In our June Privacy & Cybersecurity Update, we review new data privacy laws in Colorado, Connecticut, Florida and Montana; Verizon’s annual Data Breach Investigations Report; AM Best’s report on cyber insurance trends; and...more
7/6/2023
/ Biometric Information Privacy Act ,
Consumer Privacy Rights ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Processors ,
Data Protection ,
Employer Liability Issues ,
Employment Litigation ,
Enforcement ,
Investigations ,
Liability ,
Negligence ,
New Amendments ,
New Legislation ,
New Regulations ,
Opt-Outs ,
Popular ,
Privacy Laws ,
State and Local Government ,
State Privacy Laws ,
Technology Sector ,
Verizon
In this month’s Privacy & Cybersecurity Update, we review new consumer privacy laws in Tennessee and Indiana, three GDPR rulings by the Court of Justice of the European Union, updates regarding future California Privacy...more
6/5/2023
/ California Privacy Protection Agency (CPPA) ,
Cyber Insurance ,
Cybersecurity ,
EU ,
European Court of Justice (ECJ) ,
Fraud ,
General Data Protection Regulation (GDPR) ,
Hackers ,
Insureds ,
Liability ,
Privacy Laws ,
State Privacy Laws ,
Wire Fraud
In this month’s Privacy & Cybersecurity Update, we examine the European Commission’s draft adequacy decision on the EU-U.S. Data Privacy Framework, as well as guidance from the U.K. Information Commissioner’s Office on...more
1/3/2023
/ Biometric Information Privacy Act ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
Employee Monitoring ,
EU ,
European Commission ,
International Data Transfers ,
Popular ,
Privacy Laws ,
Risk Assessment ,
UK
In this month’s Privacy & Cybersecurity Update, we examine the FBI’s warning to companies regarding cyberattacks targeting confidential M&A activity, as well as the Cybersecurity and Infrastructure Security Agency’s directive...more
12/1/2021
/ Cyber Attacks ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Data Protection ,
EU ,
European Data Protection Board (EDPB) ,
FBI ,
International Data Transfers ,
Ransomware ,
Robocalling
In this month's edition of our Privacy & Cybersecurity Update, we examine the U.S. Treasury's advisories regarding the role of financial intermediaries in ransomware payments, a ruling by the Israeli data protection authority...more
11/3/2020
/ British Airways ,
California Consumer Privacy Act (CCPA) ,
Court of Justice of the European Union (CJEU) ,
Cyber Attacks ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Protection ,
EU ,
EU-US Privacy Shield ,
Financial Institutions ,
FinCEN ,
International Data Transfers ,
Office of Foreign Assets Control (OFAC) ,
Popular ,
Ransomware ,
State Attorneys General ,
Surveillance
In this month's edition of our Privacy & Cybersecurity Update, we examine the California attorney general's final regulations for the California Consumer Privacy Act and a ruling by the Indiana Court of Appeals involving...more
7/6/2020
/ California Consumer Privacy Act (CCPA) ,
California Privacy Rights Act (CPRA) ,
Constitutional Challenges ,
Consumer Fraud ,
Cyber Insurance ,
Cybersecurity ,
Data Privacy ,
EU ,
Popular ,
Privacy Laws ,
Ransomware
In this month's edition of our Privacy & Cybersecurity Update, we examine the Seventh Circuit's ruling finding standing for an Illinois Biometric Information Privacy Act claim, the European Data Protection Board's updated...more
6/1/2020
/ Appeals ,
Biometric Information Privacy Act ,
Blocked Mergers ,
Bulk Electric System ,
Business Interruption ,
Consent ,
Cookies ,
Coronavirus/COVID-19 ,
Cyber Insurance ,
Cyber Threats ,
Cybersecurity ,
Data Protection Authority ,
Department of Energy (DOE) ,
Employee Privacy Rights ,
European Data Protection Board (EDPB) ,
Foreign Acquisitions ,
Foreign Adversaries ,
General Data Protection Regulation (GDPR) ,
National Security ,
Policy Exclusions ,
Popular ,
Privacy Laws ,
Remote Working ,
Standing ,
Trump Administration
In this month's edition, we examine the California attorney general's proposed modified regulations under the CCPA, the Treasury Department's new CFIUS regulations, and the SEC Office of Compliance Inspections and...more
3/3/2020
/ BPCIA ,
Business Losses ,
California Consumer Privacy Act (CCPA) ,
CFIUS ,
Cyber Insurance ,
Cybersecurity ,
Data Privacy ,
Foreign Investment ,
OCIE ,
Popular ,
Privacy Laws ,
Ransomware ,
Risk Mitigation ,
Securities and Exchange Commission (SEC) ,
Standing ,
State Privacy Laws ,
U.S. Treasury ,
UK ICO
In this month's Privacy & Cybersecurity Update, we examine several recent U.K.-related cybersecurity developments and the SEC's risk alert reminding investment advisers and broker-dealers to follow through on implementing...more
5/1/2019
/ Broker-Dealer ,
Canada ,
