In early March, the New York Department of Financial Services (NYDFS) announced a settlement involving a $1.5M penalty and mandatory remediation in response to a mortgage lender’s alleged failure to report a cyber breach, and other alleged cybersecurity failures. This enforcement action marks the second public enforcement action under 23 NYCRR Part 500 (the “Cybersecurity […]
Privacy & Cybersecurity Litigation
Eleventh Circuit Holds Risk of Future Harm Does Not Establish Article III Standing
As part of a growing trend, the Eleventh Circuit recently held that an alleged risk of future identity theft does not establish standing where the plaintiff does not allege any information has actually been misused. Tsao v. Captiva MVP Rest. Partners, LLC, No. 18-14959, 2021 U.S. App. LEXIS 3055 (11th Cir. Feb. 4, 2021). The […]
Virginia Ready to Pass First State Privacy Statute after CCPA
Both houses of Virginia’s legislature recently passed the Virginia Consumer Data Protection Act (S.B. 1392; H.B. 2307) (the “VCDPA”). If approved by the state governor, the VCDPA would become the United States’ second comprehensive state privacy law behind the California Consumer Privacy Act (CCPA). The VCDPA is similar to the CCPA and the European Union’s […]
Brazil’s General Data Protection Law: A Comparison Between Brazil’s Newly Effective Law and the GDPR
Brazil’s General Data Protection Law (the “LGPD”), a law similar to the European Union’s General Data Protection Regulation (the “GDPR”) is now effective. On April 29 of this year, Brazil’s President issued Provisional Measure 959 that, amongst other things, postponed the effective date of the LGPD, which was originally set to be effective August 2020, […]
Marking GDPR Anniversary, Peter Swire Warns About EU-US Data Transfer Challenges
On May 25, the European General Data Protection Regulation (GDPR) ended its second full year in effect. To mark the occasion, the International Association of Privacy Professionals collected expert perspectives on the impact and future of the GDPR, including an essay by Alston & Bird Senior Counsel Peter Swire. In his contribution, Swire highlights the […]