Information Security & Data Breach Response

Information security is one of the greatest challenges companies face today. We help our clients succeed with solutions that are legally sophisticated, technically savvy, and operationally practical.

Security in Practice

Our "Security in Practice" webinar series offers practical strategies for building an information security program and preparing for potential incidents, covering topics like effective tabletop exercises, useful incident response plans, actionable risk assessments, and manageable third-party risk.

View Webinar Showcase

Our Information Security & Data Breach Response Team provides resources to help you develop your information security and incident response programs. For a more customized approach, contact a member of our team.

Ransomware Response

This guide is intended to provide general information and considerations when preparing for and responding to a ransomware attack.

Incident Readiness Legal Assessment

Our Incident Readiness Legal Assessment helps clients address the essentials of incident readiness at a fixed-fee price.

State Data Breach Statutes

Use this summary to help answer questions about state data breach notification requirements.

Attorney-Client Privilege

Our latest thinking on attorney-client privilege.

844-GoToDWT
Assistance with assessing and responding to security incidents designed to limit legal liability, preserve system assets, and protect your business reputation.

Information security is one of the great challenges companies face today. We help our clients succeed with solutions that are legally sophisticated, technically savvy, and operationally practical.

Overview

Legal Expertise

We don't dabble in information security law—we live it every day. From broadly applicable data breach and security laws to technical, sector-specific requirements, our legal advice is shaped by years of experience focused on information security.

Technical Savvy

Understanding our clients' technology is essential to our practice. We believe that only by engaging with complex technical issues can an attorney truly understand the legal risks and challenges that technology creates. Where other attorneys throw up their hands, our team digs in.

Practical Approach

We deliver actionable legal guidance tailored to your organization. We can help you turn esoteric legal requirements into concrete policies and practices that support both your compliance needs and business goals. We'll help you evaluate your legal risks and develop solutions that make both legal and business sense.

Our lawyers have advised clients on hundreds of data security incidents and data breaches.

We sharpen our clients' incident response skills through a variety of innovative service offerings.

We help our clients develop information security programs that comply with applicable security laws while supporting business and operational needs.

We untangle complex information security laws, regulations, standards and frameworks and assess our clients' compliance obligations.

We advise our clients on the information security and data strategy aspects of complex commercial and corporate transactions.

844-GoToDWT
Assistance with assessing and responding to security incidents designed to limit legal liability, preserve system assets, and protect your business reputation.

Our Resources

Our Information Security & Data Breach Response Team provides resources to help you develop your information security and incident response programs.

05.16.25

Insights

California Privacy Regulator Approves Trimmed-Down Regulations Read More

05.05.25

Insights

FTC Amends COPPA Rule To Address Changes in Technology and Online Practices Read More

04.18.25

Insights

FedRAMP 20x Initiative Promises Major Changes for Federal Cloud Service Providers Read More

04.15.25

Insights

DOJ Issues Guidance on Foreign Data Access Rule, Announces Conditional 90-Day Enforcement Pause for "Good Faith Efforts" Read More

04.09.25

Insights

Deadline Approaching: Covered Entities Must File Certifications of Compliance With Amended NYDFS Cyber Regulation by April 15 Read More

03.20.25

Insights

Regulatory Reset? U.S. Cyber Incident Reporting Rules Face Congressional Scrutiny Read More

03.07.25

Insights

PCI SSC Clarifies Obligations for Ecommerce Merchants That Outsource Payment Card Processing Read More

02.04.25

Insights

Analyzing Biden's Ambitious Cyber EO—and What Comes Next Under Trump Read More

01.08.25

Insights

HIPAA Security Rule Resolves To Hit the Gym and Bulk Up Read More

01.06.25

Insights

DOJ Issues Final Rule Targeting Foreign Access to Americans' Sensitive Data Read More

12.18.24

Insights

Whether Naughty or Nice, Compliance Deadline for HIPAA Reproductive Care Privacy Is Coming to Town Read More

10.07.24

Insights

California Governor Signs Three Bills Amending CCPA Provisions on Sensitive Information and Opt-Out Preferences in the Context of Mergers Read More

09.19.24

Insights

State Privacy Laws

California's Privacy Regulator Issues Enforcement Guidance on How To Avoid "Dark Patterns" in Obtaining Consumer Consent Read More

08.15.24

Insights

Biometrics

Illinois Revises Biometrics Law To Reduce the Prospect of "Ruinous" Damage Awards Read More

07.24.24

Insights

Cyber and National Security

District Court Dismisses Majority of SEC Complaint Against SolarWinds and Its CISO Read More

07.18.24

Insights

Data Protection

CPPA Releases Data Broker Regulations for Public Comment Read More

07.11.24

Insights

Healthcare

21st Century Cures Act Information Blocking Rule Finally Has Teeth With Respect to Providers Read More

06.26.24

Insights

Consumer Privacy

Empire State of Minding the Minors: New York Laws Aim To Ensure Children's Privacy and Online Safety Read More

06.25.24

Insights

Healthcare

Federal District Court Casts Doubt on HHS HIPAA Tracking Technology Guidance Read More

06.13.24

Insights

State Privacy Laws

Nebraska Data Privacy Act Signed Into Law Read More

06.04.24

Insights

State Privacy Laws

Kentucky Consumer Data Protection Act Signed Into Law Read More

06.04.24

Insights

State Privacy Laws

Land of 10,000 Data Lakes: Minnesota Consumer Data Privacy Act Signed Into Law Read More

05.31.24

Insights

State Privacy Laws

Heightened Privacy Protections for Children in Virginia Read More

05.31.24

Insights

Cyber and National Security

SEC Clarifies Reporting of Material vs. Immaterial Cybersecurity Incidents Read More

05.24.24

Insights

Communications

SEC Adopts Amendments to Regulation S-P That Require Reporting Breaches of "Sensitive Customer Information" Read More

05.15.24

Insights

State Privacy Laws

Maryland Creates a New Paradigm for Data Privacy Read More

05.09.24

Insights

Healthcare

FTC Finalizes Expansion of Health Breach Notification Rule's Broad Applicability to Unauthorized App Disclosures Read More

04.26.24

Insights

Healthcare

HHS Amends HIPAA To Further Protect Privacy of Reproductive Health Care Information Read More

04.05.24

Insights

Healthcare

Washington's My Health My Data Act and its Nevada Twin are Now in Effect – Are You Ready? Read More

04.04.24

Insights

Data Protection

California Privacy Regulator Issues First Enforcement Advisory Read More

03.19.24

Insights

Healthcare

OCR Updates Guidance on HIPAA and Online Tracking, But New Examples Lead to New Questions Read More

03.07.24

Insights

Data Protection

Biden Issues Executive Order To Limit Access to Personal and Government-Related Data by "Countries of Concern" Read More

02.20.24

Insights

Data Protection

Old Rule, New Tricks: HHS Finalizes Most Substantial Changes to Substance Use Disorder Confidentiality Rule in Decades Read More

02.15.24

Insights

Healthcare

LEAP, Don't Run, to Make this YEAR's Deadline: HIPAA Small Breach Notifications Due February 29 Read More

01.22.24

Insights

State Privacy Laws

New Jersey Governor Signs Comprehensive Privacy Law Read More

12.15.23

Insights

Healthcare

HHS Reveals Strategy for Addressing Healthcare Sector Cybersecurity Read More

12.14.23

Insights

Cyber and National Security

DOJ, FBI Issue Guidance for Public Companies Seeking to Delay Disclosure of Material Cybersecurity Incidents Read More

12.07.23

Insights

Artificial Intelligence

Automated Decisionmaking Technology in California: New Rules Would Impose Transparency, Notice, and Consumer Opt-Out Obligations on Businesses Read More

12.04.23

Insights

Artificial Intelligence

CISA, UK NCSC, and 17 Other Countries Issue Landmark Joint Guidelines for Secure AI System Development Read More

11.30.23

Insights

Cyber and National Security

CISA Releases Revised Draft of Secure Software Development Self-Attestation Form Read More

11.17.23

Insights

Data Protection

SEC's Charges Against SolarWinds and Its CISO Highlight Emerging Risks for Public Companies, Security Professionals Read More

11.02.23

Insights

Financial Services

FTC Adds Data Breach Notification Requirement to Safeguards Rule Read More

11.01.23

Insights

Healthcare

HHS Proposes Information Blocking Disincentives for Health Care Providers Read More

10.30.23

Insights

Healthcare

How State General Privacy Laws Apply to Healthcare Providers Read More

10.25.23

Insights

Litigation

Litigation Preparedness Following a Data Breach: Three Tips to Consider During the Incident Response Period Read More

10.03.23

Insights

State Privacy Laws

Ctrl-Alt-Delete: California Legislature Passes Delete Act Read More

09.13.23

Insights

Cyber and National Security

Deadline Extended: ONCD Seeking Public Feedback on Ways to Harmonize Cybersecurity Regulations Read More

09.13.23

Insights

State Privacy Laws

Delaware's New Personal Data Privacy Act Read More

09.12.23

Insights

Consumer Privacy

Federal Court Dismisses Newsletter Subscriber’s VPPA Claim: Not a "Consumer" Read More

09.11.23

Insights

Cyber and National Security

Now Available: Recording of Security in Practice Webinar "Managing Third-Party Cyber Risks" Read More

08.31.23

Insights

FCC Proposes Voluntary Cybersecurity Labeling Program for Internet of Things Devices Read More

08.23.23

Insights

Financial Services

Webinar Recording Now Available: "SEC's New Cybersecurity Rule: Implications for Public Companies and Strategies for Compliance" Read More

08.18.23

Insights

Energy

TSA Updates Cybersecurity Requirements for "Critical" Pipelines and LNG Facilities Read More

08.17.23

Insights

Artificial Intelligence

California Regulator Previews Intentions for Cybersecurity, Privacy, and Automated Decisionmaking Regulations Read More

08.17.23

Insights

Data Protection

SEC v. Covington: Federal Court Orders Law Firm to Disclose Names of Clients Affected by Firm's Cyberattack Read More

08.15.23

Insights

Global Privacy & Security

U.S. District Court Holds That BIPA's Liquidated Damages Are Discretionary Read More

07.31.23

Insights

Cyber and National Security

SEC Adopts Cybersecurity Rule for Public Companies Read More

07.27.23

Insights

Healthcare

Information Blocking Enforcement Is Here – Are You Ready? Read More

07.19.23

Insights

Consumer Privacy

Oregon Consumer Privacy Act Signed Into Law Read More

07.18.23

Insights

Cyber and National Security

New Iowa Legislation Creates Cybersecurity Safe Harbor Read More

07.13.23

Insights

Data Protection

European Commission Approves EU-U.S. Data Privacy Framework, Paving Way for Streamlined Transfers of Personal Data Read More

