Privacy & Cyber Regulatory Enforcement

Alston & Bird Issues Cyber Alert on the EU Network Information Security Directive

March 29, 2016 By Cybersecurity Preparedness & Response Team

This morning, Alston & Bird partner Jim Harvey issued an Advisory on the EU’s forthcoming Network Information Security Directive (“NIS Directive”). National laws passed to implement the NIS Directive will impose substantial new compliance responsibilities on providers of “essential services,” as well as on a broad range of “digital service providers”—potentially even if a digital […]

Tennessee Updates Data Breach Statute

March 28, 2016 By Privacy, Cyber & Data Strategy Team

On March 24, 2016, Tennessee Governor Bill Haslam signed SB 2005 into law. The bill makes three principal updates to Tennessee’s data breach statute. First, the statute will now require organizations that have experienced a data breach to notify individuals within 45 days from the discovery or notification of the breach, unless a longer period of time […]

Department of Justice Indicts Seven Iranians for State-Sponsored Hacking

March 27, 2016 By Privacy, Cyber & Data Strategy Team

The Department of Justice has announced the indictment of seven Iranian hackers alleged to work for the Iranian government on charges stemming from a coordinated string of distributed denial of service (“DDoS”) attacks primarily against U.S. financial institutions from 2011 to 2013. One of the hackers is also charged with hacking into the supervisory control […]

EU Privacy Leaders Discuss US-EU Privacy Shield at Event Co-Hosted by A&B Partner

March 24, 2016 By Daniel Felz

On March 22, 2016, the International Association of Privacy Professional (IAPP) hosted a podium discussion in Brussels on the new EU-US Privacy Shield. Alston & Bird co-hosted the event, which featured two top-notch privacy luminaries from EU legislative and oversight bodies: Mr. Giovanni Buttarelli, the present European Data Protection Supervisor (EDPS). Mr. Bruno Gencarelli, Head […]

HHS/OCR Announces Launch of HIPAA Audit Program Phase 2

March 21, 2016 By Privacy, Cyber & Data Strategy Team

Today, the U.S. Department of Health & Human Services’s (HHS) Office for Civil Rights (OCR) announced the launch of Phase 2 of its HIPAA Compliance Audit Program. (OCR’s announcement can be accessed at Audit Phase 2 Announcement and further information about Phase 2 can be accessed at Audit Phase 2 Information.) In this phase, OCR will […]