Saturday, July 31, 2021

Subscribers Only

Free

Renewed Focus on Cybersecurity May Have Significant Impacts on Previously Shielded Healthcare Companies

Following President Biden’s cybersecurity executive order, the FDA issued the Response to NIST Workshop and Call for Position Papers on Standards and Guidelines to Enhance Software Supply Chain Security on May 26, 2021, which acknowledges that “cybersecurity is crucial for medical device safety and effectiveness.” However, it is important to recognize that currently, the FDA’s […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

California Attorney General Issues Summary of CCPA Enforcement Actions and Launches Consumer Privacy Interactive...

The California Attorney General recently released a summary of enforcement actions the agency brought against companies in violation of the CCPA since enforcement of the Act began on July 1, 2020. The summary provides 27 illustrative examples of instances in which the AG sent notices of alleged noncompliance with the CCPA and how each company […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Welcome to the Privacy Party, Ohio: State Legislature Proposes Comprehensive Data Privacy Legislation

California broke new ground when it passed the California Consumer Privacy Act of 2018, now, the rest of the nation is following suit. Since 2018, Virginia and Colorado have passed similar statues. Now, Ohio is ready to join the party. Introduced earlier this month, House Bill 376 “The Ohio Personal Privacy Act,” seeks to bring […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

China’s New Developments in Cybersecurity Review

Recent U.S. IPOs of Chinese companies have prompted data security concerns among Chinese authorities, leading to a tightening of cyber regulations. Cybersecurity review will be mandatory for (i) purchase of network products and services by critical information infrastructure operators that affect or may affect national security, and (ii) data processing activities conducted by data processors […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

California AG Enlists Residents to Send CCPA Noncompliance Letters

On July 19, California’s recently appointed Attorney General, Rob Bonta, launched an interactive tool to aid consumers with drafting notices of noncompliance for businesses who fail to publish the “Do Not Sell My Personal Information” link required by the California Consumer Privacy Act. According to the AG, the consumer notice “may trigger” the 30-day cure […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

California AG Releases Important CCPA Enforcement Information and Announces an Online Consumer Reporting Tool

To note the one year anniversary of the California Consumer Privacy Act enforcement date, California Attorney General Rob Banta held a press conference to share key information about enforcement efforts and announce a new consumer privacy tool. There are two key takeaways from this announcement. First, it is important to note that the AG’s office […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

China Plans Cybersecurity Review for Tech Companies Listing Abroad

On July 10, 2021, the Cyberspace Administration of China, China’s top cyberspace regulator, published for public comment proposed amendments to existing Measures for Cybersecurity Review, which have been in effect since June 1, 2020. In this alert, Ropes & Gray focuses on the proposed changes, which could impact how foreign investors exit from their investments […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

U.S. Congress Introduces Bill That Would Require Mandatory 24-Hour Cyber Breach Notification for Government...

U.S. Senator Mark Warner (D-VA), chair of the Senate Intelligence Committee, and a broad group of bipartisan co-sponsors, introduced legislation that would require government...

Second Security Directive Issued by TSA to Pipeline Operators

The U.S. Transportation Security Administration (TSA) issued its second Security Directive to the pipeline industry on July 20, 2021, following the Colonial Pipeline cybersecurity incident. The first Directive on May 27, 2021, required pipeline owners and operators to notify CISA of cyber incidents, designate a cyber coordinator for the company, and review their cybersecurity program. […]
Must be a Paid Member or a Free Trial Member to Access Content. Members log in here.

Department of Defense’s CMMC: Where Is It Now?

Intended to be a unifying standard for the implementation of cybersecurity across the defense industrial base (DIB), the CMMC’s requirements are already being felt...