Newsletters

03.03.21

Virginia’s Consumer Data Protection Act Has Passed: What’s in It?

Yesterday evening, Virginia Governor Ralph Northam signed the Consumer Data Protection Act (CDPA), making Virginia the latest state to enact a cross-industry privacy rights law.


02.09.21

Considerations in Machine Learning-Led Programmatic Underwriting

Underwriting is critical to insurance profits: Identify, qualify, and quantify the risk that an insurance policy covers and set the premiums across a pool of the policies to cover the risk.


01.27.21

It’s Not COPPA-cated: CARU Determines VSCO Mobile App Not Directed Toward Children

On January 21, the Children’s Advertising Review Unit announced a social media and photo editor app that has become well known to teens and tweens for the “VSCO girl” trend is not an online service that is either primarily or secondarily directed toward children as defined by the ...


12.16.20

Significant Changes to the HIPAA Regulations Proposed

On December 10, 2020, the U.S. Department of Health and Human Services (HHS), Office of Civil Rights (OCR) announced its proposal to make significant changes to the Health Insurance Portability and Accountability Act (HIPAA) Privacy Rule as part of its Regulatory Spring to Coordinated Care.


12.02.20

Security Implications of Foreign Funding and Access at U.S. Colleges and Universities

While global media outlets have focused attention on election security, major U.S. healthcare facilities have been under direct cyberattacks in recent months.


12.01.20

Retention of Biometric Data Beyond Stated Period Creates Article III Standing: Seventh Circuit

Alleged violations of privacy laws continue to bedevil the federal courts—in particular, with respect to determining whether an alleged violation creates a sufficiently concrete and redressable grievance to permit the federal courts to hear the lawsuit under Article III of the U.S. ...


11.11.20

The California Privacy Rights Act Has Passed: What’s in It?

On November 3, 2020, Californians will vote on Proposition 24, a ballot measure that would create the California Privacy Rights Act (CPRA).


10.26.20

Insider Cyber Threats From Outside the Office

Insider threats continue to be pervasive and real. Last month’s indictment of a Russian national accused of conspiring to recruit a U.S. company’s employee to carry out a cyberattack is a sharp reminder of that.


10.22.20

Security Implications of Extraterritorial Application of U.S. Law on Cryptocurrency Markets

Recent action by the U.S. government reminds us that engaging in the cryptocurrency markets continues to present counterparty risk in the context of with whom you are doing business.


10.05.20

An Intersection Between Ransomware and U.S. National Security: OFAC Speaks

Picture this: At some point in the next six months, you lose access to your files. Even worse, your company loses access to its files.