07.10.23

Insights

State Privacy Laws

Confused About the Washington My Health My Data Act? Read More

07.07.23

Insights

Global Privacy & Security

U.S. Fulfills Commitments for Implementing EU-U.S. Data Privacy Framework Read More

07.06.23

Insights

State Privacy Laws

Texas Data Privacy and Security Act – An Overview Read More

06.30.23

Insights

State Privacy Laws

Connecticut Expands Regulation of Consumer Data Privacy Read More

06.30.23

Insights

State Privacy Laws

Enforcement of CCPA Regulations Delayed Until March 2024 Read More

06.27.23

Insights

Cyber and National Security

SEC Delays Proposed Cybersecurity Rules Read More

06.26.23

Insights

Healthcare

Is AI Development "Research" Under HIPAA? Read More

06.21.23

Insights

State Privacy Laws

Data Breach Notification Law Update: Texas Read More

06.08.23

Insights

State Privacy Laws

Florida Digital Bill of Rights Signed Into Law Read More

06.02.23

Insights

Biometrics

FTC Articulates Consumer Privacy Concerns – Potential Misuse of Biometric Information and Technologies Read More

05.25.23

Insights

Healthcare

FTC Seeks to Clarify Health Breach Notification Rule's Broad Applicability to Unauthorized App Disclosures Read More

05.24.23

Insights

Artificial Intelligence

China's Cyberspace Administration Proposes Draft Rules to Regulate Generative AI Read More

05.23.23

Insights

Consumer Privacy

Montana Consumer Data Privacy Act Signed Into Law Read More

05.18.23

Insights

Financial Services

REMINDER: Compliance Deadline for FTC's GLBA Safeguards Rule Is Around the Corner Read More

05.15.23

Insights

State Privacy Laws

Tennessee Information Protection Act Is Signed Into Law Read More

05.09.23

Insights

DWT

Now Available: Recording of Security in Practice Webinar "Conducting Informative Risk Assessments" Read More

05.05.23

Insights

State Privacy Laws

Indiana Governor Signs Comprehensive Privacy Law Read More

05.03.23

Insights

FERC

FERC Authorizes Targeted Utility Incentive Rate Options for Advanced Cybersecurity Investments Read More

05.02.23

Insights

Employment

Federal Agencies Will Jointly Look for Bias and Discrimination in AI Read More

04.28.23

Insights

Healthcare

New Washington Law Has Broad Implications For Protecting Consumer Health Data Read More

04.25.23

Insights

DWT

DWT's Information Security Team Launches Fixed-Fee Incident Readiness Legal Assessment Read More

04.21.23

Insights

Data Protection

OCR Proposes Amendments to HIPAA to Safeguard Reproductive Health Care Information in the Wake of Dobbs Read More

04.20.23

Insights

Technology

FedRAMP Updates 3PAO Standards for Cloud Service Provider Assessments Read More

04.13.23

Insights

Artificial Intelligence

Generative AI, ChatGPT Undergoing Heightened Regulatory Scrutiny Read More

04.11.23

Insights

FTC Seeks to Weigh In on Competition, Data Security in Cloud Computing Read More

04.06.23

Insights

State Privacy Laws

CCPA Regulations Approved in California, But Challenges Remain Read More

03.31.23

Insights

Consumer Privacy

Now We Are Six: Iowa Becomes the Sixth State to Enact a Comprehensive Privacy Law Read More

03.29.23

Insights

Data Protection

Data Breach Notification Law Update: Utah and Pennsylvania Read More

03.24.23

Insights

Financial Services

SEC Proposes Host of New Rules for Data Security, Cybersecurity, and IT Resilience Read More

03.22.23

Insights

Healthcare

Lessons Learned from OCR Reports to Congress on HIPAA Compliance and Data Breaches Read More

03.21.23

Insights

FTC Targets Tracking Pixels Amid Data Sharing Settlements with GoodRx, BetterHelp Read More

03.20.23

Insights

Data Protection

CISA Announces Launch of Ransomware Prevention Initiative Read More

03.17.23

Insights

State Privacy Laws

Final Rules Implementing Colorado Privacy Act Have Arrived Read More

03.15.23

Insights

Data Protection

SEC Settles Ransomware Disclosure Charges for $3 Million Read More

03.09.23

Insights

Cyber and National Security

Overview of the National Cybersecurity Strategy Read More

02.27.23

Insights

Financial Services

NCUA Approves 72-Hour Cyber Incident Reporting Requirement for Credit Unions Read More

02.24.23

Insights

Financial Services

Federal Court Holds Financial Institution Liable for Business Email Compromise Loss Read More

02.23.23

Insights

Artificial Intelligence

CPPA Solicits Comments on Cyber Audits, Risk Assessment, and AI Tech Read More

02.23.23

Insights

Technology

The Clock Is Ticking: HIPAA Small Breach Notifications Due March 1 Read More

02.21.23

Insights

Litigation & Regulatory Risk

Recent Decisions Interpreting Illinois Biometrics Law Could Create "Ruinous Liability" Read More

02.21.23

Insights

Safeguarding Advisory Client Assets: Our Take on Crypto Treatment Under the SEC's Proposed Rule Read More

02.06.23

Insights

DWT

DWT's Information Security Team Launches 'Security in Practice' Webinar Series Read More

02.02.23

Insights

Energy

FERC Directs NERC to Study Bulk Electric System's Internal Cybersecurity Gaps Read More

01.31.23

Insights

How State General Privacy Laws Apply to Healthcare Providers Read More

01.30.23

Insights

Data Protection

FCC Proposes New Rules for CPNI Data Breach Reporting Read More

01.19.23

Insights

Cyber and National Security

SEC Looks to Finalize Proposed Cyber Rules, Issue New NPRM Read More

01.17.23

Insights

Technology

FedRAMP Codified: A New Law Aims to Streamline Federal Security Authorizations for Cloud Services Read More

01.12.23

Insights

Healthcare

Deadline Approaching for Comments on Proposed Changes to Substance Use Disorder Confidentiality Rule Read More

01.09.23

Insights

Now Available: DWT-Glenbrook Partners Webinar "Data Privacy and Security Considerations for Fintechs: 5 Priorities Heading into 2023" Read More

12.22.22

Insights

State Privacy Laws

Colorado AG Releases Second Draft of Proposed Colorado Privacy Act Rules Read More

12.16.22

Insights

Data Protection

European Commission Takes Major Step Toward Approving Streamlined International Data Transfers Read More

12.14.22

Insights

Energy

TSA Seeks Comment on Strengthening Cybersecurity and Resiliency in the Pipeline and Rail Sectors Read More

12.13.22

Insights

Data Protection

HHS Publishes Guidance on Using Online Tracking Technologies Under HIPAA Read More

11.18.22

Insights

Cyber and National Security

New York Department of Financial Services Proposes Significant Amendments to its Cybersecurity Regulation Read More

11.16.22

Insights

Technology

FTC Extends Deadline to Comply with GLBA Safeguards Rule Until June 9, 2023 Read More

11.10.22

Insights

Cyber and National Security

New York Department of Financial Services' EyeMed Settlement Emphasizes Risk Assessments, Email Controls Read More

11.03.22

Insights

Data Protection

NY Attorney General Settlement Highlights Challenges of Username and Password Breaches Read More

11.02.22

Insights

FCC Proposes to Strengthen EAS and WEA Against Cyber Security Attacks and to Promote EAS Operational Readiness Read More

10.25.22

Insights

Global Privacy & Security

New Executive Order Paves Way for Streamlined International Data Transfers Read More

10.19.22

Insights

Cyber and National Security

Guiding Federal Agency Data to the Cloud Read More

10.10.22

Insights

State Privacy Laws

A First Look at the Colorado Privacy Act Proposed Rules Read More

10.06.22

Insights

Healthcare

Health Care Privacy Concerns Post-Dobbs Read More

09.29.22

Insights

Energy

Carrot or Stick? FERC Grapples With How to Incentivize Electric Utility Cybersecurity Investments Read More

09.28.22

Insights

Cyber and National Security

CISA Issues RFI For Cyber Reporting Rules and Announces Public Listening Sessions Read More

09.26.22

Insights

Consumer Privacy

CFPB Takes on Failure to Adopt "Common Data Security Practices" Read More

09.22.22

Insights

Healthcare

Information Blocking Rule Expands to Cover Electronic Designated Record Set Read More

09.06.22

Insights

Litigation

FTC Sues Data Broker Over Sales of Geolocation Data Read More

08.29.22

Insights

State Privacy Laws

CA Attorney General Settles With Online Retailer That Failed to Disclose "Sales" of Personal Information and Honor Global Privacy Control Opt-Out Requests Read More

08.22.22

Insights

Cyber and National Security

TSA Revises Cybersecurity Requirements for "Critical" Pipelines and LNG Facilities Read More

08.18.22

Insights

Artificial Intelligence

FTC Issues Advance Notice of Proposed Rulemaking on Commercial Surveillance and Data Security Read More

08.15.22

Insights

Cyber and National Security

State Banking Supervisors Clarify Cybersecurity Expectations for Nonbank Financial Institutions Read More

08.08.22

Insights

Cyber and National Security

Proposed Amendments to NY Financial Services Cybersecurity Regulations Impose New Obligations on Large Entities, Boards of Directors, and CISOs Read More

08.04.22

Insights

Healthcare

Privacy in a Post-Roe World: What Businesses of All Types Should Consider Read More

07.26.22

Insights

Media

Social Media Platforms and the First Amendment: How Much Can the Government Regulate? Read More

07.22.22

Insights

State Privacy Laws

Changing Landscape of State Privacy Laws Read More

06.27.22

Insights

Healthcare

OCR Issues New Guidance Applying Security Rule to Digital Voice Transmissions and Storage Read More

06.15.22

Insights

Surveillance

First Circuit Splits on Whether Warrantless Pole-Mounted Video Surveillance Violates Fourth Amendment; District Court Suppression Order Reversed Read More

06.07.22

Insights

Data Protection

European Commission Releases Additional Guidance on SCCs for International Data Transfers Read More

06.06.22

Insights

Technology

FTC Blog: FTC Act Creates "De Facto" Breach Notification Requirement Read More

06.03.22

Insights

State Privacy Laws

California Privacy Protection Agency Posts Preliminary Proposed Regulations Read More

06.02.22

Insights

Consumer Privacy

FTC Warns EdTech Vendors About COPPA Compliance Read More

05.18.22

Insights

Cyber and National Security

The Cyber Incident Reporting for Critical Infrastructure Act of 2022: An Overview Read More

