• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

Kristen Bartolotta

Avatar photo

About Kristen Bartolotta

Kristen Bartolotta is an associate in Alston & Bird’s Privacy, Cyber & Data Strategy Team. She advises clients on managing privacy and cyber risk, breach investigations and response, transactional diligence, and emerging technologies. Kristen also advises on privacy and security compliance at the state, federal, and international levels.

[Read Bio]

California Proposes Annual Audits to Assess Sufficiency and Compliance of Company Cybersecurity

September 18, 2023 By Kim Peretti, Kristen Bartolotta and Noelle Reyes

In late August 2023, the California Privacy Protection Agency (“CPPA” or “Agency”) released a discussion draft of proposed regulations under California’s data privacy law, the California Consumer Privacy Act (“CCPA”). Importantly, the proposed regulations set forth more detailed obligations for company cybersecurity programs, including routinely assessing and filing audits with the CPPA. Though these draft […]

Filed Under: California, CCPA, CPPA, CPRA, Cyber Risk, Cybersecurity, Data Protection, Data Security, Regulation Tagged With: California Consumer Privacy Act (CCPA), California Privacy Protection Agency (CPPA), California Privacy Rights Act (CPRA), cybersecurity, Cybersecurity Audit, Data Protection

FTC Launches Investigation into Creator of ChatGPT

July 25, 2023 By Kim Peretti, Kathleen Benway, Daniel Felz and Kristen Bartolotta

In mid-July, the Federal Trade Commission (FTC) reportedly opened an investigation into OpenAI, the maker of ChatGPT, sending the company an extensive Civil Investigative Demand (CID). While FTC investigations are normally non-public, the Washington Post published what appears to be part of the CID sent from the FTC to OpenAI. This investigation comes on the […]

Filed Under: Artificial Intelligence, Cybersecurity, Data Protection, Data Security, Enforcement, FTC, Privacy, Uncategorized Tagged With: Artificial Intelligence, Civil Investigative Demand, Federal Trade Commission (FTC), Privacy

Chinese Hackers Exploit Gap in Cloud Environment Used by U.S. Government

July 20, 2023 By Kellen Dwyer and Kristen Bartolotta

According to recent reports issued by Microsoft and U.S. government agencies, hackers recently exploited a gap in Microsoft’s cloud environment, enabling the malicious actors to access the email accounts of employees at the United States Commerce and State Departments. Including the U.S. government, around 10 organizations were victimized in the U.S. and about 25 were […]

Filed Under: China, Cyber Espionage, Cybersecurity, Data Security, National Security, Uncategorized Tagged With: China, cybersecurity, Espionage, Hacking, National Security

FCC Proposes to Change Data Breach Reporting Rules for Telecommunication Companies

January 14, 2023 By Kim Peretti and Kristen Bartolotta

On January 6, 2023, the FCC released a Notice of Proposed Rulemaking (the “Notice”) proposing to “modernize the Commission’s data breach rules,” and thereby launching a formal effort to gather information from the industry on the issue of data breach reporting. The Notice, adopted on December 28, 2022, seeks to strengthen its rules with the […]

Filed Under: Cybersecurity, Data Breach, Regulation Tagged With: cybersecurity, Data Breach Notification, Federal Communications Commission (FCC)

UK’s National Cyber Security Centre Releases 2022 Annual Review

November 7, 2022 By Kim Peretti and Kristen Bartolotta

The United Kingdom’s National Cyber Security Centre (NCSC) recently released its 2022 Annual Review, which reports on the state of cyber security threats in the country. As the UK’s technical authority for cyber security, the NCSC releases an annual report covering the cyber threats from the prior 12 months as well as analysis of potential […]

Filed Under: China, Cyber Espionage, Cyber Risk, Cybercrime, Cybersecurity, Digital Crimes, International, Russia Tagged With: cybersecurity, ransomware

  • Go to page 1
  • Go to page 2
  • Go to page 3
  • Go to page 4
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up

@ALSTONPRIVACY
Click here to follow us on Twitter

Secondary Sidebar

Categories

Recent Posts

  • California Privacy Protection Agency Releases Draft Regulations on Risk Assessments
  • Penn State University Hit With False Claims Act Suit for Alleged Cyber Security Deficiencies
  • UK Government Makes a Bridge to The EU-U.S. Data Privacy Framework
  • California Proposes Annual Audits to Assess Sufficiency and Compliance of Company Cybersecurity
  • Oregon Enacts Comprehensive State Privacy Law
Copyright © 2023 · Alston & Bird · All Rights Reserved. Privacy.