Posts Categorized: Data Protection

California Adopts New Data Privacy Law

In late June, the California legislature adopted, and Governor Jerry Brown later signed into law, the California Consumer Privacy Act of 2018.  See website.  The new law was adopted shortly after the effectiveness of the EU’s General Data Protection Regulation (the “GDPR”), and in the wake of public outcry over data protection violations.  While it… Read more »

EU General Data Protection Regulation To Go Into Force

The EU General Data Protection Regulation (the “GDPR”) is scheduled to go into force on May 25, 2018.  The GDPR replaces existing data protection laws throughout the EU, and tightens the requirements that apply to businesses that collect and use personal data.  While a full understanding of the GDPR is beyond the scope of this… Read more »

NY Department of Financial Services Publishes Revised Cybersecurity Rules

As reported previously, the NY Department of Financial Services (the “NYDFS”) published proposed comprehensive cybersecurity rules that would apply to financial institutions holding a state license.  On December 28, 2016, the NYDFS published revised rules, taking into account some, but not all, of the objections to the original rules.  The new rules have a 30… Read more »

NY Department of Financial Services Proposes New Cybersecurity Rules

In September of 2016, the NY Department of Financial Services (the “DFS”) proposed rules to require anyone operating under the NY banking law, insurance law or financial services law (a “Covered Entity”) to adopt a cybersecurity program and a cybersecurity policy, to appoint a chief information officer (a “CIO”), to do penetration and vulnerability testing,… Read more »