05.11.22

Insights

State Privacy Laws

And Then There Were Five: Connecticut Joins the Privacy Bandwagon Read More

05.06.22

Insights

Financial Services

Introducing PCI DSS 4.0: New Payment Card Security Standards Take Broad View of Scope, Offer Companies More Compliance Flexibility Read More

05.05.22

Insights

Cyber and National Security

OCR Requests Comment on Significant HIPAA Enforcement Rulemaking Read More

04.12.22

Insights

Healthcare

Politics and PHI, Bad Online Reviews, and the Right of Access Read More

03.31.22

Insights

State Privacy Laws

And Utah Makes 4—Beehive State Passes Consumer Privacy Law Read More

03.23.22

Insights

Cyber and National Security

A Warning to Critical Infrastructure: Russia May Launch a Cyberattack Against U.S. Companies Read More

03.17.22

Insights

Cyber and National Security

SEC Proposes New Cyber Disclosure Rules for Public Companies Read More

03.16.22

Insights

Financial Services

Stepping Back: Five Takeaways From the Digital Assets Executive Order Read More

03.15.22

Insights

Consumer Privacy

California Attorney General Issues Opinion Interpreting "Inferences" Under CCPA Read More

03.09.22

Insights

Artificial Intelligence

FTC COPPA Settlement Requires Deletion of Children's Personal Information and "Affected Work Product" Read More

02.22.22

Insights

Global Privacy & Security

Growing Trouble for EU-U.S. Data Transfers Through Google Analytics Read More

02.18.22

Insights

Consumer Privacy

The Clock Is Ticking: HIPAA Small Breach Notifications Due March 1st Read More

02.17.22

Insights

Financial Services

SEC Proposes New Cybersecurity Regulations for RIAs and Funds Read More

02.11.22

Insights

Consumer Privacy

What Employers Should Know About the New California Privacy Law Read More

02.09.22

Insights

Consumer Privacy

The FTC Continues to Draw Attention to the Health Breach Notification Rule Read More

02.02.22

Insights

Cyber and National Security

Patch Your Systems! Log4j Vulnerability Sparks a Warning From the FTC Read More

01.13.22

Insights

Biometrics

Illinois "Protecting Household Privacy Act" Takes Effect Read More

01.07.22

Insights

Healthcare

2022 Health Information Privacy and Security New Year's Resolutions Read More

12.23.21

Insights

Security Sleigh Ride: DWT's 2021 Holiday Playlist Read More

11.30.21

Insights

Healthcare

Some Things Are Inevitable … Death, Taxes, and Rising HIPAA Penalties Read More

11.17.21

Insights

Cyber and National Security

Say Hello to 2.0: DoD's Significantly Revamped "CMMC 2.0" Program for Defense Contractors Read More

11.16.21

Insights

Cyber and National Security

Commerce Publishes Export Controls for Cybersecurity Intrusion and Surveillance Tools Read More

11.16.21

Insights

Data Protection

KIDS Act Seeks to Expand Online Protections for Children Under 16 Read More

11.11.21

Insights

Cyber and National Security

"Whole of Government" Anti-Ransomware Campaign on Full Display Read More

11.04.21

Insights

Financial Services

FTC Strengthens GLBA Information Security Requirements for Non-Bank Financial Institutions Read More

10.21.21

Insights

Artificial Intelligence

Does the U.S. Need an AI "Bill of Rights"?—White House Says "Yes" Read More

10.12.21

Insights

Cyber and National Security

Warning of "Very Hefty Fines," DOJ Launches Civil Cyber-Fraud Initiative to Pursue Violations of Cybersecurity Requirements in Government Contracts Read More

10.01.21

Insights

Financial Services

OFAC Makes Waves in Fight Against Ransomware, but Practical Effects Unclear Read More

09.21.21

Insights

Cyber and National Security

NIST Starts Consumer Labeling Program for IoT Cybersecurity Read More

09.10.21

Insights

Cyber and National Security

Federal Technology Providers Take Note: White House Announces Federal "Zero Trust" Strategy for Cybersecurity Read More

09.08.21

Insights

Biometrics

Baltimore City's Ban on Facial Recognition Now in Effect Read More

09.02.21

Insights

Cyber and National Security

SEC Continues to Emphasize Cybersecurity Practices and Disclosures, Settles Three Actions with Broker-Dealers and Investment Advisors Read More

09.01.21

Insights

Data Protection

New Children's Data Privacy Protections Take Effect in the U.K.: What to Know and How to Comply Read More

08.24.21

Insights

Cyber and National Security

Recent SEC Enforcement Activity Highlights Issuers' Cybersecurity Disclosure Obligations and Pitfalls Read More

08.17.21

Insights

Cyber and National Security

TSA Issues Second Security Directive for "Critical" Pipelines and LNG Facilities and Plans to Revise Pipeline Cybersecurity Guidelines Read More

08.12.21

Insights

State Privacy Laws

Multiple States Toughen Data Breach and Cybersecurity Requirements Read More

08.05.21

Insights

Data Protection

Another Court Limits Discovery Protections for Digital Forensic Investigations Read More

08.05.21

Insights

Cyber and National Security

Biden Administration's National Security Memorandum Focuses on Bolstering Cyber Defenses for Critical Infrastructure, Incentivizing Private Sector Read More

07.19.21

Insights

Policy and Regulatory Positioning

President Biden Signs Executive Order Encouraging Greater Regulation of Tech and Communications Companies Read More

07.08.21

Insights

State Privacy Laws

Colorado Adds to the Privacy Law Patchwork – What to Expect Read More

07.01.21

Insights

Litigation

TransUnion v. Ramirez: SCOTUS Limits Article III Redressable Injuries Read More

06.17.21

Insights

Artificial Intelligence

Understanding "Trustworthy" AI: NIST Proposes Model to Measure and Enhance User Trust in AI Systems Read More

06.14.21

Insights

Cyber and National Security

Biden Administration Rescinds Trump's TikTok and WeChat Bans, Issues Two Executive Orders Highlighting Policies on Chinese Tech Companies Read More

06.08.21

Insights

Litigation

SCOTUS Limits Reach of Computer Fraud and Abuse Act: Nefarious Reasons Are Not Enough for Criminal Liability Read More

06.08.21

Insights

Cyber and National Security

White House Urges U.S. Businesses to Adopt Best Practices to Fight Ransomware Read More

06.02.21

Insights

Biometrics

New York City Biometrics Law Takes Effect in July 2021 Read More

06.02.21

Insights

Cyber and National Security

TSA Security Directive Requires 30-Day Cybersecurity Assessments, Rapid Incident Notification for "Critical" Pipeline and LNG Facilities Read More

05.26.21

Insights

Energy

Following Colonial Pipeline Ransomware Attack, Oil and Natural Gas Companies Must Prepare for New Regulations and Added Scrutiny of Cybersecurity Programs Read More

05.24.21

Insights

Cyber and National Security

Center for Internet Security Updates CIS Controls With Focus on Cloud, Mobile, and Remote Work Read More

05.14.21

Insights

Cyber and National Security

White House Releases Wide-Ranging Executive Order on Cybersecurity Read More

04.28.21

Insights

Employment

Department of Labor Announces Cybersecurity Guidance for ERISA Retirement Plans Read More

04.14.21

Insights

Litigation

Predicting the Future of Privacy Class Actions After Oral Argument in TransUnion v. Ramirez Read More

04.07.21

Insights

Consumer Privacy

Alaska's Consumer Data Privacy Act: Another CCPA Copycat, but With Its Own Unanswered Questions Read More

04.05.21

Insights

Artificial Intelligence

Federal Regulators' Artificial Intelligence Initiative Is a Promising Development for Financial Industry Read More

04.01.21

Insights

DWT

The Complete Results: Which Privacy Law Are You? Read More

04.01.21

Insights

DWT

Which Privacy Law Are You? Read More

03.25.21

Insights

Litigation

Challenges to Google's Collection of Web Browsing Data Survive Motion to Dismiss Read More

03.24.21

Insights

Healthcare

Does the Information Blocking Rule Permit Delaying the Release of Electronic Health Information? Read More

03.15.21

Insights

Healthcare

More Time for Filing Comments on Proposed HIPAA Changes Read More

03.01.21

Insights

Artificial Intelligence

Acting FTC Chair Signals Potential Enforcement Priorities: Privacy and AI Read More

02.23.21

Insights

Healthcare

Calendar Year 2020 HIPAA Small Breach Notifications Due March 1, 2021 Read More

02.22.21

Insights

State Privacy Laws

Virginia Poised to Enact Comprehensive Consumer Privacy Law Read More

02.17.21

Insights

State Privacy Laws

Washington: People's Privacy Act Introduces "Significant Shift" on Consumer Interaction Read More

02.10.21

Insights

Policy and Regulatory Positioning

Senators Propose Substantial Revisions to Section 230's Protections for Online Providers Read More

02.09.21

Insights

Healthcare

Will the Biden Administration Complete the "Regulatory Sprint" With HHS' Proposed HIPAA Amendments? Read More

02.03.21

Insights

Artificial Intelligence

FTC Sets Its Eye on Algorithms, Automated Tech, and AI-Enabled Applications Read More

01.27.21

Insights

State Privacy Laws

Data Breach's Lack of "Sensitive Information" Creates Barrier to Standing in Federal CCPA Lawsuit Read More

01.21.21

Insights

Biometrics

Portland Becomes First Jurisdiction to Ban Certain Uses of Facial Recognition by Private Businesses Read More

01.06.21

Insights

Data Protection

WA Notify COVID-19 Exposure Tracking Tool Poses Privacy and Implementation Considerations for Employers Read More

01.04.21

Insights

Consumer Privacy

FCC Adopts Rules for TRACED Act Review of Autodialer and Prerecorded-Call Exceptions Read More

12.30.20

Insights

State Privacy Laws

"Dark Patterns" Make Their Appearance in California's New Privacy Law Read More

12.23.20

Insights

Privacy Wonderland: DWT's Holiday Playlist Read More

12.11.20

Insights

Healthcare

HIPAA May Apply to Employer COVID-19 Testing Programs Read More

12.10.20

Insights

Consumer Privacy

FCC Report on Status of Reassigned Numbers Database Hints at Mid-2021 Operational Date Read More

12.10.20

Insights

Privacy Oracle

The Privacy Oracle Read More

12.09.20

Insights

State Privacy Laws

2020 State Consumer Privacy Law Round-Up Read More

12.02.20

Insights

State Privacy Laws

First Classwide Settlement Involving CCPA Statutory Damages Provides Little Guidance Moving Forward Read More

11.23.20

Insights

Data Protection

EDPB Issues Draft Guidance on Post-Schrems II GDPR Compliant Data Transfers Read More

