All Blog postsMassachusetts recently updated its breach notification statute, requiring an organization to provide additional services for individuals and greater disclosures to state regulators when a data breach occurs. The changes go into effect on April 10, 2019
Read more »Tag: personal data
-
Massachusetts Amends Data Breach Law Notice Requirements, Mandates Credit Monitoring Services Posted on: January 24, 2019 In: Data Privacy & Cybersecurity
-
Modlishka – Exploiting Two-Factor Authentication Posted on: January 22, 2019 In: Data Privacy & CybersecurityTwo-factor authentication (2FA) is a commonly used means of securing access to website accounts through easily understood login procedures. Once the user provides the required information, whether a password or site generated code, a session cookie is generated and a secure session is established between the user and the site. But what if an unauthorized person eavesdrops and collects the 2FA information or session cookie?
Read more »
-
Cybersecurity Resolutions for 2019 Posted on: December 28, 2018 In: Data Privacy & CybersecurityA new year is upon us, which means people across the world will resolve to exercise more, eat healthier, eliminate financial debt and, most importantly, enhance their cybersecurity over the coming year. More than the typical New Year’s resolutions, improving your individual and corporate cybersecurity defenses can be easier to achieve and sustain. With that in mind, here are a few cybersecurity resolutions to add to your new year’s list, and a few tips for achieving them in 2019.
Read more »
-
California Enacts Sweeping, EU-Style Privacy Law Posted on: July 06, 2018 In: Data Privacy & CybersecurityOn June 28, 2018, California Governor Jerry Brown signed A.B. 375 into law, a robust bill that provides substantially broader privacy rights to California consumers regarding how certain businesses can collect, use, sell, and disclose their personal information. The new law requires such businesses to be more transparent in their data collection and sharing practices.
Read more »
-
GDPR, Part VII: A Brief Guide to the GDPR Posted on: May 02, 2018 In: Data Privacy & CybersecurityOn May 25, 2018, the European Union’s General Data Protection Regulation (GDPR) will take effect. The primary objectives of the GDPR are to return control of “personal data” to EU citizens and residents and to simplify the regulatory environment for international business by unifying regulations within the EU.
Read more »
-
GDPR, Part IV: The Data Subject Consent Provisions Posted on: November 21, 2017 In: Data Privacy & CybersecurityWith the forthcoming General Data Protection Regulation (GDPR) set to change the cybersecurity landscape of data collection and storage in the European Union (EU), one of the most important areas that organizations processing or storing EU citizens' data will need to ensure they are complying with is the GDPR's consent guidelines.
Read more »
-
GDPR, Part II: Personal Data Breach Notification Requirements Posted on: November 01, 2017 In: Data Privacy & CybersecurityThis seven-part series analyzes the ways in which the General Data Protection Regulation (GDPR), which goes into effect May 25, 2018, will impact the regulatory landscape for entities doing business with, or transacting in the data of European Union citizens. The first part of the series provides an overview of the history of pre-GDPR European data protection law. Future installments will each address a discrete aspect of the GDPR itself.
Read more »
-
GDPR, Part I: History of European Data Protection Law Posted on: October 26, 2017 In: Data Privacy & CybersecurityIn today’s global marketplace, organizations must comply with an increasingly complicated set of international laws and regulations. This article is the first in a seven-part series which seeks to explain, in plain English, the critical compliance requirements of the European Union’s forthcoming General Data Protection Regulation (GDPR).
Read more »
Blog Search
Featured Posts
- January 29, 2019 Huawei Trade Secrets Indictment is Cautionary Tale for Tech Partnerships
- January 22, 2019 Modlishka – Exploiting Two-Factor Authentication
- January 17, 2019 Preserving Patent Rights on a Global Stage: Foreign Filing Options and How to Successfully Navigate Novelty Requirements
- January 08, 2019 Tax Return Theft: Tips for Prevention & Response
Blog Tags
2nd circuit
aba
aia
alabama
america invents act
arkansas
audit
breach notification
ca9
cafc
california
checklist
client notification
colorado
commission
congress
consumer notification
copyright
cryptocurrency
cybersecurity
cyber threat
data breach
data privacy directive
data privacy officer
data protection officer
data security
delaware
department of commerce
department of health and human services
department of transportation
digital music
encryption attack
entertainment
epo
ethereum
ethics
eu
eu-u.s. data privacy shield
eu-u.s. privacy shield
european union
fcra
federal communication
federal trade commission
financial firms
financial services
first sale doctrine
foreign filing
gdpr
grace period
hacking
hippa
identity theft
incidence response plan
inter partes review
irs
malware
maritime cybersecurity
maryland
media
michigan
model law
multi-factor identification
music
naic
net neutrality
new mexico
ninth circuit
nist security controls
nydfs
patching
patent
patent cooperation treaty
patents
personal data
phishing
post-grant review
privacy act
ptab
ransomware
rdp
redigi
regulations
remote desktop protocol
security posture assessment
security vulnerabilities
service provider agreement
social engineering
social media
spear-phishing
spokeo
statute
supreme court
tax returns
tennessee
third party
utah
virginia
virus
wipo
workplace policy