European Data Protection Board Guidelines Clarify when Processing is an International Transfer under the GDPR
202112.02
0

European Data Protection Board Guidelines Clarify when Processing is an International Transfer under the GDPR

The European Data Protection Board (“EDPB”) has started a public consultation for new Guidelines. Although the Guidelines will not be legally binding, they do provide needed guidance regarding the interaction between GDPR art. 3 (addressing territorial scope of the GDPR) and chapter 5 (addressing transfers of personal data to third countries or international organizations).

Fey LLC Article on Nation State Hacking Published in Kansas Journal of Law & Public Policy
202110.19
0

Fey LLC Article on Nation State Hacking Published in Kansas Journal of Law & Public Policy

The recent SolarWinds cyberattack, America’s “Cyber Pearl Harbor,” is a painful reminder of the vulnerability of government agencies, academia, for-profit corporations, and non-profit organizations to nation state cyberattacks.  Such cyberattacks against public and private sector organizations of all sizes are increasing in volume, sophistication, effectiveness, and covertness.  In their article America the Vulnerable: The Nation…

The New EU Standard Contractual Clauses Have Arrived:  Next Steps for Compliance
202109.27
0

The New EU Standard Contractual Clauses Have Arrived: Next Steps for Compliance

Starting today, the new EU standard contractual clauses (“SCCs”) officially replace the old SCCs for use as a GDPR-compliant transfer mechanism for EU personal data.  On June 4, 2021, the European Commission released its Implementing Decision on the final version of the new SCCs for the transfer of personal data to third countries.  The new…

Lessons Learned from the JBS and Kaseya Ransomware Attacks: 5 Preventative Steps to Help Avoid Becoming the Next Ransomware Victim
202108.06
0

Lessons Learned from the JBS and Kaseya Ransomware Attacks: 5 Preventative Steps to Help Avoid Becoming the Next Ransomware Victim

The “Meat” of the Issue On May 31, 2021, JBS Foods, the world’s largest meat supply, experienced a ransomware attack.  Then on July 2, 2021, along with other IT management companies, the major software supplier, Kaseya Ltd., also suffered a ransomware attack. These high-profile attacks signify the upward trend in the sophistication and frequency of…

Pegasus Spyware on Mobile Devices: Your Privacy and Security Risks
202107.21
0

Pegasus Spyware on Mobile Devices: Your Privacy and Security Risks

What Happened? Amnesty International, with assistance from Forbidden Stories, has uncovered a wave of “zero-click” and other spyware attacks that have compromised thousands of iPhones and Android mobile devices. These spyware attacks have targeted journalists, government officials, and activists across the globe, using Israeli technology firm NSO Group’s highly sophisticated and military-grade Pegasus spyware. While…

Data Privacy Day 2021
202101.28
0

Data Privacy Day 2021

Today is Data Privacy Day, an annual international event to raise awareness about the importance of safeguarding data and the promotion of data protection and privacy best practices.  In honor of Data Privacy Day, we are providing our followers with links to three of our most popular data protection and privacy checklists:

Protecting Your Vote: 2020 Election Security
202010.28
0

Protecting Your Vote: 2020 Election Security

Protecting Your Vote: 2020 Election Security I. Election Interference in the United States  Doubts about a fair and secure U.S. election on November 3, 2020 are at an all-time high.  According to an August 2020 Pew Research Foundation survey, a majority of American voters believe that foreign governments will try to influence the 2020 election….

California Privacy Update: CA Legislature Passes Bills Regulating Health and Genetic Privacy
202009.15
0

California Privacy Update: CA Legislature Passes Bills Regulating Health and Genetic Privacy

The California legislature recently passed several privacy-related bills, including Assembly Bill 713 (AB 713) and Senate Bill 980 (SB 980). AB 713 amends the California Consumer Privacy Act (CCPA) to exempt specific health information from the CCPA. SB 980, or the Genetic Information Privacy Act (the “Act”), creates data privacy and security compliance obligations for…

Swiss Data Commissioner Downgrades U.S. for Inadequate Personal Data Protection
202009.09
0

Swiss Data Commissioner Downgrades U.S. for Inadequate Personal Data Protection

Following a reassessment of the Swiss-U.S. Privacy Shield framework, Adrian Lobsiger, the Federal Data Protection and Information Commissioner of Switzerland (Commissioner), has downgraded the U.S. ranking in terms of its data protection practices. The Commissioner concluded in his policy paper of September 8, 2020, that the Swiss-U.S. Privacy Shield, does not provide “adequate protection under certain circumstances.”  

Remote Work: Privacy & Security Best Practices
202008.13
0

Remote Work: Privacy & Security Best Practices

The emergence of COVID-19 has pushed many organizations to implement a remote workforce policy by necessity. While working remotely has its benefits, remote workers can bring added security risks to an organization of any size. Many cybercriminals are targeting remote workers, as the security measures used in remote working environments can be much easier to…