11.16.20

Insights

Privacy Oracle

Healthcare Systems Remain an Attractive Target for Ransomware Attacks Read More

11.16.20

Insights

Privacy Oracle

The Privacy Oracle Read More

11.12.20

Insights

Global Privacy & Security

Proceed With Caution When Remotely Monitoring Employees in the EU Read More

11.04.20

Insights

State Privacy Laws

California Voters Pass Proposition 24 – the California Privacy Rights Act Read More

10.28.20

Insights

Data Protection

CFPB Initiates Process to Regulate Financial Data Access Read More

10.26.20

Insights

Consumer Privacy

Google's Data Collection Practices Face Scrutiny in Recent Lawsuits Read More

10.07.20

Insights

Data Protection

Update on Cross-Border Transfers of Personal Data Following Schrems II Read More

10.06.20

Insights

Consumer Privacy

FCC Issues Rulemaking Notice Under TRACED Act Mandate to Revisit Autodialer and Prerecorded-Call Exceptions Read More

10.05.20

Insights

Biometrics

Facebook BIPA Settlement Moving Forward Read More

10.05.20

Insights

Data Protection

National Consumer Privacy Law Round-Up: Data Privacy and Security Are Back in Focus Read More

10.05.20

Insights

Privacy Oracle

The Privacy Oracle: October 2020 Read More

10.05.20

Insights

Healthcare

Top HHS "Information Blocking" Regulatory Compliance Challenges Read More

10.05.20

Insights

Data Protection

Update From LitLand: Dinerstein Decision Shows That Overcoming Standing in Privacy Cases Does Not Necessarily Create a Path to Victory Read More

09.09.20

Insights

Consumer Privacy

What Is the Worst Type of Online Privacy Policy … and Why Does it Matter? Read More

09.02.20

Insights

Consumer Privacy

What Do You Need to Consider When Preparing Your Startup's Privacy Policy? Read More

08.18.20

Insights

State Privacy Laws

CCPA Regulations Receive Final Approval (With Changes): Effective Immediately Read More

08.03.20

Insights

Policy and Regulatory Positioning

FCC Adopts New Safe Harbor Rules for Blocking Robocalls Read More

08.03.20

Insights

Privacy, Unmasked

Passport to Privacy: Lessons From EU Guidance on COVID-19 and Personal Data Read More

07.20.20

Insights

Global Privacy & Security

EU High Court Invalidates EU-U.S. Privacy Shield Read More

07.14.20

Insights

Consumer Privacy

C Is for Cookie Lawsuit: Google Accused of Wiretap Act Violations for Collection of Web Browsing Data Read More

07.14.20

Insights

State Privacy Laws

Plus Ça(lifornia) Change . . . Read More

07.14.20

Insights

Global Privacy & Security

Practitioners’ Corner: Do Not Track Is Back? Preparing for Browser-Based Preference Signals Read More

07.14.20

Insights

Privacy Oracle

The Privacy Oracle: July 2020 Read More

07.14.20

Insights

Privacy Oracle

Update From LitLand: Warrantless Video Surveillance After Carpenter Read More

07.09.20

Insights

Consumer Privacy

FCC Creates Reassigned Phone Number Database With Safe-Harbor Against TCPA Liability for Users Read More

07.09.20

Insights

Policy and Regulatory Positioning

Split Among Federal Appellate Courts on Autodialer Definition Deepens Read More

07.08.20

Insights

Policy and Regulatory Positioning

Supreme Court Strikes Down Government-Debt Exception to TCPA Ban on Autodialed and Prerecorded Calls to Cell Phones Read More

07.02.20

Insights

Privacy, Unmasked

Monitoring Employee Electronic Communications: A Potentially Risky Business Decision? Read More

06.16.20

Insights

Litigation

Litigation Risks for Contact Tracing Technology Read More

06.05.20

Insights

State Privacy Laws

With Less Than One Month Until Enforcement Begins, CCPA Regulations Give Businesses a To-Do List Read More

06.02.20

Insights

Consumer Privacy

Court's Enforcement of Hybrid Clickwrap Agreement to Defeat TCPA Claim Provides Lessons for Marketers Read More

06.01.20

Insights

Privacy, Unmasked

Privacy Triage: Five Tips to Identify Key Privacy Risks of New Products and Services Read More

05.21.20

Insights

Policy and Regulatory Positioning

3rd Circuit Finds Paid Market Surveys Are "Advertisements" Under TCPA Read More

05.15.20

Insights

Data Protection

Protecting Privacy and Public Health: The Senate Republican Proposal Read More

05.14.20

Insights

State Privacy Laws

Employee Temperature Checks and the CCPA Read More

05.11.20

Insights

Data Protection

USA: Senators plan to introduce the Coronavirus consumer data protection bill Read More

05.08.20

Insights

Data Protection

Practitioner’s Corner: What Can In-House Lawyers Do to Ensure Reasonable Security? Read More

05.08.20

Insights

State Privacy Laws

State Consumer Privacy Law Round-Up: Is Privacy on Hold? Read More

05.08.20

Insights

Privacy Oracle

The Privacy Oracle: May 2020 Read More

05.08.20

Insights

Privacy Oracle

Update From LitLand: Early CCPA Suits Posit Various Interpretations of Law Read More

05.08.20

Insights

Policy and Regulatory Positioning

Washington, D.C. Adds Security Requirements in New Data Breach Notification Law Read More

05.05.20

Insights

Education Privacy

No Spring Break for Student Privacy Read More

04.28.20

Insights

Data Protection

Science, Statistics, and the Privacy Implications of Reopening the Economy Read More

04.22.20

Insights

Consumer Privacy

In Tightening Your Belt, Don't Loosen Your Privacy Controls Read More

04.10.20

Insights

State Privacy Laws

Remember: When Creatively Engaging With Socially Distanced Kids, Be Sure to Avoid Creating COPPA or CCPA Compliance Concerns Read More

04.09.20

Insights

State Privacy Laws

California Moves Forward With CCPA Implementation Read More

04.09.20

Insights

Privacy Oracle

COVID-19 Highlights New Privacy Challenges for BigTech, Lawmakers Read More

04.09.20

Insights

Privacy Oracle

New York's "SHIELD" Act Amendments: Impacts and Implications for the Healthcare Industry Read More

04.09.20

Insights

Privacy Oracle

The Privacy Oracle: April 2020 Read More

04.09.20

Insights

Data Protection

Update from LitLand: Vermont Attorney General Sues Clearview AI Read More

04.09.20

Insights

State Privacy Laws

Washington Enacts First-in-the-Nation State Law Regulating Governmental Use of Facial Recognition Technology Read More

04.06.20

Insights

Policy and Regulatory Positioning

7th Circuit Quietly Effects Potentially Significant Change in Federal Do-Not-Call Laws' "Established Business Relationship" Exception Read More

04.06.20

Insights

Healthcare

What the ONC and CMS Final Rules For Interoperability Mean for Data Exchange and Patient Access to Health Information Read More

03.31.20

Insights

Healthcare

The ONC and CMS Final Rules For Interoperability: What the Rules Mean for Data Exchange and Patient Access to Health Information

03.30.20

Insights

Healthcare

Help Is on the Way for Telehealth: Loosened HIPAA Enforcement Read More

03.27.20

Insights

Healthcare

Security and Privacy Urgent Care: COVID-19 Is a Threat to Your Health and Your Network Read More

03.04.20

Insights

State Privacy Laws

Focus on the Proposed Washington Privacy Act Read More

03.04.20

Insights

Data Protection

Practitioners’ Corner: Third-Party Cookies in a Post-CCPA World Read More

03.04.20

Insights

Policy and Regulatory Positioning

Privacy Issues in the Ongoing Controversy Over Section 230 Read More

03.04.20

Insights

State Privacy Laws

State Consumer Privacy Law Round-Up Read More

03.04.20

Insights

Privacy Oracle

The Privacy Oracle: March 2020 Read More

03.04.20

Insights

Biometrics

Update from LitLand: "Bare Procedural Violation" of BIPA Remanded to Illinois State Court Read More

02.26.20

Insights

Global Privacy & Security

EU Issues White Paper Outlining Framework for Regulating Artificial Intelligence Read More

02.26.20

Insights

Artificial Intelligence

More Data Please! The Challenges of Applying Health Information Privacy Laws to the Development of Artificial Intelligence Read More

02.14.20

Insights

Policy and Regulatory Positioning

Mandatory CFIUS Filing Requirement for Certain Foreign Investments Takes Effect; Exceptions for Canadian, Australian, and U.K. Investors Read More

02.06.20

Insights

State Privacy Laws

Privacy Law Issues to Watch in 2020 Read More

02.06.20

Insights

Privacy Oracle

The Privacy Oracle: February 2020 Read More

02.06.20

Insights

Biometrics

Update from LitLand: Facebook Settles After Being Denied Certiorari in Facebook Inc. v. Patel Read More

02.06.20

Insights

Artificial Intelligence

White House Issues Guidance for AI Regulation and "Non-Regulation" Read More

02.04.20

Insights

State Privacy Laws

State Consumer Privacy Law Round-Up Read More

01.28.20

Insights

Consumer Privacy

Washington State Takes Center Stage for Privacy Legislation Read More

01.23.20

Insights

Artificial Intelligence

White House Issues Guidance for AI Regulation and “Non-Regulation” Read More

01.22.20

Insights

State Privacy Laws

Washington: Proposed Privacy Act adds to development of "patchwork of different state laws" Read More

01.16.20

Insights

Policy and Regulatory Positioning

Supreme Court Agrees to Review TCPA’s Constitutionality Read More

01.07.20

Insights

Artificial Intelligence

New Federal Privacy Bill Would Require Audits of Algorithmic Decision-Making Read More

01.03.20

Insights

Consumer Privacy

Feds Take Action on Robocalls With TRACED Act Read More

12.18.19

Insights

Artificial Intelligence

Love Thy AI: CMS Embraces Emerging Technology With Health Outcomes Challenge Read More

12.12.19

Insights

Artificial Intelligence

Data Trusts: A Pathway to “Ethical” AI or a Solution in Search of a Problem? Read More

12.12.19

Insights

Healthcare

Healthcare in the AI Crosshairs Read More

12.12.19

Insights

Data Protection

The Access Act: Can Data Portability Increase Online Platform Competition? Read More

12.12.19

Insights

Privacy Oracle

The Privacy Oracle: December 2019 Read More

12.12.19

Insights

Artificial Intelligence

Update from LitLand: The ACLU Sues the Government Over the Use of Facial Recognition Technology Read More

12.05.19

Insights

State Privacy Laws

On Demand Webinar: Get Ready: California Consumer Privacy Act Goes Into Effect Jan. 1, 2020 Read More

