On September 27, 2018, the Department of Justice Computer Crime and Intellectual Property (CCIPS) Cybersecurity Unit released Version 2.0 of its “Best Practices for Victim Response and Reporting of Cyber Incidents.” Originally issued in 2015, the … [Read more] about DOJ Releases “Best Practices for Victim Response and Reporting of Cyber Incidents,” Version 2.0
Theodore Christakis, Professor of International at the University Grenoble Alpes and Senior Fellow at the Cross-Border Data Forum, has a published a new article examining the right of European Union Member States to review European Production Orders … [Read more] about CBDF Research Fellow Theodore Christakis Publishes Article on E-Evidence Request Review Procedures
On September 26, 2018, the SEC brought its first ever enforcement action for violations of Regulation S-ID (the “Identity Theft Red Flags Rule”), 17 C.F.R. § 248.201, in addition to violations of Regulation S-P, 17 C.F.R. 30(a) (the “Safeguards … [Read more] about SEC Brings First Enforcement Action for Violation of the Identity Theft Red Flags Rule
On September 23, 2018, Governor Jerry Brown signed SB 1121, the amendment to the California Consumer Privacy Act (CCPA). SB 1121 attempts to clean up some drafting errors and ambiguities in the original legislation (AB 375), but it also effectively … [Read more] about Governor Jerry Brown Signs Amendment to the California Consumer Privacy Act
Ohio recently enacted the Ohio Data Protection Act (2018 SB 220), a law that offers a breach litigation safe harbor to businesses meeting specific cybersecurity standards. While the law does not prevent a plaintiff from filing a lawsuit following a … [Read more] about Ohio Enacts Cybersecurity Safe Harbor Law