Selected Developments in U.S. Law - SEC Proposed Rule Will Require Private Funds to Report Certain Cyber Events On January 26, 2022, the U.S. Securities and Exchange Commission (SEC) proposed new rules to enhance hedge fund...more
2/9/2022
/ China ,
Cyber Incident Reporting ,
Cybersecurity ,
Cybersecurity Information Sharing Act (CISA) ,
Data Breach ,
Data Privacy ,
Data Security ,
Data Subject Access Requests ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
Malware ,
Multi-Factor Authentication ,
NYDFS ,
Personal Data ,
Popular ,
Ransomware ,
Reporting Requirements ,
Russia ,
Ukraine
Selected Developments in U.S. Law - Colorado Privacy Act Becomes Third Comprehensive State Privacy Act in the United States - Our Privacy, Cyber & Data Strategy Team highlights some of the similarities and differences between...more
Are You Ready for Canada’s New Privacy Breach Rules? Mandatory privacy breach notification, reporting, and record-keeping obligations under Canada’s federal data protection law, the Personal Information Protection and...more
6/12/2019
/ California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Data Security ,
General Data Protection Regulation (GDPR) ,
Personally Identifiable Information ,
Popular ,
Regulation S-P ,
Securities and Exchange Commission (SEC)
Our Privacy & Data Security Group applies five lessons learned from preparing for Europe’s carefully crafted General Data Protection Regulation to California’s hastily adopted Consumer Privacy Act....more
10/1/2018
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
General Data Protection Regulation (GDPR) ,
Personally Identifiable Information ,
Popular ,
Privacy Laws ,
Private Right of Action
Last year, Germany became the first EU member state to pass legislation implementing the EU’s General Data Protection Regulation (GDPR). For companies, national GDPR implementing legislation can be significant....more
An English-Language Primer on Germany’s GDPR Implementation Statute. Expanding on his recent article for Bloomberg BNA, Alston & Bird associate Dan Felz offers a multipart primer on Germany’s new GDPR implementation statute....more
10/4/2017
/ Article 29 Working Party (WP29) ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Security ,
EU ,
Facebook ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Germany ,
Information Commissioner's Office (ICO) ,
NIST ,
Popular ,
UK
Updates on the EU:
German DPA Publishes First Privacy Shield Guidelines, Requires German-Law Contracts for Transfers. On June 7, 2016, the European Commission adopted the EU-U.S. Privacy Shield. One question that many...more
12/7/2016
/ Centers for Medicare & Medicaid Services (CMS) ,
Charter Communications ,
Consumer Financial Protection Bureau (CFPB) ,
Cyber Attacks ,
Cybersecurity ,
Data Privacy ,
Data Protection Authority ,
Data Security ,
Dodd-Frank ,
EU ,
EU-US Privacy Shield ,
European Court of Justice (ECJ) ,
Federal Trade Commission (FTC) ,
Financial Institutions ,
Financial Services Industry ,
General Data Protection Regulation (GDPR) ,
Google ,
Governor Cuomo ,
Gramm-Leach-Blilely Act ,
Internet Service Providers (ISPs) ,
NIST ,
NYDFS ,
OCC ,
Risk Management ,
Spokeo ,
Wiretap Act
General Data Protection Regulation (GDPR) Published, Commencing Two-Year Countdown to Application. One of the most important EU legislative initiatives in recent years, and a landmark in privacy regulation worldwide, the GDPR...more
8/23/2016
/ APEC ,
Cross Border Privacy Rules (CBPR) ,
Data Security ,
EU ,
EU-US Privacy Shield ,
European Commission ,
Fair Credit Reporting Act (FCRA) ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
International Data Transfers ,
NIS Directive ,
Personal Data ,
Popular ,
Spokeo v Robins ,
TCPA ,
Warning Letters
Special Focus on “Safe Harbor 2.0,” Privacy Shield and E.U. Data Transfers: Alston & Bird’s privacy team has been closely following the development of Privacy Shield, the proposed successor to the E.U.-U.S. Safe Harbor...more
5/3/2016
/ Article 29 Working Party (WP29) ,
Big Data ,
Consumer Financial Protection Bureau (CFPB) ,
Cybersecurity ,
Cybersecurity National Action Plan (CNAP) ,
Data Breach ,
Enforcement Actions ,
EU ,
EU-US Privacy Shield ,
Export Controls ,
FCC ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Hackers ,
HIPAA Audits ,
International Data Transfers ,
Internet Service Providers (ISPs) ,
Iran ,
PCI-DSS Standard ,
Personal Data ,
Popular ,
Securities and Exchange Commission (SEC) ,
Turkey ,
US-EU Safe Harbor Framework