• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to secondary sidebar

Alston & Bird Privacy, Cyber & Data Strategy Blog

  • Home
  • Services
  • Events
  • Contacts

Lance Taubin

New York Attorney General Investigates Companies for Website Tags, Publishes Guidelines on Online Tracking Technologies

August 19, 2024 By Daniel Felz, Dorian Simmons, Lance Taubin, Rachel Lowe and Yin Tydir

On July 30, 2024, the New York Attorney General Letitia James announced she had completed an investigation into the tracking technology practices of popular websites, and used this to create website privacy guides on online tracking for New York businesses and consumers. These consist of a “Business Guide” and a “Consumer Guide.” The Business Guide […]

Filed Under: Data Protection, New York, Online Privacy Tagged With: Data Protection, New York Attorney General, Online Tracking, Unfair and Deceptive Acts and Practices

NYDFS Issues Final Circular Letter Guidance on Use of AI in Insurance Underwriting and Pricing

August 9, 2024 By Daniel Felz, Lance Taubin, Colton Jackson and Hyun Jai Oh

On July 11, 2024, the New York Department of Financial Services (“NYDFS”) released Insurance Circular Letter No. 7, which establishes guidelines on the use of artificial intelligence systems (“AIS”) and external consumer data and information sources (“ECDIS”) in insurance underwriting and pricing (“Final Circular Letter”). The Final Circular Letter comes in the wake of a […]

Filed Under: AI, Artificial Intelligence Tagged With: AI, Artificial Intelligence, Insurance, Regulatory Enforcement

Pennsylvania Amends Data Breach Notification Law

July 24, 2024 By Kim Peretti and Lance Taubin

Pennsylvania’s Governor recently approved amendments to the Commonwealth’s data breach notification law, which represent a significant overhaul to the law. As detailed below, the amended law makes a number of material changes, including adding a regulator notification requirement, lowering the threshold of impacted Pennsylvania residents triggering a notification requirement to the consumer reporting agencies, slightly […]

Filed Under: Cybersecurity, Data Breach

SEC Corporation Finance Director Clarifies that Form 8-K Item 1.05 Disclosures Should be Limited to “Material” Cybersecurity Incidents

May 22, 2024 By Cara Peterman, Sierra Shear and Lance Taubin

  On May 22, 2024, the Director of the Division of Corporation Finance (“Corp Fin”) of the Securities and Exchange Commission (“SEC”) issued further guidance regarding disclosure of cybersecurity incidents on Form 8-K. The statement builds upon and provides additional clarity to companies seeking to comply with the SEC’s 2023 cybersecurity rules, which require public […]

Filed Under: Cybersecurity, Regulation, SEC

NIST Cybersecurity Framework 2.0 Prioritizes Governance and Flexibility

May 6, 2024 By Lance Taubin

Earlier this year, the National Institute of Standards and Technology (NIST) issued an update to its Cybersecurity Framework (CSF) with the release of version 2.0, the first update since April 2018 (version 1.1). While the core components of CSF remain, there are two thematic changes: CSF 2.0 (1) no longer applies just to critical infrastructure […]

Filed Under: Cybersecurity, NIST

  • « Go to Previous Page
  • Page 1
  • Page 2
  • Page 3
  • Page 4
  • Page 5
  • Interim pages omitted …
  • Page 9
  • Go to Next Page »

Primary Sidebar

This blog is a service of Alston & Bird’s Privacy, Cyber & Data Strategy team and focuses on key data privacy and data security issues.


Receive email notifications when new posts are added.

Receive email notifications when new posts are added.


RANSOMWARE FUSION CENTER
Click here to request access

THE DIGITAL DOWNLOAD
Click here to see the editions

PRIVACY & CYBER EVENTS
Click here to see upcoming and past events

PRIVACY & CYBER MAILINGS
Click here to sign up

@ALSTONPRIVACY
Click here to follow us on Twitter

Secondary Sidebar

Categories

Recent Posts

  • Texas Expands Data Broker Act Requirements
  • United States, International Coalition Issue Joint Warning of Increasing PRC Backed Threat Activity
  • CISA Gives Itself an Extension for Cyber Incident Reporting Rules
  • Compliance Deadline for Colorado AI Act Delayed Until June 30, 2026
  • Multistate Privacy Investigative Sweep Targeting Website Global Privacy Control (GPC) Noncompliance
Copyright © 2025 · Alston & Bird · All Rights Reserved. Privacy.
This website uses cookies to improve functionality and performance. By continuing to browse this site, you are consenting to the use of cookies on this website.