On November 10, 2022, the European Parliament adopted a new cybersecurity directive (the “NIS2 Directive”), which is designed to replace and repeal the existing EU Directive on the Security of Network and Information Systems (Directive 2016/1148/EC) … [Read more] about European Parliament Adopts “NIS2” Cybersecurity Directive
On November 3, 2022, the California Privacy Protection Agency (“CPPA”) issued a notice of modifications to the Proposed Regulations implementing the California Privacy Rights Act (“CPRA”). These proposed modifications come in response to public … [Read more] about California Privacy Protection Agency Issues Notice of Modifications to Proposed CPRA Regulations
The United Kingdom’s National Cyber Security Centre (NCSC) recently released its 2022 Annual Review, which reports on the state of cyber security threats in the country. As the UK’s technical authority for cyber security, the NCSC releases an annual … [Read more] about UK’s National Cyber Security Centre Releases 2022 Annual Review
On October 31, 2022, the Federal Trade Commission (FTC) announced it has taken action against education technology provider Chegg Inc. (“Chegg”) for its “careless” cybersecurity practices that exposed sensitive personal information of millions of its … [Read more] about FTC Takes Action Against Ed Tech Provider for Failure to Secure Student’s Personal Information
Today, October 29, 2022, the California Privacy Protection Agency (“CPPA”) Board approved modifications to the Proposed Regulations under the California Privacy Rights Act (“CPRA”). The modifications will largely be based on the Modified Proposed … [Read more] about California Privacy Protection Agency Approves Modifications to CPRA Regulations