Commercial General Liability Policies ,
Cyber Insurance ,
Cyber Policies ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data-Sharing ,
Denial of Insurance Coverage ,
Designated Contract Markets (DCMs) ,
ENISA ,
Equifax ,
EU ,
Fines ,
General Data Protection Regulation (GDPR) ,
Government Investigations ,
Hackers ,
Investment Adviser ,
NCSC ,
OCIE ,
PIPEDA ,
Popular ,
Privacy Comissioners ,
Privacy Laws ,
Privacy Policy ,
Putative Class Actions ,
Regulation S-P ,
Risk Alert ,
Securities and Exchange Commission (SEC) ,
Surveys ,
TCPA ,
UK ,
UK Data Protection Act ,
UK ICO ,
Unsolicited Faxes
In this month's edition, we examine cybersecurity-related state Supreme Court rulings in Pennsylvania, Vermont and Illinois; the Department of Health and Human Services' cybersecurity guidelines for the health care industry;...more
2/2/2019
/ Actual Injuries ,
Adequacy Requirement ,
Annual Reports ,
Attorney General ,
Biometric Information Privacy Act ,
California Consumer Privacy Act (CCPA) ,
Common Law Claims ,
Corporate Counsel ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Protection Acts ,
Data Protection Authority ,
Denial of Insurance Coverage ,
Department of Health and Human Services (HHS) ,
Employee Privacy Rights ,
EU ,
EU-US Privacy Shield ,
IL Supreme Court ,
Japan ,
Neiman Marcus ,
New Guidance ,
PA Supreme Court ,
Phishing Scams ,
Policy Exclusions ,
Public Hearing ,
Security Standards ,
Settlement ,
State Attorneys General ,
Statutory Rights ,
VT Supreme Court
In this month's edition of our Privacy & Cybersecurity Update, we examine new privacy laws in Germany, an FTC settlement with an alleged consumer loan company over unfair and deceptive practices, the dismissal of a data...more
8/2/2017
/ Children's Toys ,
Civil Monetary Penalty ,
Consumer Financial Products ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Protection ,
Dismissals ,
EU ,
Federal Trade Commission (FTC) ,
General Data Protection Regulation (GDPR) ,
Germany ,
Incident Response Plans ,
Lenders ,
Member State ,
Popular ,
Privacy Laws ,
Risk Mitigation ,
Settlement ,
Standing ,
Unfair or Deceptive Trade Practices
Cybercrime has emerged as one of the foremost threats a company faces. As a result of a few keystrokes, a company may find its customers’ data sold on the dark web, its intellectual property in the hands of a competitor or...more
4/20/2017
/ Acquisitions ,
Cyber Crimes ,
Cyber Insurance ,
Cybersecurity ,
Due Diligence ,
Incident Response Plans ,
Indemnification Clauses ,
Mergers ,
Network Security ,
Ransomware ,
Representations and Warranties ,
Risk Management
In this edition of our Privacy & Cybersecurity Update, we discuss how the prospect of a new chair and three new commissioners at the FTC may impact the agency's approach to cybersecurity regulation, a new Massachusetts...more
2/4/2017
/ Administrative Appointments ,
Breach Notification Rule ,
Cyber Insurance ,
Cybersecurity ,
Cybersecurity Framework ,
Data Breach ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Internet of Things ,
NIST ,
OCR ,
Popular ,
Privacy Policy ,
Public Disclosure ,
Software ,
Swiss Privacy Shield ,
Trump Administration
In this month's edition of our Privacy & Cybersecurity Update, we examine modifications to New York state's proposed cybersecurity regulations for financial institutions, a 5th Circuit ruling that a phishing scam is not...more
1/4/2017
/ Banks ,
Commercial Crime Insurance Polices ,
Consumer Insurance Products ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Department of Financial Services ,
FCC ,
Home Depot ,
Internet of Things ,
Phishing Scams ,
Privacy Laws ,
Trump Administration ,
U.S. Treasury
In this edition of our Privacy & Cybersecurity Update, we highlight guidance issued by the Irish data protection authority regarding the use of location data, as well as the FTC's request for comment on its Standards for...more
9/2/2016
/ Attorney General ,
Centers for Medicare & Medicaid Services (CMS) ,
Class Action ,
Consent ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Protection Authority ,
Federal Trade Commission (FTC) ,
Injury-in-Fact ,
Internet Retailers ,
Invasion of Privacy ,
Ireland ,
Location Data ,
Misrepresentation ,
NAIC ,
Nursing Homes ,
Personal Data ,
Privacy Laws ,
Public Comment ,
Right to Privacy ,
Safeguards Rule ,
Settlement ,
Social Media Policy ,
Standing ,
State Data Breach Notification Statutes
In this edition of our Privacy & Cybersecurity Update, we examine the impact of Brexit on EU data protection, court rulings on cyber insurance policy exclusions and coverage gaps, recent statements from the FTC and the...more
6/30/2016
/ Banks ,
Bonds ,
Class Action ,
Corporate Counsel ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Protection ,
