Privacy Plus+ News
Stay informed with our latest insights on privacy and technology trends, along with key updates from our firm.
Five Eyes Issues Guidance for the Deployment of “Smart City” Technologies
This week, let’s review the new “smart city” cybersecurity guidance issued by the Five Eyes intelligence alliance, and offer some perspective accrued over time as long as this guidance is overdue.
Cybersecurity Whistleblowers
This week, let’s highlight the recent uptick in cybersecurity whistleblowers, including those from the Dallas Independent School District and Twitter, and consider how to deal with cybersecurity whistleblower complaints.
Section 702, the Supreme Court, the European Parliament, and Congress
This week, we invoke Sherlock Holmes while discussing the latest news regarding Section 702 of the National Security Act, the GDPR and cross-border data transfers.
SEC Proposes New Rule on Safeguarding Client Assets
This week, let’s consider the SEC’s release of a Proposed Rule regarding Safeguarding Advisory Client Assets, which specifically addresses a standard of care for security and cybersecurity related to custodial crypto assets.
Managing AI Risk: NIST Framework and ISO Guidance Announced
This week, let’s highlight the new risk management framework and guidance respectively published by NIST and ISO.
“It’s Turtles All the Way Down” - FTC Focuses on AWS Security
This week, let’s look at a recent FTC Consent Order, then consider what lessons can be drawn about using AWS. We’ll also explain how IT infrastructure fits the turtle metaphor featured in the title of this post.
HM in DBA Headnotes Discussing Uber CSO’s Criminal Conviction
Was Uber’s Chief Security Officer a villain or a scapegoat? And how should companies respond to the news of his criminal conviction? HM attorneys discuss in this month’s Headnotes for the Dallas Bar Association.
European Data Protection Authorities Set Sites on Microsoft 365
This week, let’s consider European DPAs published privacy concerns about Microsoft 365, and related risks associated with workforce productivity suites.
Cyber Liability for Directors and Officers
This week, let’s catch up on cyber liability issues — from Drizly to Uber to SolarWinds — officers and directors should be tuning in and turning their attention to cyber and privacy corporate governance and D&O insurance.
FTC takes Action Against Drizly and its CEO: Will Protecting Data Become a Priority for CEOs?
The FTC wants to send a very clear message to CEOs: Protecting Americans’ data is not discretionary. It must be a priority. For Drizly’s CEO’s privacy and data security have become an albatross for him to carry to his future businesses under latest FTC proposed consent order.
ICARUS FALLS: SBF, FTX, $FTT, WTH?
This week, we’re offering an explainer on SBF, FTX, $FTT, and what happened with crypto.
The Care and Handling of CEII
This week, let’s consider Controlled Unclassified Information, and how one example of it—Critical energy/electric infrastructure information—is regulated in the energy industry.
Predicting the Future of Privacy Law into 2023
This week, let’s look ahead toward the State of Privacy in 2023. With the New Year little more than 100 days away, what should we expect?
Cross-Border Data Transfer Update – New Trans-Atlantic Data Privacy Framework and UK’s International Data Transfer Agreement
This week, let’s consider the “agreement in principle” for the new U.S.-E.U Trans-Atlantic Data Privacy Framework and the UK’s International Data Transfer Agreement.
FTC Announces Latest Data Security Settlement - CafePress
This week, let’s consider the FTC’s data security settlements with both the current and former owners of CafePress, a U.S. clothing and merchandise retail platform.
Prepping for Cyber-Attacks
As the risk of cyber-attacks escalate, let’s consider some resources and news that can help you and your organization reduce the risk of compromise and otherwise enhance your cyber posture.
Biometrics in 2022: Employees, the FTC, Dashcams, Time-Keeping Software, etc.
This week, let’s look at lessons drawn from recent actions by the plaintiffs’ bar and the FTC -- all of which are focused on the use of biometrics, and restrictions under laws like the Illinois Biometric Information Privacy Act (BIPA).
“Technical Debt” in IT Systems
This week, let’s consider the liabilities presented by hidden technical debt in IT systems.