Alston & Bird Privacy Blog

EU Announces First Sanctions under EU Cyber Sanctions Regime

By

On July 30, 2020, the European Council announced sanctions against six individuals and three organizations for their involvement in a series of cyber-attacks that have caused significant damage in the EU and around the world over the last several years. The announcement follows the EU’s adoption last year of Decision (CFSP) 2019/797, which established the EU Cyber Sanctions regime, recognizing targeted “restrictive measures,” including sanctions, as a vital tool for deterring and responding … [Read more] about EU Announces First Sanctions under EU Cyber Sanctions Regime

The NYDFS Brings First Enforcement Action under the Cybersecurity Regulation

By , and

On Tuesday, July 21, 2020, the New York Department of Financial Services (the “NYDFS”) brought its first enforcement action under its Cybersecurity Regulation (the “Regulation”) against a large title insurer (the “Company”) for failing to protect … [Read more] about The NYDFS Brings First Enforcement Action under the Cybersecurity Regulation

EDPB clarifies Brexit obligations for holders of Binding Corporate Rules which have the UK ICO as their lead authority

By , and

On July 22, 2020, the European Data Protection Board (‘EDPB’) released an information note on Binding Corporate Rules (‘BCRs’), which provides guidance for groups of undertakings/enterprises which have the UK ICO as their competent supervisory … [Read more] about EDPB clarifies Brexit obligations for holders of Binding Corporate Rules which have the UK ICO as their lead authority