On January 23, 2019, the Personal Information Protection Commission of Japan (the “PPC”) and the European Commission (the “Commission”) jointly announced the adoption of the decisions recognizing each other’s personal data protection systems as … [Read more] about EU and Japan Publish a Joint Release on Their Mutual Adequacy Decisions
Massachusetts Governor Charlie Baker has signed legislation amending the state’s data breach notification law, and the amendments will take effect on April 11, 2019. The new requirements relate to the timing and content of individual and regulator … [Read more] about Massachusetts Amends Data Breach Notification Law
The Securities and Exchange Commission has filed a Complaint against eight traders, one alleged hacker, and others, in connection with a previously disclosed cybersecurity attack that infiltrated the SEC’s EDGAR system in 2016. The Complaint brings … [Read more] about SEC Files Complaint Against Hacker, Traders in EDGAR Data Breach Case
The IAPP article, “US federal privacy preemption part 1: History of federal preemption of stricter state laws,” written by Alston & Bird Senior Counsel Peter Swire and published on January 9, 2019, discusses the potential for a general U.S. … [Read more] about Time for a General Federal Privacy Law? Peter Swire Opens the Discussion on Potential Preemptive Effects
On December 28, 2018, the Department of Health and Human Services (HHS) issued new voluntary cybersecurity guidance for the health care industry titled, “Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients.” This … [Read more] about HHS Releases New “Health Industry Cybersecurity Practices”