On April 28, 2022, India issued new guidance relating to “information security practices, procedure, prevention, response and reporting of cyber incidents for Safe & Trusted Internet.”
Continue Reading India to Require Cybersecurity Incident Reporting Within Six Hours
Cloud Computing
Belgian Privacy Commission Releases 2016 Annual Activity Report
On May 26, 2017, the Belgian Privacy Commission published its Annual Activity Report for 2016 highlighting its main accomplishments from the past year.
Continue Reading Belgian Privacy Commission Releases 2016 Annual Activity Report
DPA of Argentina Issues Draft Data Protection Bill
Pablo Palazzi, from Buenos Aires law firm Allende & Brea, reports that earlier this month, the Argentine Data Protection Agency posted the first draft of a new data protection bill on its website. The Draft Bill is heavily based on the EU GDPR and maintains the structure of Argentina’s current data protection bill.
Continue Reading DPA of Argentina Issues Draft Data Protection Bill
China Publishes Regulations Regarding Cloud Services for Public Comment
Recently, the Ministry of Industry and Information Technology of the People’s Republic of China published a draft of the new Notice on Regulating Business Behaviors in the Cloud Service Market for public comment. The draft is open for comment until December 24, 2016.
Continue Reading China Publishes Regulations Regarding Cloud Services for Public Comment
HHS Releases Guidance on HIPAA and Cloud Computing
Earlier this month, the Department of Health and Human Services’ Office for Civil Rights issued guidance for HIPAA-covered entities that use cloud computing services involving electronic protected health information. …
Continue Reading HHS Releases Guidance on HIPAA and Cloud Computing
CISPE Unveils Cloud Providers Code of Conduct
On September 27, 2016, Cloud Infrastructure Services Providers in Europe published its Data Protection Code of Conduct. CISPE, a relatively new coalition of more than 20 cloud infrastructure providers with operations in Europe, has focused the Code on transparency and compliance with EU data protection laws. …
Continue Reading CISPE Unveils Cloud Providers Code of Conduct
European Parliament Adopts Directive on Security of Network and Information Systems
On July 6, 2016, the European Parliament adopted the Directive on Security of Network and Information Systems, which will come into force in August 2016. The NIS Directive is part of the European Commission’s cybersecurity strategy for the European Union, and is designed to increase cooperation between EU Member States on cybersecurity issues.
Continue Reading European Parliament Adopts Directive on Security of Network and Information Systems
The Bavarian DPA Issues Paper on Certifications Under the GDPR
On June 22, 2016, the Bavarian Data Protection Authority issued a short paper on certifications under Article 42 of the General Data Protection Regulation. The GDPR will become effective on May 25, 2018.
Continue Reading The Bavarian DPA Issues Paper on Certifications Under the GDPR
EU Council Adopts the Network and Information Security Directive
On May 17, 2016, the European Council adopted its position at first reading on the Network and Information Security Directive. The NIS Directive was proposed by the European Commission on February 7, 2013, as part of its cybersecurity strategy for the European Union, and is designed to increase cooperation between EU Member States on cybersecurity issues.
Continue Reading EU Council Adopts the Network and Information Security Directive
Defense Department Issues Interim Rule Extending Time for Federal Contractors to Comply with Cybersecurity Regulations
On December 30, 2015, the Department of Defense issued a second interim rule that extends the deadline by which federal contractors must implement the new cybersecurity requirements previously issued by the agency. …
Continue Reading Defense Department Issues Interim Rule Extending Time for Federal Contractors to Comply with Cybersecurity Regulations