The New Vendor Management World Under NYDFS’ New Cyber Regulation
Posted on Mar 29, 2019 in Cybersecurity, Data Privacy, Government, Regulation | Comments Off on The New Vendor Management World Under NYDFS’ New Cyber Regulation
As of March 1, 2019, the New York State Department of Financial Services’ (NYDFS) cybersecurity regulation, 23 NYCRR Part 500, requires financial services institutions regulated by NYDFS to implement policies and procedures to address the cybersecurity risks posed by third-party service providers to the institutions’ nonpublic information (NPI). Learn more.
Will you meet the new cybersecurity vendor management requirements? ATTORNEY ADVERTISING
Posted on Mar 5, 2019 in Cybersecurity, Data Privacy, Insurance | Comments Off on Will you meet the new cybersecurity vendor management requirements? ATTORNEY ADVERTISING
March 1 is upon us, now what? The deadline for the NY Department of Financial Services’ “first of its kind” cyber regulation has arrived for financial services institutions to implement programs that properly evaluate and manage the data security risks posed by their vendors. To manage these risks, institutions must go beyond the traditional vendor management function and far deeper...
FTC Issues Largest Fine Ever Under COPPA
Posted on Mar 3, 2019 in Data Privacy, Litigation, Regulation | Comments Off on FTC Issues Largest Fine Ever Under COPPA
On February 27, the Federal Trade Commission announced a settlement with video social networking app TikTok, in which the company agreed to pay $5.7 million for violating the Children’s Online Privacy Protection Act (COPPA), the largest fine issued under the law to date. According to the FTC, the company was aware that children under 13 were using the app but failed to obtain...
Cybersecurity and Data Privacy review and update: Looking back on 2018 and planning ahead for 2019
Posted on Mar 1, 2019 in Cybersecurity, Data Privacy, Energy and Infrastructure, Financial Services, GDPR, Government, Insurance, Intellectual Property, Litigation, Regulation, Securities & Corporate Governance | Comments Off on Cybersecurity and Data Privacy review and update: Looking back on 2018 and planning ahead for 2019
From the implementation of the GDPR to the passage of the CCPA, the year 2018 proved to be a monumental one for cybersecurity and data privacy. Regulators from around the world responded to devastating, large-scale cyber-attacks, and a desire for their citizens to have more control over their data, by passing a wide range of regulations aimed at protecting consumer information. These...
January’s Privacy Blizzard
Posted on Feb 4, 2019 in Cybersecurity, Data Privacy, Litigation, Regulation, Uncategorized | Comments Off on January’s Privacy Blizzard
The start to 2019 provided scant respite from the frenetic pace of privacy and cybersecurity developments. Already this year, regulators have amended and enforced existing regulations; courts have issued significant interpretations of law; and legislators have proposed new rules aimed at increasing privacy obligations and liability for businesses. This alert highlights the pressing...
Data protection and Brexit – What you can do to prepare
Posted on Jan 29, 2019 in Data Privacy, GDPR | Comments Off on Data protection and Brexit – What you can do to prepare
After the historic defeat on 15 January of the draft withdrawal agreement (defeated deal), we consider below what the implications of a no-deal Brexit would be for data protection, and the extent to which the defeated deal would have dealt with any of those issues. We also provide a checklist of actions that businesses can take to help prepare for the outcome in default – a “no deal”...
Subscribe
FEATURED
Check out the BreachLawWATCH app which allows easy access to data breach statutes across the United States and a growing number of jurisdictions.
Video: As the challenges cybersecurity and data privacy present are often global
