Privacy, Cyber & Data Strategy Team

In the newly proposed version of the Critical Infrastructure Protection (“CIP”) Reliability Standards, the Federal Energy Regulatory Commission (“FERC”) is seeking, for the first time, to create mandatory cybersecurity protections for the bulk electric system (“BES”), which includes electric utilities. The new standards would classify each BES Cyber System as Low, Medium or High Impact […]

Eric Shimp, a Policy Advisor at Alston & Bird, recently published “Data Protection: Data privacy in the Transatlantic Trade agreement? US-EU ponder the way forward” in the most recent version of the BEERG Global Labor Newsletter. As the US approaches the launch of negotiations toward a free trade agreement with the European Union, data privacy […]

In the aftermath of such incidents as the shootings at Virginia Tech and Newtown, HHS published guidance to remind covered entities that health care providers may, consistent with the HIPAA Privacy Rule, disclose protected health information (PHI), including from mental health records, to warn that persons may be at risk of harm because of a […]

This article is the second in a four-part series describing some of the challenges to conducting breach investigations in response to increasingly sophisticated attacks. In Part 1, entitled Right-Sizing the Data Breach Investigation and published with Law360 on March 26, 2013, we provided an overview of the evolving advanced cyber threat landscape and the three […]

Kim Peretti, co-chair of the firm’s security-incident and management-response team and former senior litigator for the Justice Department’s Computer Crime and Intellectual Property Section, was quoted in the Wall Street Journal article, “U.S. Eyes Pushback On China .” U.S. officials view that strategy [indictment] as a way to establish a deterrent. China likely wouldn’t turn over […]