The European Data Protection Board (“EDPB”) has started a public consultation for new Guidelines. Although the Guidelines will not be legally binding, they do provide needed guidance regarding the interaction between GDPR art. 3 (addressing territorial scope of the GDPR) and chapter 5 (addressing transfers of personal data to third countries or international organizations).
The recent SolarWinds cyberattack, America’s “Cyber Pearl Harbor,” is a painful reminder of the vulnerability of government agencies, academia, for-profit corporations, and non-profit organizations to nation state cyberattacks. Such cyberattacks against public and private sector organizations of all sizes are increasing in volume, sophistication, effectiveness, and covertness. In their article America the Vulnerable: The Nation…
Starting today, the new EU standard contractual clauses (“SCCs”) officially replace the old SCCs for use as a GDPR-compliant transfer mechanism for EU personal data. On June 4, 2021, the European Commission released its Implementing Decision on the final version of the new SCCs for the transfer of personal data to third countries. The new…
The “Meat” of the Issue On May 31, 2021, JBS Foods, the world’s largest meat supply, experienced a ransomware attack. Then on July 2, 2021, along with other IT management companies, the major software supplier, Kaseya Ltd., also suffered a ransomware attack. These high-profile attacks signify the upward trend in the sophistication and frequency of…
What Happened? Amnesty International, with assistance from Forbidden Stories, has uncovered a wave of “zero-click” and other spyware attacks that have compromised thousands of iPhones and Android mobile devices. These spyware attacks have targeted journalists, government officials, and activists across the globe, using Israeli technology firm NSO Group’s highly sophisticated and military-grade Pegasus spyware. While…
Today is Data Privacy Day, an annual international event to raise awareness about the importance of safeguarding data and the promotion of data protection and privacy best practices. In honor of Data Privacy Day, we are providing our followers with links to three of our most popular data protection and privacy checklists:
Protecting Your Vote: 2020 Election Security I. Election Interference in the United States Doubts about a fair and secure U.S. election on November 3, 2020 are at an all-time high. According to an August 2020 Pew Research Foundation survey, a majority of American voters believe that foreign governments will try to influence the 2020 election….
The California legislature recently passed several privacy-related bills, including Assembly Bill 713 (AB 713) and Senate Bill 980 (SB 980). AB 713 amends the California Consumer Privacy Act (CCPA) to exempt specific health information from the CCPA. SB 980, or the Genetic Information Privacy Act (the “Act”), creates data privacy and security compliance obligations for…
Following a reassessment of the Swiss-U.S. Privacy Shield framework, Adrian Lobsiger, the Federal Data Protection and Information Commissioner of Switzerland (Commissioner), has downgraded the U.S. ranking in terms of its data protection practices. The Commissioner concluded in his policy paper of September 8, 2020, that the Swiss-U.S. Privacy Shield, does not provide “adequate protection under certain circumstances.”
The emergence of COVID-19 has pushed many organizations to implement a remote workforce policy by necessity. While working remotely has its benefits, remote workers can bring added security risks to an organization of any size. Many cybercriminals are targeting remote workers, as the security measures used in remote working environments can be much easier to…
(913)948-6300 