11.14.19

Insights

Biometrics

Facing the Future of Biometric Information for Payment Verification Read More

11.07.19

Insights

State Privacy Laws

CCPA Update: The Draft Regulations are Here! Read More

11.07.19

Insights

State Privacy Laws

“De-Identified” Data under the CCPA – Some Words of Caution Read More

11.07.19

Insights

Data Protection

The Battle Over Encryption Read More

11.07.19

Insights

Privacy Oracle

The Privacy Oracle: November 2019 Read More

11.07.19

Insights

Biometrics

Update from LitLand: Vimeo Faces BIPA Lawsuit Read More

11.05.19

Insights

Healthcare

To Accept CMPs or Not to Accept CMPs? Read More

10.29.19

Insights

Healthcare

Sprint Regulations: EHR and Cybersecurity Proposals Read More

10.28.19

Insights

Global Privacy & Security

‘C.L.O.U.D.’s On the Horizon: How Law Enforcement Electronic Data Requests Are Going Global Read More

10.09.19

Insights

State Privacy Laws

The Privacy Franchise: U.S. States Go European with Data Protection Rules Read More

10.07.19

Insights

Data Protection

Treasury Department Proposes Two CFIUS Rules Implementing FIRRMA Read More

10.03.19

Insights

State Privacy Laws

Death, Taxes, and Changes to the CCPA Read More

10.03.19

Insights

Data Protection

Online Advertising Technology: The U.K. ICO Takes an Interest Read More

10.03.19

Insights

Policy and Regulatory Positioning

Practitioners’ Corner: The FTC is the COPPA on the Beat: The YouTube Settlement and What It Means for In-House Counsel Read More

10.03.19

Insights

Privacy Oracle

The Privacy Oracle: October 2019 Read More

10.03.19

Insights

Data Protection

Update from LitLand: Reflections on Standing in the OPM Data Breach Litigation: Clapper, Iqbal, and Espionage Read More

09.26.19

Insights

State Privacy Laws

Final CCPA Amendments Awaiting Governor’s Signature – and a New Ballot Initiative Is in the Works Read More

09.11.19

Insights

State Privacy Laws

“Oh AG, Please Don’t Let Me Be Misunderstood”: Breaking Down Common CCPA Myths Read More

09.09.19

Insights

DWT

Planning to Attend the Privacy + Security Forum in DC This October? Read More

09.05.19

Insights

Education Privacy

A Syllabus for Regulating Student Data Privacy? Read More

09.05.19

Insights

Data Protection

Federal Privacy Legislation – Dead, or Just Resting? Read More

09.05.19

Insights

Consumer Privacy

Practitioners’ Corner: What Is Personal Information?

Or, Understanding Anonymization, De-Identification, and Aggregation Read More

09.05.19

Insights

State Privacy Laws

Shooting at a Moving Target: The Continuing Saga of Possible CCPA Amendments Read More

09.05.19

Insights

Privacy Oracle

The Privacy Oracle: August/September 2019 Read More

09.05.19

Insights

Consumer Privacy

Update From LitLand: "Hey Google, Are You Listening?" Read More

08.22.19

Insights

State Privacy Laws

CCPA Compliance – Limited Time Offers, Act Now Read More

08.13.19

Insights

State Privacy Laws

Consumer Rights Under the CCPA, Part 2: Responding to Consumer Rights Requests Read More

08.05.19

Insights

Consumer Privacy

Google "Street View" Wiretap Allegations Settled for a "Modest" $13 Million Read More

07.29.19

Insights

Data Protection

Practitioners’ Corner: Counsel’s Guide to Winning Friends and Influencing the Business Read More

07.29.19

Insights

Consumer Privacy

Significant FTC Fines Highlight Evolution in Privacy Enforcement Landscape Read More

07.29.19

Insights

Policy and Regulatory Positioning

The Future of the Children’s Online Privacy Protection Act Read More

07.29.19

Insights

Policy and Regulatory Positioning

The NIST Privacy Framework: Updates and Opportunities Read More

07.29.19

Insights

The Privacy Oracle: July 2019 Read More

07.29.19

Insights

Data Protection

Update from LitLand: Illinois Lawsuit Highlights Difficulty of True De-Identification Read More

07.22.19

Insights

Consumer Privacy

FTC Seeks Comment on Effectiveness of Last Round of COPPA Rule Amendments, Asks if Further Changes Are Warranted Read More

07.10.19

Insights

State Privacy Laws

Consumer Rights Under the CCPA, Part 1: What Are They? Read More

07.01.19

Insights

Cyber and National Security

You’re Invited - The Role of Law Enforcement in Incident Response Read More

06.27.19

Insights

State Privacy Laws

Practitioner’s Corner: Another Piece in the Jigsaw Puzzle Read More

06.27.19

Insights

State Privacy Laws

State and Federal Privacy Legislation Stalls Read More

06.27.19

Insights

Privacy Oracle

The Privacy Oracle: June 2019 Read More

06.27.19

Insights

State Privacy Laws

Uncertainty Remains in Key Provisions and Rules of California Consumer Privacy Act Read More

06.27.19

Insights

Privacy Oracle

Update from LitLand: Mass. Supreme Court Questions Whether Personal Records Can be Public Read More

06.24.19

Insights

Global Privacy & Security

The Global Outlook on Data Protection - A World-Wide Approach Read More

06.20.19

Insights

State Privacy Laws

The California Consumer Privacy Act: What Financial Services Providers Need to Know Read More

06.18.19

Insights

Global Privacy & Security

Web-Based Email is Not a Telecom Service Under EU Law Read More

06.14.19

Insights

Technology

In re LightYear Dealer Technologies d/b/a DealerBuilt Read More

06.13.19

Insights

State Privacy Laws

Industry Issues, Part 1: Where Doesn’t the CCPA Apply? Read More

06.10.19

Insights

Communications

FCC Greenlights Opt-Out Call Blocking of Illegal “Robocalls” Under Carrier-Defined Criteria, After Adding Protection for Lawful Calls – But Is It Enough? Read More

06.10.19

Insights

Cyber and National Security

Join Davis Wright Tremaine and Blackberry | Cylance for an Important Briefing and Networking Reception Read More

05.30.19

Insights

Financial Services

FTC Proposes Stricter Standards for Safeguards Rule Read More

05.30.19

Insights

Data Protection

Location, Location, Location: Recent Developments in Location Data Privacy Read More

05.30.19

Insights

State Privacy Laws

Maine Gets Closer to Enacting Limited Online Privacy Legislation Read More

05.30.19

Insights

State Privacy Laws

Practitioners’ Corner: CCPA Contracting, Part 2 Read More

05.30.19

Insights

State Privacy Laws

State Consumer Privacy Law Round-Up Read More

05.30.19

Insights

Privacy Oracle

The Privacy Oracle: May 2019 Read More

05.30.19

Insights

Biometrics

Update from LitLand: Massachusetts Proposes Biometrics Law that May Avoid Standing Issues Read More

05.28.19

Insights

Healthcare

The DWT HIPAA Audit Toolkits – A Cost-Effective Answer to Meeting the Challenges of HIPAA Read More

05.23.19

Insights

Artificial Intelligence

San Francisco Bans Facial Recognition Technology Amidst Wave of Government Scrutiny Read More

05.22.19

Insights

State Privacy Laws

X Marks the Spot Where the Personal Information is Stored: Avoiding Common Mistakes in Data Mapping Read More

05.20.19

Insights

Artificial Intelligence

You’re Invited: The Annual AI, Big Data and Cloud Conference Read More

05.16.19

Insights

Consumer Privacy

Dr. InfoGov: How I Learned to Stop Hating My Data and Love Records Management Read More

05.14.19

Insights

Consumer Privacy

Exempt or Not Exempt? Part 2: The California Consumer Privacy Act and the Fair Credit Reporting Act Read More

05.09.19

Insights

State Privacy Laws

Governor Signs Expanded Washington State Data Breach Law Read More

05.09.19

Insights

State Privacy Laws

“Reasonable Security” – The Myth of the CCPA Safe Harbor Read More

04.30.19

Insights

Privacy Oracle

The Privacy Oracle: April 2019 Read More

04.29.19

Insights

State Privacy Laws

A Barrage of CCPA Amendments: Can Any Go the Distance? Read More

04.29.19

Insights

Consumer Privacy

Federal Privacy Legislation Introduced, but Future Unclear Read More

04.29.19

Insights

State Privacy Laws

Practitioners' Corner: CCPA Contracting, Part 1 Read More

04.29.19

Insights

State Privacy Laws

State Consumer Privacy Law Roundup Read More

04.29.19

Insights

Litigation

Update from LitLand: A Review of Data Breach Litigation Risk Read More

04.29.19

Insights

State Privacy Laws

Washington State Privacy Act: A Postmortem Read More

04.26.19

Insights

Consumer Privacy

Appeals Court Invalidates TCPA’s Exemption to Automated-Call Prohibition for Collection of Debts Owed to or Guaranteed by the Federal Government Read More

04.25.19

Insights

State Privacy Laws

Privacy Meets Risk: The Internal Auditor’s Guide to CCPA Read More

04.19.19

Insights

Consumer Privacy

Washington State Fails to Enact Privacy Act Read More

04.18.19

Insights

Policy and Regulatory Positioning

The DETOUR Act: Behavioral Economics Meets Online Privacy Legislation Read More

04.15.19

Insights

State Privacy Laws

Exempt or Not Exempt? California Consumer Privacy Act and the Gramm-Leach-Bliley Act Read More

04.03.19

Insights

DWT

Building an Effective Privacy Program, Plus a Privacy Officer Roundtable Read More

03.22.19

Insights

Policy and Regulatory Positioning

SCOTUS Remands Google Case to the 9th Circuit for Spokeo Standing Analysis Read More

03.19.19

Insights

State Privacy Laws

Checking out of Hotel California: The California Consumer Privacy Act, and Looming Federal Legislation Read More

03.08.19

Insights

Artificial Intelligence

Webinar ǀ Business Challenges Over Rights to Erasure & Threats to AI Read More

03.07.19

Insights

Artificial Intelligence

Destination Unknown: The Perilous Future of Blockchain and Artificial Intelligence Technologies Under the California Consumer Privacy Act of 2018 Read More

02.27.19

Insights

Privacy Oracle

February Privacy Oracle: Proposed Amendments to the CCPA, Array of State Privacy Proposals, Upcoming Federal Hearings & Other Policy Developments Read More

02.26.19

Insights

Healthcare

HIPAA Small Breach Notifications Due March 1 Read More

02.26.19

Insights

State Privacy Laws

Leveraging Your GDPR Compliance Investment for CCPA Read More

02.25.19

Insights

Artificial Intelligence

Avoid Legal Turbulence while Navigating the Cloud and AI in Healthcare Read More

02.13.19

Insights

State Privacy Laws

Recent Developments in Cybersecurity….What You Don’t Know Will Hurt You Read More

