On November 20, 2025, the Securities and Exchange Commission (SEC) dismissed its landmark enforcement action against SolarWinds Corp. and the company’s Chief Information Security Officer, Tim Brown. In 2023, the SEC’s enforcement action broke new … [Read more] about SEC Dismisses Remaining Claims Against SolarWinds
On November 19, the European Commission (EC) released its EU Digital Omnibus proposal - a 153-page document accompanied by an explanatory memorandum and a Staff Working Document. This proposal introduces amendments, deletions, and replacements to … [Read more] about The EU Digital Omnibus: A European Data Law Shake-Up May Be Coming
The UK Government has introduced the Cyber Security and Resilience (Network and Information Systems) Bill (the “Bill”) to Parliament, marking the most significant update to the UK’s cyber legislation since 2018. You can access a copy of the Bill … [Read more] about UK Cybersecurity Legislation Soon to be Introduced
Move over HIPAA…the health privacy landscape may be in for a shakeup. On November 4, 2025, Senator Bill Cassidy, M.D. (R-LA) introduced the Health Information Privacy Reform Act (HIPRA), a bill aimed at closing a gap in health data protections. HIPAA … [Read more] about Closing the Privacy Gap: HIPRA Targets Health Apps and Wearables
Since the HHS Office for Civil Rights’ (OCR) publication of a proposed rule to overhaul the HIPAA Security Rule in January 2025, many in the health care and privacy community have wondered whether the rule would quietly fade away. Some even hoped it … [Read more] about HIPAA Security Rule: Still on Track for Finalization