In a development eagerly anticipated by businesses on both sides of the Atlantic, the European Commission has published the legal instruments needed to put in place the “EU-U.S. Privacy Shield” for transfers of personal data from Europe to the United … [Read more] about European Commission Debuts EU-U.S. Privacy Shield
Working Paper on Internet Service Providers and Privacy Released
On February 29, The Institute for Information Security and Privacy released a Working Paper titled, “Online Privacy and ISPs: ISP Access to Consumer Data is Limited and Often Less than Access by Others.” Peter Swire, Senior Counsel at Alston & … [Read more] about Working Paper on Internet Service Providers and Privacy Released
HHS Issues HIPAA Security Rule Crosswalk with NIST Cybersecurity Framework
Last week, the HHS Office for Civil Rights (OCR) released a crosswalk between the requirements of the HIPAA Security Rule and the NIST Cybersecurity Framework. The crosswalk – which was developed in conjunction with the National Institute of … [Read more] about HHS Issues HIPAA Security Rule Crosswalk with NIST Cybersecurity Framework
Judicial Redress Act Enacted
Yesterday evening, President Obama signed the Judicial Redress Act (“the Act”) into law. The Act extends the 1974 “Privacy Act” and provides qualifying non-U.S. individuals with limited rights to review, copy, and request amendments to records about … [Read more] about Judicial Redress Act Enacted
SEC Continues to Focus on Cyber-related Disclosures
Participating in a panel at the “SEC Speaks” event on February 19, Deputy Director of the SEC’s Enforcement Division Stephanie Avakian expressed that the Commission continues to focus on cybersecurity as a top priority in 2016. Avakian discussed … [Read more] about SEC Continues to Focus on Cyber-related Disclosures