02.13.19

Insights

02.08.19

Insights

Healthcare

Turning Good Information Security Into Good HIPAA Compliance Read More

02.08.19

Insights

State Privacy Laws

"Copycat CCPA" Bills Introduced in States Across Country Read More

02.06.19

Insights

Washington Privacy Act, as Introduced in the Washington Legislature: A Rapid Q&A Read More

02.04.19

Insights

Artificial Intelligence

More Data Please! Privacy Challenges of Artificial Intelligence Read More

01.28.19

Insights

Artificial Intelligence

Webinar: Emerging Legal and Policy Issues in Artificial Intelligence Read More

01.28.19

Insights

State Privacy Laws

Top 5 CCPA Questions to Ask Right Now Read More

01.24.19

Insights

State Privacy Laws

Sweeping New Compliance Obligations: The CCPA’s Impact on Financial Services Read More

01.23.19

Insights

Privacy Oracle

January Privacy Oracle: Analysis of Draft Washington State Privacy Act, New State and Federal Proposals, and Other Policy Developments Read More

01.17.19

Insights

Healthcare

Avoiding Critical Security Risk Analysis Mistakes Read More

01.16.19

Insights

DWT

On Demand Webinar ǀ Annual Review – Cybersecurity: Fundamentals of Privacy Law in 2018 Read More

01.11.19

Insights

Artificial Intelligence

Modern Hacking Investigations in Light of Blockchain and AI Technology Read More

12.20.18

Insights

Privacy Oracle

December Privacy Oracle: Analysis of FTC Data Security Hearings, Senate Privacy Hearings, and Other Policies Read More

12.20.18

Insights

State Privacy Laws

The End of Loyalty Programs: Assessing California's New Privacy Laws and Beyond Read More

12.20.18

Insights

Policy and Regulatory Positioning

FCC Creates Reassigned Phone Number Database With Safe-Harbor Against TCPA Liability for Users Read More

12.19.18

Insights

Artificial Intelligence

Modern Hacking Investigations in Light of Blockchain and AI Technology Read More

12.18.18

Insights

State Privacy Laws

He’s Making a List. Will Regulators Check His Privacy Practices Twice? Read More

12.10.18

Insights

DWT

Webinar: The Practical Reality of Design Influence in IoT Read More

12.05.18

Insights

Artificial Intelligence

FTC Hearings Exploring Algorithms, Artificial Intelligence, and Predictive Analytics Focus on Notions of Fairness, Transparency and Ethical Uses Read More

12.03.18

Insights

Artificial Intelligence

Adam Greene to Speak at AHLA’s Physicians and Hospitals Law Institute Read More

11.29.18

Insights

DWT

Adam Greene on HIPAA and the HITECH Act [Podcast] Read More

11.28.18

Insights

Healthcare

Where Is the HIPAA Right to Defend One’s Self? Read More

11.26.18

Insights

Privacy Oracle

Introducing the DWT Privacy Oracle Read More

11.21.18

Insights

Retail/Hospitality

Just in Time for Black Friday, Cyber Monday & Giving Tuesday Read More

11.02.18

Insights

Healthcare

Lights, Camera, Action!: HIPAA Enforcement for Camera Crews on Hospital Premises Read More

10.25.18

Insights

State Privacy Laws

The California Consumer Privacy Act: Implications for the Health Care Ecosystem Read More

10.22.18

Insights

Cyber and National Security

Joint FTC Initiative Announces New Cybersecurity Resources for Small Businesses Read More

10.10.18

Insights

DWT

Join DWT for the Fourth Annual Wireless Legal Seminar for the West Read More

10.03.18

Insights

Cyber and National Security

California Enacts the Nation’s First Internet of Things Security Law Read More

10.02.18

Insights

East Coast-West Coast: 9th Circuit Reinvigorates FCC’s Broad Autodialer Definition, Creates Circuit Split on When TCPA Liability Can Attach for Using a Dialer Read More

09.24.18

Insights

DWT

Planning to Attend the Privacy + Security Forum in DC This October? Read More

09.19.18

Insights

Financial Services

Robbing a Locked Bank Vault from Home: Legal Issues Raised by Cryptocurrency Frauds Read More

09.18.18

Insights

Technology

NIST to Begin Workshops to Develop Voluntary Privacy Framework for New Tech Platforms like AI and IoT Read More

09.17.18

Insights

DWT

Apply Now! Compliance, Governance and Oversight Council Regional Meeting in Seattle Read More

09.17.18

Insights

DWT

Amy Mushahwar to Discuss How AI Will Impact the Practice of Law at Upcoming AI Summit Read More

09.13.18

Insights

DWT

You’ve Been Breached - Now What? Read More

09.12.18

Insights

DWT

20-Year Federal Cyber Attorney: We’re Close to Tipping Point in Privacy Read More

09.10.18

Insights

DWT

Adam Greene to speak at the 19th Annual Pharmaceutical and Medical Device Compliance Congress Read More

09.06.18

Insights

State Privacy Laws

Amendments to California Consumer Privacy Act Head to Governor’s Desk Read More

08.22.18

Insights

Cyber and National Security

Is Your Company Prepared to Navigate the Changing Election Law Landscape? Read More

08.21.18

Insights

FBI Warning: Data Security Issues Posed by the Internet of Things Read More

08.13.18

Insights

State Privacy Laws

Business Community Announces California Consumer Privacy Act Amendment "Wish List" Read More

08.06.18

Insights

State Privacy Laws

Q&A: Privacy and Security Partner Christopher Ott on the California Consumer Privacy Act of 2018 Read More

08.02.18

Insights

Cyber and National Security

As US Midterm Elections Approach, Political Advertising Controls Take Center Stage Read More

07.27.18

Insights

Healthcare

How a Rushed California Law Will Change the Privacy and Security Landscape for Mobile Health Apps Read More

07.24.18

Insights

State Privacy Laws

Don’t Miss Out on California Consumer Protection Act (CCPA) Updates from DWT Read More

07.11.18

Insights

Data Protection

INSIGHT: Cracking Open a Can of Worms: Why Carpenter v. United States May Not Be the Privacy Decision That Was Needed or Wanted Read More

07.10.18

Insights

Governance & Business Operations

New Association Health Plans & Washington Businesses Read More

07.10.18

Insights

Healthcare

IAPP Web Conference Featuring Adam Greene: Health Information Privacy and Security Trends Read More

07.09.18

Insights

Vermont Enacts Nation’s Most Stringent Automatic Renewal Law Read More

07.09.18

Insights

Cyber and National Security

The Clock is Ticking!: The Types of Cybersecurity Disclosures Required by the Securities and Exchange Commission Read More

07.02.18

Insights

Cyber and National Security

Vacation is Canceled!: Consumer Reporting Agencies Must Satisfy First-in-the-Nation N.Y. Cybersecurity Regulations by the Fall Read More

06.30.18

Insights

State Privacy Laws

California Consumer Privacy Act: A Rapid Q&A Read More

06.29.18

Insights

State Privacy Laws

WEBINAR - Breaking Update: New California Consumer Privacy Act Read More

06.28.18

Insights

Cyber and National Security

What You Should Know About The 24/7 Cybercrime Network Read More

06.28.18

Insights

Update: California Consumer Privacy Act of 2018 Read More

06.22.18

Insights

California Privacy Ballot Initiative Tentatively on Hold in Exchange for New Privacy Legislation Read More

06.19.18

Insights

Information Security & Data Breach Response

New California Pole Access Rules: A Boost for Wireless Installation Read More

06.19.18

Insights

Cyber and National Security

Collision Course: Foreign Influence Operations, Data Security and Privacy Read More

06.18.18

Insights

Cyber and National Security

What Lawyers Need to Know About Security Techniques and Technologies to Mitigate Breach Risk (Part Three of Three) Read More

06.14.18

Insights

DWT

Net Neutrality Update Read More

06.13.18

Insights

DWT

Want to Play a GDPR Breach Notice War Game? Read More

06.08.18

Insights

Cyber and National Security

What Lawyers Need to Know About Security Techniques and Technologies to Mitigate Breach Risk (Part Two of Three) Read More

06.07.18

Insights

DWT

“Reasonable” Cybersecurity for Businesses: Developing a Comprehensive Cybersecurity Strategy Read More

06.06.18

Insights

Cyber and National Security

What Lawyers Need to Know About Security Techniques and Technologies to Mitigate Breach Risk (Part One of Three) Read More

06.04.18

Insights

Data Protection

FTC Reminder: Websites and Online Services Subject to COPPA Must Honor Data Deletion Requirements Read More

06.01.18

Insights

DWT

ePrivacy and Security: Striking a Balance Read More

06.01.18

Insights

Data Protection

Alabama and South Dakota to Join Breach Notification Club, with Oregon and Colorado Updating Approaches Read More

06.01.18

Insights

Data Protection

New Vermont Data Broker Regulatory Regime Takes Effect Read More

05.17.18

Insights

Communications

FCC Seeks Comment on Issues Arising from Appellate Reversal of Portions of TCPA Omnibus Order in ACA International Read More

05.17.18

Insights

DWT

NYC FinTech & CyberSecurity FastTrack Event, Hosted by DWT Read More

05.16.18

Insights

DWT

New York CyberSecurity Meetup by Startupbootcamp Amsterdam, hosted by DWT Read More

05.16.18

Insights

DWT

Davis Wright Tremaine’s Healthcare Privacy & Security Team Recognized by Chambers Read More

05.08.18

Insights

Data Protection

DWT Webinar │ GDPR: Exporting Privacy Standards Worldwide Read More

05.04.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

04.27.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

04.19.18

Insights

Data Protection

EU to Require Tech Firms to Provide Overseas Emails, Texts and Stored Data Read More

04.13.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

04.13.18

Insights

Cyber and National Security

Federal Regulatory Agencies Advise on Cyber Insurance for Information Security Programs Read More

04.09.18

Insights

DWT

The Compliance, Governance and Oversight Council (CGOC) Read More

04.06.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

04.05.18

Insights

DWT

HCCA's 22nd Annual Compliance Institute Read More

04.04.18

Insights

Healthcare

Is OCR Moving the Goal Posts on Vendor Management? Read More

04.04.18

Insights

Healthcare

Webinar │DWT & RADAR: Navigating States and HIPAA Breach Notification Compliance, April 26 Read More

04.03.18

Insights

DWT

The 11th Annual Shared Assessments Summit 2018 Read More

03.30.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

03.22.18

Insights

Communications

Briefing: D.C. Circuit Rules on FCC 2015 TCPA Omnibus Order: What Does It Mean? Read More

