On December 5, 2017, the National Institute of Standards and Technology (NIST) released a revised draft of its proposed updates to its Framework for Improving Critical Infrastructure Cybersecurity. The revised draft includes a new section on … [Read more] about NIST Releases Updated Cyber Framework V1.1
Bill Proposes Jail Time for Executives Who Conceal Data Breaches
On November 30, 2017, a group of U.S. senators re-introduced a bill, known as the Data Security and Breach Notification Act, which seeks to impose criminal liability of up to five years of jail time on any corporate executive convicted of … [Read more] about Bill Proposes Jail Time for Executives Who Conceal Data Breaches
Challenge to Privacy Shield Dismissed by EU General Court
In October of last year, we reported that digital rights advocacy group Digital Rights Ireland (“DRI”) had brought an action to annul the EU-U.S. Privacy Shield. DRI filed its challenge before the General Court of the European Union, which is the … [Read more] about Challenge to Privacy Shield Dismissed by EU General Court
An English-Language Primer on Germany’s GDPR Implementation Statute: Part 5 of 5
Over the past year, the German government has been working on legislation to implement the EU’s General Data Protection Regulation (GDPR). On July 6, 2017, Germany did so by passing a statute titled the Data Protection Amendments and Implementation … [Read more] about An English-Language Primer on Germany’s GDPR Implementation Statute: Part 5 of 5
Article 29 Working Party Issues Guidance on Administrative Fines
The Article 29 Working Party (“WP29”) recently issued much-anticipated guidance on administrative sanctions under the General Data Protection Regulation (the “GDPR”). This guidance focuses on the holistic factors which Supervisory Authorities (the … [Read more] about Article 29 Working Party Issues Guidance on Administrative Fines