In November, the European Data Protection Board (EDPB) issued draft guidance regarding transfers of personal data from the European Union. That guidance has prompted nearly 200 comments from companies, trade groups, and interested observers. Senior … [Read more] about Swire Report Addresses EU Data Localization Comments, Portuguese Order Restricting U.S. Data Flow
Following the SolarWinds cyber espionage attack (the “Attack”) and the resulting focus on supply chain risk, the New York Department of Financial Services (NYDFS) has issued a report detailing the impact on and responses by its regulated covered … [Read more] about NYDFS Issues Report on the SolarWinds Attack and Covered Entities’ Responses
The FBI’s Internet Crime Complaint Center (“IC3”) recently released its annual report, the 2020 Internet Crime Report (“Report”), which gathers statistics from nearly 800,000 complaints of suspected cybercrimes that the department received in 2020. … [Read more] about FBI Releases IC3 2020 Internet Crime Report Showing Record Increase in Cybercrime
On April 14, 2021, the U.S. Department of Labor announced new cybersecurity guidance for plan sponsors, plan fiduciaries, record-keepers, and plan participants. The guidance is specifically “directed at plan sponsors and fiduciaries regulated by the … [Read more] about Department of Labor Issues Cybersecurity Guidelines
Only four months in and 2021 has already been a big year for state cybersecurity safe harbor legislation. Two states, Utah and Connecticut, have recently enacted or introduced a breach litigation safe harbor to incentivize businesses to protect … [Read more] about 2021 Developments in State Cybersecurity Safe Harbor Laws