03.22.18

Insights

Policy and Regulatory Positioning

D.C. Circuit Rules on FCC’s 2015 TCPA Omnibus Order: A Mixed Bag Read More

03.16.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

03.09.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

03.05.18

Insights

Healthcare

Privacy Please: HIPAA and Artificial Intelligence – Part I Read More

03.03.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

02.28.18

Insights

The CLOUD Act: Analysis and Criticisms Read More

02.28.18

Insights

Policy and Regulatory Positioning

4th Circuit Denies BMG request for Panel and En Banc Rehearing Read More

02.27.18

Insights

Policy and Regulatory Positioning

9th Circuit Upholds FTC Authority Over Non-Carrier Activities of Common Carriers Read More

02.23.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

02.21.18

Insights

Communications

Reinstated CPNI Regulations Require Providers to File Annual FCC CPNI Certification by March 1, 2018 Read More

02.16.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

02.12.18

Insights

Data Protection

HIPAA Small Breach Notifications Due March 1 Read More

02.09.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

02.08.18

Insights

Healthcare

Adam Greene to Present at HIMSS Las Vegas on March 6 Read More

02.06.18

Insights

Policy and Regulatory Positioning

4th Circuit Reverses BMG’s $25 Million Contributory Copyright Infringement Verdict Against Cox Read More

02.05.18

Insights

Technology

FCBA Intellectual Property Committee CLE this Wednesday, Feb 7th Read More

01.30.18

Insights

Healthcare

Health Cloud PrivSec Law 101 | Webinar Read More

01.26.18

Insights

Cyber and National Security

ICYMI in Cybersecurity and Data Breach Read More

01.24.18

Insights

Healthcare

2018 Health Information Privacy and Security New Year’s Resolutions Read More

01.23.18

Insights

Technology

Catch Amy M's Discussion on Legal Ethics in the Age of A.I. at Legaltech – Feb 1, NYC Read More

01.19.18

Insights

Data Protection

ICYMI in Cybersecurity and Data Breach Read More

01.18.18

Insights

Policy and Regulatory Positioning

Webinar | TCPA Update 2018: Current Compliance Challenges for Companies Read More

01.18.18

Insights

Technology

John Seiver to speak at FCBA Intellectual Property Committee CLE on February 7 Read More

01.16.18

Insights

Communications

FTC Issues Staff Report on Consumer Recognition of Paid Advertising Read More

01.16.18

Insights

Healthcare

Don’t Miss Adam Greene at the Health Care Compliance Association’s Washington DC Regional Conference Read More

01.12.18

Insights

Policy and Regulatory Positioning

ICYMI: PrivSec’s Weekly News Picks Read More

01.12.18

Insights

Data Protection

Don’t Miss Out: The Health Care Cloud Coalition Monthly Meeting With Guest Speaker Linda Sanches From the Office for Civil Rights Read More

01.12.18

Insights

Communications

Jan 12th Update on FCC’s Internet Freedom Order Read More

01.11.18

Insights

Healthcare

2017 Edition of HIPAA Regulations Released Read More

12.19.17

Insights

Data Protection

2018 Predictions in Privacy & Security Read More

12.13.17

Insights

Cyber and National Security

PrivSec Blog Year in Review: Top 10 PrivSec Blog Posts in 2017 Read More

12.08.17

Insights

Data Protection

ICYMI: PrivSec’s Weekly News Picks Read More

11.30.17

Insights

Policy and Regulatory Positioning

FCC Reverses Course, Shifts ISP Customer Privacy Back to FTC Read More

11.28.17

Insights

FCC Adopts ATSC 3.0 Read More

11.21.17

Insights

Communications

FCC Targets “Robocalls” By Enabling Voice Providers to Block Inherently Suspect Phone Numbers Read More

10.16.17

Insights

Data Protection

ACA’s Nondiscrimination Taglines and Notices Require Updating Your Notice of Privacy Practices Read More

10.03.17

Insights

Data Protection

Employer-Sponsored Health Plan HIPAA Compliance Checklist Read More

09.29.17

Insights

Data Protection

Time to Update Your Privacy Statement for GDPR Read More

09.17.17

Insights

Data Protection

Time To Update Your Privacy Statement For GDPR Read More

09.08.17

Insights

Global Privacy & Security

China Prohibits Unverified Internet Users to Post Online Comments Read More

09.05.17

Insights

Cyber and National Security

Planning to Attend the Privacy + Security Forum in DC This October? Read More

08.17.17

Insights

Cyber and National Security

Planning to Attend the Privacy + Security Forum in DC This October? Read More

08.11.17

Insights

DWT

You’re Invited: Inside the Beltway Read More

08.03.17

Insights

Cyber and National Security

Draft Cybersecurity Legislation Would Impose Substantial New Obligations on Vendors Selling Interconnected Devices to the U.S. Government Read More

07.31.17

Insights

Cyber and National Security

How to Use the GDPR as Your Competitive Advantage: Focus on the Carrot, Not the Stick Read More

07.26.17

Insights

Cyber and National Security

The Chinese Government Issues Draft Cybersecurity Regulations to Protect Critical Information Infrastructure Read More

07.25.17

Insights

Communications

FCC Proposes New Systems to Reduce Illegal Robocalls and Announces Fine Against Autodialing Platform Read More

07.24.17

Insights

Cyber and National Security

Washington’s New Biometric Privacy Law: What Businesses Need to Know Read More

07.12.17

Insights

Communications

(Connected) Toy Story: The FTC Updates the COPPA Compliance Plan Read More

07.07.17

Insights

Data Protection

Data-Driven Marketing and the GDPR: the Data Brokers’ Conundrum Read More

07.06.17

Insights

Communications

FCC Reinstates CPNI Privacy Regulations (and Compliance Filing Obligations) for Telecom and VoIP Service Providers Read More

07.06.17

Insights

Communications

Federal Appeals Court Affirms TCPA Consent Cannot Be Revoked if Granted by Contract Read More

07.05.17

Insights

Data Protection

Tick Tock Tick Tock, When a Breach Occurs, You’re on the Clock! Read More

06.30.17

Insights

DWT

Davis Wright Tremaine LLP and RADAR, Inc. Form Strategic Alliance to Use Software Innovation for Efficient Analysis and Delivery of Incident Response Services Read More

06.29.17

Insights

Cyber and National Security

The Privileged Cyber Investigation: Ensuring Non-Lawyers Understand the Essentials Read More

06.28.17

Insights

DWT

Amy S. Mushahwar Joins Davis Wright Tremaine Read More

06.16.17

Insights

Data Protection

Webinar Recording: New Guidance on HIPAA: Nine Changes to Make Read More

06.12.17

Insights

Communications

Private Right of Action Under Canadian Anti-Spam Legislation Suspended Indefinitely Read More

05.19.17

Insights

Data Protection

GDPR Matchup: The Health Insurance Portability and Accountability Act Read More

05.18.17

Insights

Cyber and National Security

China’s Cybersecurity Regulators Issue Procedural Rules to Strengthen Enforcement Power Read More

05.16.17

Insights

Data Protection

Public Still Must Be Kept Private Under HIPAA Read More

05.15.17

Insights

Data Protection

GDPR Match Up: U.S. State Data Breach Laws Read More

05.12.17

Insights

Cyber and National Security

White House Releases Cybersecurity Executive Order Read More

05.04.17

Insights

Data Protection

A Draft Won’t Do: OCR Settles with CardioNet $2.5M for Failing to Finalize Policies and Procedures Read More

05.03.17

Insights

Data Protection

Chinese Government Releases Overreaching Draft Regulations on Cross-Border Data Transfer Read More

04.19.17

Insights

Data Protection

HIPAA Enforcement Actions by the Numbers Read More

04.10.17

Insights

Data Protection

And Then There Were 48 (States): New Mexico Enacts a Security Breach Notification Statute Read More

04.05.17

Insights

Data Protection

It’s Official: Privacy and Security Rules from Wheeler Era Repealed Read More

03.28.17

Insights

FCC Proposes Rules to Allow Carriers to Block Illegal “Robocalls” Read More

03.16.17

Insights

Data Protection

DWT Releases Latest Health Care Breach Charts Read More

03.03.17

Insights

Data Protection

New FCC Stays ISP Data Security Rules from Wheeler Era Read More

02.27.17

Insights

Data Protection

New FCC Chairman Moves to Roll Back Privacy Rules for Internet Service Providers Read More

02.21.17

Insights

Communications

Comments Sought of FCC Privacy Regime Read More

02.17.17

Insights

Healthcare

42 C.F.R. Part 2 Final Rule Is Officially Delayed … Can Comments to HHS and OMB Fix It? Read More

02.13.17

Insights

Data Protection

To Settle or Not to Settle – That Is the Question Raised by Recent HIPAA CMPs Read More

02.09.17

Insights

Data Protection

HIPAA Small Breach Notifications Due March 1: “In Like a Lion, Out Like a Lamb” if You Submit Timely” Read More

01.30.17

Insights

Healthcare

2016 Edition of HIPAA Regulations Released Read More

01.23.17

Insights

Data Protection

IoT Vendors Beware: FTC’s Latest Enforcement Action Signals Further Scrutiny of the Industry Read More

01.20.17

Insights

Data Protection

The Price of PHI – A $2.2 Million USB Drive Read More

01.13.17

Insights

Data Protection

Time Waits for No One: OCR Announces First HIPAA Settlement for Lack of Timely Breach Notification Read More

01.11.17

Insights

Data Protection

2017 Health Information Privacy and Security New Year’s Resolutions Read More

12.30.16

Insights

PCI-DSS Version 3.2 Code Enters into Force Read More

12.22.16

Insights

Financial Services

Update: NY Financial Regulator Extends Deadline for Cybersecurity Compliance Read More

12.19.16

Insights

Financial Services

NY Proposes Cybersecurity Regulations for Financial Services Read More

12.16.16

Insights

Financial Services

Federal Banking Agencies Seek Comment on Enhanced Cyber Risk Management Standards for Large Banks Read More

12.15.16

Insights

Policy and Regulatory Positioning

Chairman Wheeler to Leave FCC Jan. 20 Read More

12.14.16

Insights

Policy and Regulatory Positioning

Webinar Recording: FCC’s New Privacy Rules (Part 2) Read More

12.13.16

Insights

Healthcare

No Phishing: OCR Warns of Phishing Attempts Disguised as Official HIPAA Audit Program Emails Read More

12.13.16

Insights

Data Protection

HIPAA Starter Pack Read More

12.07.16

Insights

Policy and Regulatory Positioning

Webinar Recording: FCC’s New Broadband Security Rules (Part 1) Read More

12.07.16

Insights

Global Privacy & Security

What Does China’s New Cyberspace Sovereignty Mean, and is Your Company Ready? Read More

