As part of a growing trend, the Eleventh Circuit recently held that an alleged risk of future identity theft does not establish standing where the plaintiff does not allege any information has actually been misused. Tsao v. Captiva MVP Rest. … [Read more] about Eleventh Circuit Holds Risk of Future Harm Does Not Establish Article III Standing
On February 19, 2021, the European Commission adopted a draft ‘adequacy decision’ in favor of the UK. The adoption of the draft adequacy decision marks the first step in ensuring the continued free flow of personal data from EEA countries to the UK … [Read more] about European Commission Adopts Draft UK Adequacy Decision
Against the backdrop of the disruptions associated with the Covid-19 pandemic and SolarWinds cyber-espionage campaign, NYDFS has released guidance for insurers that underwrite cyber insurance policies and which contains a number of provisions … [Read more] about NYDFS Issues Best Practices for Cyber Insurance Risk Management
As the Biden administration begins detailing its regulatory and enforcement priorities, it faces a new challenge on the health data privacy and security front. In University of Texas M.D. Anderson Cancer Center v. United States Department of Health … [Read more] about Fifth Circuit Decision Raises Cyber Enforcement Complications for the U.S. Department of Health and Human Services
Both houses of Virginia’s legislature recently passed the Virginia Consumer Data Protection Act (S.B. 1392; H.B. 2307) (the “VCDPA”). If approved by the state governor, the VCDPA would become the United States’ second comprehensive state privacy law … [Read more] about Virginia Ready to Pass First State Privacy Statute after CCPA