Data Security

EU Privacy Leaders Discuss US-EU Privacy Shield at Event Co-Hosted by A&B Partner

March 24, 2016 By Daniel Felz

On March 22, 2016, the International Association of Privacy Professional (IAPP) hosted a podium discussion in Brussels on the new EU-US Privacy Shield. Alston & Bird co-hosted the event, which featured two top-notch privacy luminaries from EU legislative and oversight bodies: Mr. Giovanni Buttarelli, the present European Data Protection Supervisor (EDPS). Mr. Bruno Gencarelli, Head […]

HHS/OCR Announces Launch of HIPAA Audit Program Phase 2

March 21, 2016 By Privacy, Cyber & Data Strategy Team

Today, the U.S. Department of Health & Human Services’s (HHS) Office for Civil Rights (OCR) announced the launch of Phase 2 of its HIPAA Compliance Audit Program. (OCR’s announcement can be accessed at Audit Phase 2 Announcement and further information about Phase 2 can be accessed at Audit Phase 2 Information.) In this phase, OCR will […]

Kim Peretti on Panel at 2016 Georgetown Law Women’s Forum

March 7, 2016 By Cybersecurity Preparedness & Response Team

Kim Peretti was a featured speaker at Georgetown Law’s 2016 Women’s Forum, titled “Opportunities in a Changing World,” held on March 4. This annual program features dynamic speakers on several interactive panels. Ms. Peretti’s panel was titled “Grappling with Legal Issues in Cybersecurity” and discussed the evolving legal specialty of cybersecurity, including: whether it is […]

European Commission Debuts EU-U.S. Privacy Shield

March 1, 2016 By Privacy, Cyber & Data Strategy Team

In a development eagerly anticipated by businesses on both sides of the Atlantic, the European Commission has published the legal instruments needed to put in place the “EU-U.S. Privacy Shield” for transfers of personal data from Europe to the United States. The issued documents include a draft adequacy decision by the Commission finding that the […]

HHS Issues HIPAA Security Rule Crosswalk with NIST Cybersecurity Framework

February 29, 2016 By Privacy, Cyber & Data Strategy Team

Last week, the HHS Office for Civil Rights (OCR) released a crosswalk between the requirements of the HIPAA Security Rule and the NIST Cybersecurity Framework. The crosswalk – which was developed in conjunction with the National Institute of Standards and Technology (NIST) and the HHS Office of the National Coordinator for Health IT – maps each […]