Knowledge

Across topics and issues, borders and industries, we have the thought leadership you need to stay ahead of changes in the law.

Follow us:

Publications

News

Colorado enacts comprehensive privacy law

The Governor of Colorado signed the Colorado Privacy Act (CPA) on July 7, 2021, making it the third state in the United States to enact broad consumer privacy legislation. Building on...

News

CPRA countdown: Updated transparency obligations and opt-out rights

The California Privacy Rights Act (CPRA) will require businesses to update their privacy notices with additional disclosures and post website links that allow consumers to exercise their...

News

NYDFS recommends critical new practices to reduce supply chain risk in wake of SolarWinds attack

On April 27, 2021, the New York State Department of Financial Services (“DFS” or the “Department”) released a report regarding its investigation into the response by ...

News

CPRA countdown: Changes to consumer rights in California

As we have previously highlighted, the California Privacy Rights Act (CPRA) has created several new consumer rights that will require businesses to change existing California Consumer...

News

To pay or not to pay: Another regulator weighs in on the decision to pay a ransom

Ransomware victims face a nearly impossible decision: pay criminals holding their business hostage or refuse and face possible crippling consequences. This decision requires careful...

News

New York regulator issues cyber insurance risk framework with implications for insurers and insureds

On February 4, the New York Department of Financial Services (NYDFS) released Insurance Circular Letter No. 2 (2021), a Cyber Insurance Risk Framework (Framework) for insurers that write...

News

Virginia poised to enact comprehensive consumer privacy law

Virginia is on track to be the second U.S. state to enact comprehensive consumer privacy legislation. Both the Virginia House of Delegates and the Virginia Senate have passed nearly...

News

New proposed rule requires banks to notify regulators within 36 hours of a cybersecurity incident

On January 12, 2021, the Office of the Comptroller of the Currency (OCC), the Board of Governors of the Federal Reserve System (Board), and the Federal Deposit Insurance Corporation (FDIC)...

News

CPRA Countdown: How businesses can comply with the CPRA

California voters have spoken: in November 2020, they voted to enact the California Privacy Rights Act (CPRA), which will mark a significant expansion of California’s existing privacy ...

Loading data