12.06.16

Insights

Data Protection

How Secure Is Your Company? Read More

12.05.16

Insights

Policy and Regulatory Positioning

Compliance Clock Begins to Tick for BIAS Providers Following Publication of Privacy Rules in the Federal Register Read More

11.29.16

Insights

Data Protection

Are You Prepared For When Things Go Wrong? Read More

11.21.16

Insights

DWT

The FCC Privacy Rules: What You Need to Know Read More

11.15.16

Insights

Cyber and National Security

Cyber Security Threats are Evolving. Are You? Read More

11.11.16

Insights

Communications

Hotly Anticipated Broadband Privacy Order Released by FCC Read More

11.10.16

Insights

Data Protection

Feeling Lost in a Storm After Suffering a Data Breach? Read More

11.04.16

Insights

Communications

FCC Releases Text of Broadband ISP Privacy Rules Read More

10.27.16

Insights

Communications

It’s Official: The FCC Has Adopted New Privacy and Security Rules for ISPs Following a 3-2 Vote Along Partisan Lines Read More

10.26.16

Insights

Data Protection

FCC Broadband Privacy Part I: The FCC’s Ascension as a Privacy Regulator Read More

10.19.16

Insights

Data Protection

Just Around the Corner - HIPAA Audits for Business Associates Read More

10.13.16

Insights

Data Protection

Brace for Impact: The FCC’s Broadband Privacy Rules Are Almost Here Read More

10.11.16

Insights

Communications

Fact-Checking the FCC’s Fact Sheet on Broadband Consumer Privacy Read More

09.27.16

Insights

Healthcare

Privacy Rules Surrounding Student Mental Health Read More

09.07.16

Insights

Healthcare

OCR Sets Sights on Smaller HIPAA Breaches Read More

09.01.16

Insights

Data Protection

Advisory Alert: 9th Cir. Rules Common Carriers Beyond FTC Authority Read More

08.30.16

Insights

FCC Issues Federal Debt Collection Robocall Rules Read More

08.29.16

Insights

Healthcare

HIPAA Audit Check-Up – Where We Are and What's to Come Read More

08.16.16

Insights

Litigation

Where’s the (TCPA) Harm in That? Read More

08.15.16

Insights

Healthcare

It’s Not the Olympics, but OCR Sets New HIPAA Settlement Records Read More

08.11.16

Insights

Global Privacy & Security

EU-U.S. Privacy Shield: What You Need to Know Before You Register Read More

08.10.16

Insights

Healthcare

On the Trail for Pokémon - and HIPAA Compliance Read More

08.02.16

Insights

Data Protection

Is Your Business Ready to Wield the Privacy Shield? Read More

07.20.16

Insights

Financial Services

Cybersecurity Response to Recent Wholesale Payment Systems Breaches Read More

07.13.16

Insights

PCI DSS v. 3.2: New Requirements Coming to Protect Your Customers’ Wallets Read More

07.13.16

Insights

Data Protection

Breaking: EU Officially Approves Privacy Shield Read More

07.07.16

Insights

Communications

Definition of “PII” Under VPPA Continues to Evolve with 3rd Circuit Ruling Read More

07.06.16

Insights

Healthcare

OCR Enters Into First Settlement With a Business Associate Read More

07.06.16

Insights

Cyber and National Security

What If Apple and the FBI Went to SCOTUS? Read More

06.29.16

Insights

Policy and Regulatory Positioning

Nebraska and Illinois Update Breach Notice Requirements Read More

06.28.16

Insights

Healthcare

HIPAA Enforcement Actions by the Numbers Read More

06.16.16

Insights

FTC Settles Case Against Vulcun for Force-Installing Apps Read More

06.15.16

Insights

Financial Services

Credit Card Data Breaches: Protecting Against Surprises Read More

06.14.16

Insights

Technology

Top Takeaways from DWT’s Cloud & Big Data Conference Read More

06.09.16

Insights

Litigation

Advisory Alert: Impact of SCOTUS’ “Standing” Ruling in Spokeo Read More

06.06.16

Insights

Data Protection

EU Data Supervisor: Privacy Shield Needs “Robust Improvements” Read More

05.26.16

Insights

Data Protection

EU Parliament: EU, U.S. Must Improve Privacy Shield Read More

05.16.16

Insights

Litigation

SCOTUS Vacates 9th Circuit’s Spokeo Decision Read More

05.11.16

Insights

Communications

Advisory Alert: 1st Circuit and FTC Address Definitions of “PII,” While Michigan Amends Privacy Law to Remove Statutory Damages Read More

05.09.16

Insights

Global Privacy & Security

EU Publishes Final Text of GDPR Read More

05.02.16

Insights

Financial Services

Webinar: Legal Issues in the Mobile Landscape Read More

04.29.16

Insights

Policy and Regulatory Positioning

FCC Privacy Comments [Still] Due May 27 Read More

04.26.16

Insights

Policy and Regulatory Positioning

A Closer Look at the FCC’s Privacy NPRM Read More

04.22.16

Insights

Global Privacy & Security

Incident Response Workshops

Whether you have an existing incident response (IR) plan in place or are looking to bring an informal program up to scale, IR workshops from our information security team can help you evaluate the risks and identify priorities that are unique to your organization.

Complex Incident and Breach Response

Our lawyers have advised clients on hundreds of data security incidents and data breaches, from enterprise ransomware attacks, sophisticated state-sponsored campaigns and supply chain attacks to multi-million-dollar business email compromises and insider threats. Representative matters include:

An enterprise ransomware attack against a consumer products company involving significant disruptions to the client's B2B operations and compromise of personal data
Multiple high-profile attacks against communications platforms and service providers aimed at compromising cryptocurrency wallets and online accounts
An insider threat matter involving a high-ranking company employee who accessed client data and provided it to an extortionist
Successful resolution of investigations by the U.S. Department of Health and Human Services Office for Civil Rights (OCR) of a reported breach, which had the potential to result in millions of dollars in civil monetary penalties
Representation of numerous clients in investigations and inquiries by state attorneys general following reported data breaches
Breaches of Customer Proprietary Network Information (CPNI) for multiple major telecommunications providers
A breach of a financial institution's ecommerce website, resulting in the compromise of significant amounts of customer data under the Gramm-Leach-Bliley Act (GLBA) and personal information under numerous state data breach laws
Multiple high-profile ransomware and state-sponsored attacks involving software supply chain compromises
A physical break-in at a medical facility resulting in the theft of servers processing protected health information (PHI) under the Health Insurance Portability and Accountability Act (HIPAA) and personal information under numerous state data breach laws
A business email compromise and related fraudulent activity resulting in a loss of more than $10 million
Misconfiguration of a cloud-based file storage system, resulting in inadvertent disclosure of sensitive personal information of at-risk individuals
Compromise of a hospital's email system, resulting in unauthorized access to PHI
A spear phishing campaign against a publishing company that compromised personal information of U.S. and EU residents
Representation of an investment advisor in an investigation by the Financial Industry Regulatory Authority (FINRA) following a business email compromise

Incident and Breach Readiness

Security incidents are inevitable. We help our clients prepare to respond effectively through a variety of assessments, exercises, and other deliverables. Representative matters include:

Delivering an incident response tabletop exercise for the board of directors and senior management of an energy utility
Delivering tabletop exercises for incident response teams at clients in the technology, cloud computing, consumer products, energy, financial services, and aerospace industries
Drafting and advising on incident response plans (IRPs) and legal playbooks
Assessing the cyber incident and data breach reporting obligations under state and federal laws for critical infrastructure operators and companies in the healthcare, financial services, and telecommunications sectors
Developing business continuity and disaster recovery plans in the event of a ransomware attack or other significant business disruption

Security Program Development

We help our clients develop information security programs that comply with applicable security laws while supporting business and operational needs. Our attorneys frequently coordinate with our stable of cybersecurity experts and other partners to deliver assessments, policies and other deliverables that seamlessly blend legal and technical expertise. Our services include:

Conducting risk assessments for HIPAA covered entities and business associates to comply with the HIPAA Security Rule, and for financial institutions to comply with the requirements of the GLBA Safeguards Rule and New York Department of Financial Services' (NYDFS) Cybersecurity Regulation
Drafting and advising on comprehensive information security policies and protocols for clients in the cloud computing, health care, financial services, and consumer products industries
Advising on bring your own device (BYOD), remote work, and distributed workforce policies
Advising a technology provider on development and implementation of an enterprise-wide information classification scheme
Developing a multi-level, risk-based vendor and supply chain risk management program to evaluate third-party security risks and address those risks through appropriate diligence, oversight, and contractual terms

Security Compliance

We advise on compliance with an array of information security laws, regulations, standards, and frameworks. Representative matters include:

Advising numerous GLBA-regulated financial institutions, including banks, credit unions, and non-bank financial institutions, on compliance with GLBA data security requirements, including those related to risk assessment, continuous monitoring, multifactor authentication, remote access, and encryption
Working closely with several major cloud service providers, software developers, and others to navigate data security and incident notification requirements for government contractors, including under the Federal Risk Management Program (FedRAMP), StateRAMP, the Federal Acquisition Regulation (FAR) and the Defense Federal Acquisition Regulation Supplement (DFARS)
Counseling media organizations and cybersecurity companies on the provisions of antihacking laws, including the federal Computer Fraud and Abuse Act (CFAA), and related risks
Advising internet service providers on DMCA compliance and responses to law enforcement warrants, wiretaps, pen/trap orders, and administrative and trial/grand jury subpoenas Advising merchants, payment processors, financial institutions, and technology service providers on the requirements of the Payment Card Industry Data Security Standard (PCI DSS) and related standards
Developing financial disclosure controls to assist publicly traded companies in complying with SEC guidance on disclosing material cybersecurity incidents
Representing a foreign-owned media company in dealings with the Committee on Foreign Investment in the United States (CFIUS), including by developing a comprehensive information security program to address CFIUS national security concerns
Advising a major technology services provider on compliance with major cybersecurity frameworks and related representations in customer-facing materials

Transactional Counseling

Working closely with DWT's technology, financial services, and corporate and business transactions practice groups, we advise our clients on the information security and data strategy aspects of complex commercial and corporate transactions. Representative matters include:

Performing due diligence on numerous M&A target entities, including those in the fintech, payments, adtech, cloud computing, software, and cryptocurrency spaces
Drafting data processing and data security addenda and related terms for complex commercial transactions, including for cloud and telecommunications services companies
Advise on data security aspects of complex, multi-party fintech, payment processing and bank partnership arrangements