s highest GDPR fine so far in a case against H&M relating to their mishandling of sensitive employee data. The full article on the case is here.
Summer 2020 Editorial Update
Register here to view the complimentary recording or here for an audio version.
CCPA and Third Parties
Editor-in-Chief Rebecca Hughes Parker discusses the California Attorney General’s final CCPA regulations and their effect on contracts with vendors in this video.