Alston & Bird Privacy Blog

SEC Focused on Protecting Customer Accounts from Credential Stuffing Attacks

September 24, 2020 By Kate Hanniford

OCIE has released a risk alert regarding credential stuffing in the context of compliance with Regulation S-P and Regulation S-ID, and is encouraging firms to both (i) review and update their policies and procedures to address the risks associated with credential stuffing and (ii) consider proactive outreach to customers regarding measures taken to safeguard their accounts and personally identifiable information. The alert specifically warns of the regulatory, legal, financial, and reputational … [Read more] about SEC Focused on Protecting Customer Accounts from Credential Stuffing Attacks

California Mandates COVID Exposure and Outbreak Reporting to Employees, Government Agencies

September 23, 2020 By Aaron Wasser and Daniel Felz

On Thursday, September 17, 2020, California Governor Gavin Newsom signed Assembly Bill 685 (“AB685”) into law. AB685 amends a number of portions of California’s Labor Code to address the COVID-19 pandemic. In addition to provisions that regulate … [Read more] about California Mandates COVID Exposure and Outbreak Reporting to Employees, Government Agencies

Brazil’s General Data Protection Law: A Comparison Between Brazil’s Newly Effective Law and the GDPR

September 19, 2020 By Dorian Simmons

Brazil’s General Data Protection Law (the “LGPD”), a law similar to the European Union’s General Data Protection Regulation (the “GDPR”) is now effective. On April 29 of this year, Brazil’s President issued Provisional Measure 959 that, amongst … [Read more] about Brazil’s General Data Protection Law: A Comparison Between Brazil’s Newly Effective Law and the GDPR

DOJ Charges Seven Individuals in Connection with Global Hacking Campaigns Against More Than 100 Companies

September 18, 2020 By Emily Poole

On September 16, 2020, the U.S. Department of Justice (DOJ) announced that seven individuals believed to be part of a hacking group known as APT41 or “Wicked Panda,” including five Chinese nationals and two Malaysian nationals, have been charged in … [Read more] about DOJ Charges Seven Individuals in Connection with Global Hacking Campaigns Against More Than 100 Companies

Peter Swire Announced as Key Speaker at FTC Workshop on Data Portability

September 10, 2020 By Aaron Wasser

The Federal Trade Commission (“FTC”) today announced that Peter Swire, Senior Counsel at Alston & Bird LLP and Elizabeth and Thomas Holder Chair at Georgia Tech Scheller College of Business, will deliver a key presentation at the upcoming FTC … [Read more] about Peter Swire Announced as Key Speaker at FTC Workshop on Data Portability