Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

WhatsApp enables end-to-end encryption as response

On Tuesday, May 3, 2016, the popular messaging application WhatsApp enabled end-to-end encryption for all of its users.  End-to-end encryption technology prevents messages sent via the application from being intercepted or viewed by any individual except the intended recipient.  To further ensure the privacy of its users, WhatsApp will not have the technical capability to turn over...

Panama Papers leak 11.5 million documents, exposing public officials

On Sunday, April 3, 11.5 million confidential documents exposing a widespread system of global tax evasion were made public as a result of a hack.  The documents, which were records of  the Panamanian corporate service provider and law firm Mossack Fonseca, were obtained by an anonymous source, shared with the German newspaper Süddeutsche Zeitung, and then passed to the International...

EU-U.S. Privacy Shield – Full Text Released

On February 29, 2016, the European Commission released the text of the EU-U.S. Privacy Shield. The text reveals the details of a new framework that will place stronger obligations on U.S. companies to protect the personal data of EU citizens. It will also involve heightened compliance requirements and authorizes enforcement measures by the U.S. Department of Commerce (Commerce) and the...

Data Sentinel: The Evolving Role of the Attorney as Protector of Company Data

Data. It is one of your organization’s greatest assets, and a necessary part of doing business. But in today’s financial services environment, it is also a source of one of your organization’s greatest risks. In their article for FinTech Law Report, Sutherland attorneys Michael Steinig and Mary Jane Wilson-Bilik describe the attorney’s evolving role in protecting company data, and...

Pros and Cons of the Payment Card Industry Data Security Standard

The Payment Card Industry Data Security Standard (the PCI DSS) establishes the self-described minimum data protection measures required of all entities involved in payment card transactions. The PCI DSS consists of 12 basic requirements, along with testing procedures and guidance designed to assist entities in meeting each requirement. The PCI DSS itself is not a law or regulation, and...

« Older Entries Next Entries »