• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

Kate Hanniford

NYDFS Issues Guidance on Multi-Factor Authentication

December 14, 2021 By Kim Peretti, Kate Hanniford and Kristen Bartolotta

The New York Department of Financial Services (NYDFS) continues to refine its position regarding the importance of and requirements regarding Multi-Factor Authentication (MFA), as evidenced most recently with the release of new guidance. This new guidance is consistent with its June guidance, in which NYDFS clarified its expectation that NYDFS-regulated covered entities subject to 500.12 […]

Filed Under: Cybersecurity, Data Protection, Data Security, Enforcement, NYDFS Tagged With: cybersecurity

Federal Bank Regulatory Agencies Release Final Rule to Require Notification of Cyber Incidents

November 22, 2021 By Kate Hanniford and Kristen Bartolotta

On November 18, 2021, the Office of the Comptroller of the Currency, the Board of Governors of the Federal Reserve System, and the Federal Deposit Insurance Corporation jointly announced the approval of a final rule to improve the sharing of information about cyber incidents that may affect the U.S. banking system. The rule applies to […]

Filed Under: Cybersecurity, Data Breach, Data Protection, Data Security, Enforcement, Regulation, Security Breach Tagged With: Data Breach Notification

FTC Revises the Safeguards Rule and Proposes Mandatory Reporting of Cybersecurity Events

November 1, 2021 By Kathleen Benway, Kim Peretti and Kate Hanniford

On October 27, 2021, the FTC released its much-anticipated final revisions to the Gramm-Leach-Bliley Safeguards Rule (Safeguards Rule or Final Rule), following a 3-2 vote along party lines and also released a notice of proposed rulemaking that would  require reporting to the FTC of certain cybersecurity events. Revisions to the Safeguards Rule Effective since 2003, […]

Filed Under: Cyber Risk, Cybersecurity, Data Security, Enforcement, FTC

Swiss Data Protection Regulator Is Latest to Outline Framework for Transferring Data to the SEC

August 17, 2021 By Daniel Felz, Kate Hanniford and Wim Nauwelaerts

Entities registered with the U.S. Securities & Exchange Commission (SEC) must maintain certain books and records and can be subject to the SEC’s examination, inspection, and enforcement authority. Responding to SEC requests can require cross-border transfers of personal data, and this has historically risked non-compliance under foreign data protection law. The SEC has been proactive […]

Filed Under: Data Protection, Financial Privacy, International, Privacy, Regulation Tagged With: Cross-border, EU Data Protection, International Data Transfers, Regulatory Enforcement, Securities and Exchange Commission

U.S. Government Launches StopRansomware.gov

July 16, 2021 By Kate Hanniford

On July 15, 2021, the DOJ and DHS together with additional federal partners launched StopRansomware.gov, a one-stop hub intended to help the private and public sector mitigate the threat of ransomware.  The website includes a range of resources geared towards private organizations, public and private critical infrastructure sectors, K-12 educational institutions, and state, local, tribal, […]

Filed Under: Cybercrime, Cybersecurity, National Security

  • « Go to Previous Page
  • Go to page 1
  • Go to page 2
  • Go to page 3
  • Go to page 4
  • Go to page 5
  • Interim pages omitted …
  • Go to page 8
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up

@ALSTONPRIVACY
Click here to follow us on Twitter

Secondary Sidebar

Categories

Recent Posts

  • Joint Regulatory Guidance Aims to Help Companies Transfer Personal Data Across ASEAN and EU Member States
  • NYDFS Penalizes bitFlyer $1.2 Million for Violations to Cybersecurity Regulation
  • International Data Transfers: Lessons from the EDPB’s “101 Task Force”
  • EU Supervisory Authorities Clarify Breach Notification Requirements
  • China’s Standard Contractual Clauses for Cross-Border Transfers of Personal Information
Copyright © 2023 · Alston & Bird · All Rights Reserved. Privacy.