Alston & Bird Privacy, Cyber & Data Strategy Blog

NIST releases “Assessing Security and Privacy Controls in Federal Information Systems and Organizations: Building Effective Assessment Plans.”

By

On December 12, 2014, the National Institute for Standards and Technology (“NIST”) announced the release of Special Publication 800-53A, Revision 4, Assessing Security and Privacy Controls in Federal Information Systems and Organizations: Building … [Read more] about NIST releases “Assessing Security and Privacy Controls in Federal Information Systems and Organizations: Building Effective Assessment Plans.”

TD Bank NA Settles Data Breach Lawsuit with Mass. AG

By

TD Bank North America (“TD Bank”) and the Massachusetts Attorney General announced an agreement on December 8 to end a data breach lawsuit brought against TD Bank by the Massachusetts Attorney General. The lawsuit alleged that TD Bank failed to … [Read more] about TD Bank NA Settles Data Breach Lawsuit with Mass. AG

23 Privacy Enforcement Authorities Issue a Joint Open Letter to App Marketplaces

By

On December 9, 2014, a joint open letter (“Letter”) was issued to the operators of seven (7) app marketplaces, urging them to “make the basic commitment to require each app that can access or collect personal information, to provide users with timely … [Read more] about 23 Privacy Enforcement Authorities Issue a Joint Open Letter to App Marketplaces

CFPB’s Final Rule Allows Online Privacy Notice Posting In Certain Circumstances

By

The Consumer Financial Protection Bureau (CFPB) recently published a final rule regarding annual privacy notices from financial institutions to their customers. The rule allows financial institutions that limit their consumer data-sharing and meet … [Read more] about CFPB’s Final Rule Allows Online Privacy Notice Posting In Certain Circumstances