Data Protection Authority ,
Electronic Health Record Incentives ,
EU Data Protection Laws ,
EU-US Privacy Shield ,
Fashion Industry ,
Federal Trade Commission (FTC) ,
FFIEC ,
Fraudulent Transfers ,
Germany ,
Hackers ,
Internet of Things ,
Privacy Laws ,
Spokeo v Robins ,
Standing ,
UK Brexit ,
Young Lawyers
In this edition of our Privacy & Cybersecurity Update, we examine recent developments, including the U.S. Supreme Court's holding in Spokeo that consumer plaintiffs must show "real harm" to sue in federal court, the EU data...more
6/3/2016
/ Antitrust Violations ,
Article III ,
Breach Notification Rule ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Protection Commissioner ,
EU-US Privacy Shield ,
Injury-in-Fact ,
Ireland ,
Privacy Laws ,
Risk of Loss ,
SCOTUS ,
Spokeo v Robins ,
Standing ,
Subrogation
In this edition of our Privacy & Cybersecurity Update, we examine changes to EU privacy and data protection laws, new state laws addressing data breach notifications, Congress' review of cyber insurance, and recent court...more
5/3/2016
/ Class Action ,
Commercial General Liability Policies ,
Corporate Counsel ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Encryption ,
EU ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
Future Harm ,
General Data Protection Regulation (GDPR) ,
Mobile Health Apps ,
Notice Requirements ,
Standing ,
State Data Breach Notification Statutes ,
Young Lawyers
In this edition of our Privacy & Cybersecurity Update, we examine the FCC's proposed privacy rules for broadband providers; new developments relating to the Privacy Shield, which was created to replace the U.S.-EU Safe Harbor...more
4/4/2016
/ Consumer Financial Protection Bureau (CFPB) ,
Cyber Insurance ,
Cybersecurity ,
Data Protection Authority ,
Data Security ,
Department of Defense (DOD) ,
EU ,
EU-US Privacy Shield ,
FCC ,
Internet Service Providers (ISPs) ,
IRS ,
Phishing Scams ,
Privacy Policy ,
US-EU Safe Harbor Framework
Third Circuit Affirms FTC’s Authority Over Cybersecurity:
In the Wyndham case, the Third Circuit affirmed that the FTC has the authority to regulate cybersecurity under Section 5 of the FTC Act, and that the language of...more
9/2/2015
/ Administrative Authority ,
Automobile Recall ,
Brokers ,
Compliance ,
Connected Cars ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Security ,
Federal Trade Commission (FTC) ,
FTC v Wyndham ,
Hackers ,
Metadata ,
National Security Agency (NSA) ,
Privacy Concerns ,
Safe Harbors ,
Section 5 ,
Settlement ,
Target ,
Technology ,
Unfair or Deceptive Trade Practices ,
Visa Inc ,
Wyndham
Seventh Circuit Decision May Make It Easier for Class Action Plaintiffs to Establish Standing in Data Breach Cases -
The Seventh Circuit has issued a decision that could make it much easier for class action plaintiffs to...more
8/4/2015
/ Attorney General ,
Class Action ,
Cyber Attacks ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Security ,
FCC ,
Federal Trade Commission (FTC) ,
FFIEC ,
Identity Theft ,
Personal Data ,
Security Risk Assessments ,
Standing ,
TCPA
In This Issue:
- USA Freedom Act Brings Changes to Surveillance Program
- Connecticut Enacts Bill Imposing Tighter Data Security Obligations
- Pennsylvania Court Dismisses Data Breach Negligence...more
In This Issue:
- DOJ Issues Cyber Preparation and Response Guidance
- RadioShack’s Plan to Auction Customer Data Highlights Issues Over Treatment of Such Data as an Asset
- Google v. Vidal-Hall and...more
5/3/2015
/ Commercial Bankruptcy ,
Customer Lists ,
Cyber Attacks ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Privacy ,
Department of Justice (DOJ) ,
FCC ,
Financial Services Authority ,
Google ,
Hulu ,
Information Sharing ,
NAIC ,
Popular ,
RadioShack ,
Third-Party ,
Video Privacy Protection Act
This past year has been called the "year of the massive data breach," with many high-profile attacks on well-known companies. Skadden partners Cyrus Amir-Mokri, Patrick Fitzgerald, Marc S. Gerber, Stuart D. Levi and Timothy...more
1/27/2015
/ Best Practices ,
Corporate Counsel ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Enforcement Actions ,
Federal Trade Commission (FTC) ,
Popular ,
Retailers ,
Risk Assessment ,
Risk Management ,
Senate Banking Committee ,
Target
2013 likely will be considered a watershed period in the role of cybersecurity in corporate strategy and management. While there were few significant legislative developments, a marked increase in cybersecurity attacks...more
1/29/2014
/ Cyber Insurance ,
Cyber Threats ,
Cybersecurity ,
Cybersecurity Framework ,
Data Breach ,
Data Protection ,
Data Theft ,
Federal Trade Commission (FTC) ,
Hackers ,
NIST ,
Target