The Securities and Exchange Commission’s Office of Compliance Inspections and Examinations recently announced the publication of a report entitled “Cybersecurity and Resiliency Observations” that summarizes the observations gleaned from OCIE’s cybersecurity examinations of broker-dealers, investment advisers, clearing agencies, national securities exchanges and other SEC registrants.
Continue Reading
Financial Privacy
FTC Proposes Changes to GLB Privacy and Safeguards Rules
Posted on
Posted in Financial Privacy, U.S. Federal Law
On March 5, 2019, the Federal Trade Commission announced that it is seeking comment on proposed changes to the FTC’s Safeguards Rule and Privacy Rule under the Gramm-Leach-Bliley Act.…
Continue Reading
EDPB Issues Statement on U.S. Foreign Account Tax Compliance Act
Posted on
On February 25, 2019, the European Data Protection Board issued a statement regarding the transfer of personal data from Europe to the U.S. Internal Revenue Service for purposes of the U.S. Foreign Account Tax Compliance Act.…
Continue Reading
FTC Seeks Public Comment on Identity Theft Rules
Posted on
On December 4, 2018, the Federal Trade Commission published a notice in the Federal Register indicating that it is seeking public comment on whether any amendments should be made to the FTC’s Identity Theft Red Flags Rule and the duties of card issuers regarding changes of address.…
Continue Reading
California Enacts Blockchain Legislation
Posted on
As reported on the Blockchain Legal Resource, California Governor Jerry Brown recently signed into law Assembly Bill No. 2658 for the purpose of further studying blockchain’s application to Californians. In doing so, California joins a growing list of states officially exploring distributed ledger technology.…
Continue Reading
Hunton Insurance Head Comments on Hotel Data Breach Coverage Dispute
Posted on
As reported on the Insurance Recovery Blog, Hunton Andrews Kurth insurance practice head, Walter Andrews, recently commented to the Global Data Review regarding the infirmities underlying an Orlando, Florida federal district court’s ruling that an insurer does not have to defend its insured for damage caused by a third-party data breach.…
Continue Reading
New Federal Credit Freeze Law Eliminates Fees, Provides for Year-Long Fraud Alerts
Posted on
Posted in Financial Privacy, U.S. Federal Law
Effective September 21, 2018, Section 301 of the Economic Growth, Regulatory Relief, and Consumer Protection Act requires consumer reporting agencies to provide free credit freezes and year-long fraud alerts to consumers throughout the country. …
Continue Reading
NYDFS Cybersecurity Regulation to Apply to Consumer Reporting Agencies
Posted on
Posted in Cybersecurity, Financial Privacy
On June 25, 2018, the New York Department of Financial Services issued a final regulation requiring consumer reporting agencies with “significant operations” in New York to (1) register with NYDFS for the first time and (2) comply with the NYDFS’s cybersecurity Regulation.…
Continue Reading
Virginia Amends Breach Notification Law Applicable to Income Tax Information
Posted on
On July 1, 2018, HB 183, which amends Virginia’s breach notification law, will come into effect. The amended law will require income tax return preparers who prepare individual Virginia income tax returns to notify the state’s Department of Taxation if they discover or are notified of a breach of “return information.” …
Continue Reading
Financial Stability Board to Develop International Cybersecurity Lexicon
Posted on
Posted in Cybersecurity, Financial Privacy
On March 20, 2018, the Financial Stability Board delivered a note to finance ministers and central bank governors from the world’s top 20 economic powers, known as the G-20. The note provides a progress update on the FSB’s work to develop a common vocabulary of cyber terms. …
Continue Reading