Articles in Privacy & Data Security

Holding Redlich: 2018 year in review – the top issues and where to next

Posted

As 2018 rapidly draws to a close, our practice group experts take a magnifying glass to the top issues from the year - and outline what they expect to dominate in 2019. We examine the key issues in: Competition & Consumer: A review of the ACCC's actions this year in relation to its 2018 enforcement priorities Construction & Infrastructure: A year of Read More

Blockchain technology and cryptocurrencies: regulatory framework in the UAE

Posted

The terms “Blockchain” or “Bitcoin” were alien to the general public in the United Arab Emirates (UAE) when Satoshi Nakamoto began the Bitcoin phenomenon in 2008. However, today with one of the world’s first cryptocurrency deep “cold storage” companies operating in Dubai, it is clear that tides have shifted. In a bid to become a pioneer in blockchain technology, the Read More

What You Need to Know about California’s New Prescription Drug Monitoring Program

Posted

A new prescription drug monitoring program is going into effect that will impact many health care institutions and professionals. Effective October 2, 2018, as a result of the implementation of California Senate Bill 482, practitioners must, with limited exception, review the prescription history of their patients no more than 24 hours prior to prescribing a Schedule II, III, or IV Read More

Cyber risk: Addressing the elephant in the room

Posted

One of the biggest risks to data security is lack of vendor (third party) and vendor subcontractor (fourth party) management. Companies can mitigate ever-increasing vendor data security risk through the purchase of appropriate cyber insurance coupled with well-thought-out due diligence and contract negotiations. Managing increased risk from reliance on third- and fourth-party service providers Companies are increasingly using more vendors Read More

The Process of GDPR Compliance: MAP DATA, DOORS O(PEN)

Posted

The new European Union General Data Protection Regulation (GDPR) took effect on Friday, May 25, 2018, but many companies are still hard at work becoming compliant with this broad and stringent regulatory scheme governing privacy and data security. This new law reaches companies located in the United States who process any information (personal data) of identified or identifiable natural persons Read More

CALIFORNIA PASSES LANDMARK CONSUMER PRIVACY LAW: WHAT YOU NEED TO KNOW NOW

Posted

In a significant action that imposes new privacy obligations on California companies while forestalling possibly more onerous requirements from a citizen ballot initiative, on June 28, 2018, the California legislature unanimously passed and Governor Jerry Brown signed into law the California Consumer Privacy Act. When it becomes effective, this amendment to the California Civil Code will make sweeping changes to Read More

New EU Privacy Law Targets U.S. Businesses, Too

Posted

Stiff Penalties Will Likely Force Compliance With GDPR A sweeping new law aimed at protecting the privacy of people living in the European Union will likely force virtually all businesses – small and large – here in the United States to overhaul the way they collect and use personal information received and stored digitally, or face potentially huge fines. The Read More

Practical advice for businesses in a complicated cybersecurity world

Posted

So many news articles, alerts, stories, and headlines about cybersecurity tell businesses that the sky is falling and leave business people so scared about cybersecurity that they are not clear where to start or what to focus on to prevent (or respond to) cybersecurity attacks and to meet their separate legal obligations to protect confidential information. With so much information Read More

New General Data Protection Regulation Takes Effect on May 25, 2018: Take Steps Now to Ensure Compliance

Posted

The European Parliament, the Council of the European Union, and the European Commission have  enacted new rules, called the General Data Protection Regulation (“GDPR” or “Regulation”), to strengthen the protection of data pertaining to residents of the European Union (“EU”). GDPR also addresses the use and export of such data outside the EU. The requirements are not limited to EU-based Read More

February 15, 2018: First Certification Deadline Under the NYSDFS Cybersecurity Regulation

Posted

The New York State Department of Financial Services (“DFS”) Cybersecurity Regulation (“Regulation”) took effect on March 1, 2017, and applies to those operating or required to operate under New York banking, insurance and finance laws (“Covered Entities”). Covered Entities should have been in compliance with portions of the Regulation as of August 28, 2017. The next deadline under the Regulation Read More