Today, California Attorney General Kamala Harris released her long-anticipated guidance on privacy policies for companies collecting information from California residents in a report entitled Making Your Privacy Practices Public (the “Report”). While the Report exceeds existing law in many respects, affected companies should take heed to review the report and be familiar with its contents as it […]
Regulation
Kim Peretti to Speak at Georgetown Law’s Cybersecurity Law Institute
Kim Peretti, co-chair of the firm’s Security Incident Management & Response Team, will be a featured speaker during the second annual Cybersecurity Law Institute sponsored by the Georgetown University Law Center. Cybersecurity continues to stay in the news in 2014 as the White House calls for a “Consumer Privacy Bill of Rights” for the digital age. What […]
OCR and ONC Release New Security Risk Assessment Tool
Late last week, the HHS Office for Civil Rights (OCR) and Office of the National Coordinator for Health Information Technology (ONC) released a security risk assessment (SRA) tool designed to help health care providers conduct risk assessments as required by the HIPAA Security Rule. Under the Security Rule, health care providers must perform risk assessments […]
Alston & Bird Hosting Privacy, Innovation and Big Data Program Organized by the American Constitution Society
On March 25, Alston & Bird partner David Keating to moderate panel discussion organized by the American Constitution Society and Georgia State Bar on Big Data. Featured speakers are Georgia Tech’s Peter Swire, Acxiom’s Jerry Jones, FTC’s Cindy Liebes, and attorney Gerald Weber. David Keating, Partner and co-chair of the firm’s Privacy & Security team, […]
NIST releases final Cybersecurity Framework
The National Institute of Standards and Technology (“NIST”) has released the final version of the much-anticipated Framework for Improving Critical Infrastructure Cybersecurity (the “Framework”). The Framework was developed by NIST at the direction of President Obama’s February 12, 2013, Executive Order 13636, “Improving Critical Infrastructure Cybersecurity” (the “Executive Order”). The Framework largely retains the structure […]