Category: Cybersecurity

Cybersecurity, Regulatory

More States Enact Privacy Laws

Written by Susan Kohn Ross, Lucy Plovnick, Stacey Chuvaieva and Albina Gasanbekova Iowa and Indiana now become the sixth and the seventh states, respectively, to provide comprehensive privacy protection to those living in those states, following the lead of California, Virginia, Connecticut, Colorado, and Utah (in that order). Those who do business in Iowa or have Iowa consumers as customers/users have until January 1, 2025 … Continue reading More States Enact Privacy Laws

mskllpLeave a comment
Cybersecurity, Regulatory

Final California Privacy Regulations Approved: Key Takeaways

Written by Susan Kohn Ross and Stacey Chuvaieva On March 29, 2023, California’s Office of Administrative Law (“OAL”) approved the final text of the first part of the regulations issued by the California Privacy Protection Agency (“CPPA”) , which will take effect immediately (“Regulations”). These final Regulations provide long awaited guidance on some new concepts contained in the California Privacy Rights Act (“CPRA”) which was approved by … Continue reading Final California Privacy Regulations Approved: Key Takeaways

mskllpLeave a comment
Cybersecurity, Regulatory

New State Privacy Laws Effective in 2023: Get Ready For the Colorado, Connecticut, and Utah Privacy Laws

Written by Susan Kohn Ross, Lucy Holmes Plovnick, and Stacey Chuvaieva Colorado, Connecticut, and Utah have enacted comprehensive state privacy laws that will become effective in 2023.  The Colorado Privacy Act (“CPA”) and the Connecticut Data Privacy Act (“CTDPA”) both go into effect on July 1, 2023. The Utah Consumer Privacy Act (the “UCPA”) becomes effective on December 31, 2023.  The UCPA, CTDPA, and CPA … Continue reading New State Privacy Laws Effective in 2023: Get Ready For the Colorado, Connecticut, and Utah Privacy Laws

mskllpLeave a comment
Cybersecurity, Regulatory

Getting Ready For Virginia’s Consumer Data Protection Act (VCDPA)

Written by Susan Kohn Ross, Lucy Holmes Plovnick, and Stacey Chuvaieva On November 21, 2022 we reported about the changes taking place to California’s Consumer Privacy Act (here) which are effective January 1, 2023. In this Alert, we turn to the Virginia Consumer Data Protection Act (VCDPA) which takes effect on January 1, 2023. Inspired by the European GDPR, Virginia’s state privacy law aligns with its … Continue reading Getting Ready For Virginia’s Consumer Data Protection Act (VCDPA)

mskllpLeave a comment
Cybersecurity, Regulatory

The CPRA and Recent Privacy Patchwork

Written by Susan Kohn Ross, Lucy Holmes Plovnick, and Stacey Chuvaieva While the U.S. still does not have a federal privacy law, the laws in various states are changing. California was, of course, first, and even its law has changed. Following in 2023 are privacy laws in Virginia, Colorado, Connecticut and Utah. January 1, 2023 is the compliance date for the California Privacy Rights Act … Continue reading The CPRA and Recent Privacy Patchwork

mskllpLeave a comment
Cybersecurity, Regulatory

Are You Sure Your Website Terms and Conditions and Privacy Policy Are Enforceable? Maybe Not!

Written by Susan Kohn Ross and Lucy Holmes Plovnick One of the many challenges facing companies that do business on line is taking the steps necessary to make sure their website terms of service and privacy policies (and any other terms and conditions) are enforceable to the greatest extent possible in case of a dispute with their customers/users. There is no specific formula to follow, … Continue reading Are You Sure Your Website Terms and Conditions and Privacy Policy Are Enforceable? Maybe Not!

mskllpLeave a comment
Cybersecurity, Labor & Employment, Regulatory

Is Your Computer System Safe from Internal Misuse?

Written by Susan Kohn Ross and Stephen C. Franz On June 3, 2021, the U.S. Supreme Court issued its decision in Van Buren v. U.S., No. 19-783. The issue for the Court was relatively straight forward – did a police officer with authorized access to his department’s license-plate database exceed his authorized access when he was given money to run a license plate and shared the results … Continue reading Is Your Computer System Safe from Internal Misuse?

mskllpLeave a comment
Cybersecurity, Regulatory

New York’s Department of Financial Services Initiates Its First Enforcement Action Under Its 2017 Cybersecurity Regulations

Written by Timothy M. Carter Following a publicized commitment to increased cybersecurity enforcement, the New York Department of Financial Services (“NYDFS”) initiated its first enforcement action against First American Title Insurance Co. (“First American”) on July 22, 2020. Stemming from First American’s alleged failure to adequately safeguard highly confidential, personal consumer information – including bank account numbers and statements, mortgage and tax records, Social Security … Continue reading New York’s Department of Financial Services Initiates Its First Enforcement Action Under Its 2017 Cybersecurity Regulations

mskllpLeave a comment
Cybersecurity, Regulatory, Videos

MSK Minute: Su Ross and Tim Carter Discuss Contact Tracing

In this video, MSK attorneys Susan Kohn Ross and Timothy Carter discuss contact tracing: what it is, what it means for employers and employees, and the impact it may have on your privacy right. If you are interested in learning more broadly about contact tracing or have any questions on this topic, please email Su at skr@msk.com or Tim at tmc@msk.com. Continue reading MSK Minute: Su Ross and Tim Carter Discuss Contact Tracing

mskllpLeave a comment
Cybersecurity, Regulatory

Return to Work: Beware of Fraudulent Contact Tracers

Written by Susan Kohn Ross and Timothy Carter As contact tracing ramps up in states across the country, state and local officials are increasingly warning of a rise in fraudulent contract tracers seeking to wrongfully obtain personal and financial information. We have previously written about contact tracing – long considered to be “a central pillar” of traditional infectious disease control – and how it works. In order to … Continue reading Return to Work: Beware of Fraudulent Contact Tracers

mskllpLeave a comment