February 11, 2014 – The FTC today announced a proposed settlement with Fantage.com Inc., a children’s online entertainment company that allegedly misrepresented its adherence to the U.S.-European Union Safe Harbor Framework (the “Framework”). According to the FTC’s complaint, Fantage made statements in the privacy policy its website that it followed the privacy principles of the Framework, when […]
Data Protection
EU Data Protection Regulation May Be Delayed
January 27, 2014 – EU justice commissioner Viviane Reding said in a speech this week to a meeting of justice and home affairs ministers in Athens that the draft General Data Protection Regulation will not be agreed during the EU Parliament’s current term. As a result, the Regulation is unlikely to be voted on until […]
White House Cybersecurity Coordinator to Deliver Keynote at Law & Policy In-House Summit in Washington, D.C.
The Global Law Forum will host The Cybersecurity Law & Policy In-House Summit in Washington D.C. on January 14 and 15, 2014. The Summit will showcase panel discussions addressing a myriad of issues relevant to corporate counsel including establishing data breach response plans, understanding the cybersecurity insurance market, achieving Board of Directors and company buy-in […]
NIST’s Preliminary Cybersecurity Framework Could Have Broad Implications for Critical, Non-Critical Infrastructure Alike
On October 22, 2013, the National Institute of Standards and Technology (NIST) released its Preliminary Cybersecurity Framework (“Framework”), marking one of the final steps in creating the “voluntary” Framework envisioned in an Obama Administration Executive Order (EO) issued earlier this year. That EO, which was designed to strengthen the cybersecurity of the United States’ critical […]
EU Data Protection Authorities Note Serious Reservations with Proposed General Data Protection Regulation
Several members of the Alston & Bird Privacy and Security Group attended the IAPP Europe Data Protection Congress held in Brussels this past week. Much of the discussion at the Congress centered on the proposed new General Data Protection Regulation (the “Regulation”), which if enacted would replace the European Union Privacy Directive (Directive 95/46/EC) in effect since […]