GLBA

Reminder: The FTC “Safeguards Rule” Compliance Date is Next Month

By Joseph J. Lazzarotti on May 3, 2023

Posted in Consumer Privacy, Data Breach Notification, Data Security, Financial Services, Incident Response Planning, Written Information Security Program

The Federal Trade Commission updated its “Standards for Safeguarding Customer Information” (“Safeguards Rule”) and extended the compliance deadline to June 9, 2023. Some entities still may be wondering – “Do these regulations apply to my business?” and “What do I have to do?”

Back in 2021, we provided a high-level summary of the Safeguards Rule…

Data Protection and the Role of Vendor Management

By Mary T. Costigan on May 6, 2021

Posted in California Consumer Privacy Act, Incident Response Planning, Information Management

The SolarWinds hack highlights the critical need for organizations of all sizes to include cyber supply chain risk management as part of their information security program. It is also a reminder that privacy and security risks to an organization’s data can come from various vectors, including third party vendors and services providers. By way of…

10 Steps for Tackling Data Privacy and Security Laws in 2020 for In-House Counsel and HR Pros

By Joseph J. Lazzarotti on December 29, 2019

Posted in ADA, California Consumer Privacy Act, Consumer Privacy, Data Breach Notification, Data Security, GDPR, HIPAA, Identity Theft, Information Management, International, Monitoring, Online Privacy, Third Party Service Providers, Written Information Security Program

After years of data breaches, mass data collection, identity theft crimes, and failed attempts at broad-based federal legislation, 2020 may be the year that state privacy and data security legislation begins to take hold in the U.S. For example, the California Consumer Privacy Act (“CCPA”) and the New York Stop Hacks and Improve Electronic Data…

California Consumer Privacy Act Amendment Signed Into Law

By Jason C. Gavejian, Joseph J. Lazzarotti & Mary T. Costigan on September 25, 2018

Posted in Big Data, Consumer Privacy, Data Security, Online Privacy

On September 23, 2018, Governor Jerry Brown signed into law SB-1121 amending certain provisions of the California Consumer Privacy Act of 2018 (CCPA) which was enacted in June of this year. As we reported previously, CCPA will apply to any entity that does business in the State of California and satisfies one or more…

FAST Act Calls for Examination of the Internet of Things

By Jason C. Gavejian on December 10, 2015

Posted in Data Security

The Internet of Things (IoT), as defined by Wikipedia, is the network of physical objects or “things” embedded with electronics, software, sensors, and network connectivity, which enables these objects to collect and exchange data. The IoT allows objects to be sensed and controlled remotely across existing network infrastructure, creating opportunities for more direct integration between…

Happy Holidays Financial Institutions, Less Privacy Paperwork in the New Year

By Jackson Lewis P.C. on December 8, 2015

Posted in Consumer Privacy

It seems the White House and Congress can agree on at least one thing—financial institutions are over-burdened by current privacy notice rules. In a move that is hoped to save financial institutions significant costs on postage, printing and administrative resources, on Friday, December 4, 2015, President Obama signed the Fixing America’s Surface Transportation Act (the…

Workplace Privacy, Data Management & Security Report