Privacy & Cyber Regulatory Enforcement

Art. 29 Working Party Issues Formal Opinion Opposing Privacy Shield

April 14, 2016 By Daniel Felz

Several hours after holding a closely-watched press conference we reported on yesterday, the Article 29 Working Party (“Art. 29 WP”) released its highly anticipated formal opinion on the adequacy of Privacy Shield. Background The European Commission has put forth a draft “adequacy decision” in which it declares that on the basis of Privacy Shield, the […]

Art. 29 Working Party Announces it Will Not Support Privacy Shield at Press Conference

April 13, 2016 By Daniel Felz

Early this afternoon, the Article 29 Working Party (“Art. 29 WP”) held a press conference at which it presented its forthcoming opinion on the adequacy of the US-EU Privacy Shield. As background, the European Commission has put forth a draft “adequacy decision” in which it declares that on the basis of Privacy Shield, the United […]

Alston & Bird Issues Cyber Alert on the EU Network Information Security Directive

March 29, 2016 By Cybersecurity Preparedness & Response Team

This morning, Alston & Bird partner Jim Harvey issued an Advisory on the EU’s forthcoming Network Information Security Directive (“NIS Directive”). National laws passed to implement the NIS Directive will impose substantial new compliance responsibilities on providers of “essential services,” as well as on a broad range of “digital service providers”—potentially even if a digital […]

Tennessee Updates Data Breach Statute

March 28, 2016 By Privacy, Cyber & Data Strategy Team

On March 24, 2016, Tennessee Governor Bill Haslam signed SB 2005 into law. The bill makes three principal updates to Tennessee’s data breach statute. First, the statute will now require organizations that have experienced a data breach to notify individuals within 45 days from the discovery or notification of the breach, unless a longer period of time […]