On November 30, 2022, the UK government confirmed that the Network and Information Systems Regulations 2018 will be strengthened to protect essential and digital services against cyber attacks.
Continue Reading UK Cyber Laws Extended to Bring Outsourcers and Managed Service Providers into Scope to Strengthen UK’s Resilience Against Online Cyber Attacks
Cloud Computing
EU Digital Markets Act Enters into Force
On November 1, 2022, the Digital Markets Act entered into force. This blog entry provides a summary of the compliance requirements of the Act.
Continue Reading EU Digital Markets Act Enters into Force
Wegmans Agrees to Pay $400,000 Penalty After Cloud Security Lapse
On June 30, 2022, the New York Office of the Attorney General announced a $400,000 agreement with Wegmans Food Markets, Inc. in connection with a cloud storage security issue. …
Continue Reading Wegmans Agrees to Pay $400,000 Penalty After Cloud Security Lapse
India to Require Cybersecurity Incident Reporting Within Six Hours
On April 28, 2022, India issued new guidance relating to “information security practices, procedure, prevention, response and reporting of cyber incidents for Safe & Trusted Internet.”…
Continue Reading India to Require Cybersecurity Incident Reporting Within Six Hours
Belgian Privacy Commission Releases 2016 Annual Activity Report
On May 26, 2017, the Belgian Privacy Commission published its Annual Activity Report for 2016 highlighting its main accomplishments from the past year.
Continue Reading Belgian Privacy Commission Releases 2016 Annual Activity Report
DPA of Argentina Issues Draft Data Protection Bill
Pablo Palazzi, from Buenos Aires law firm Allende & Brea, reports that earlier this month, the Argentine Data Protection Agency posted the first draft of a new data protection bill on its website. The Draft Bill is heavily based on the EU GDPR and maintains the structure of Argentina’s current data protection bill.
Continue Reading DPA of Argentina Issues Draft Data Protection Bill
China Publishes Regulations Regarding Cloud Services for Public Comment
Recently, the Ministry of Industry and Information Technology of the People’s Republic of China published a draft of the new Notice on Regulating Business Behaviors in the Cloud Service Market for public comment. The draft is open for comment until December 24, 2016.
Continue Reading China Publishes Regulations Regarding Cloud Services for Public Comment
HHS Releases Guidance on HIPAA and Cloud Computing
Earlier this month, the Department of Health and Human Services’ Office for Civil Rights issued guidance for HIPAA-covered entities that use cloud computing services involving electronic protected health information. …
Continue Reading HHS Releases Guidance on HIPAA and Cloud Computing
CISPE Unveils Cloud Providers Code of Conduct
On September 27, 2016, Cloud Infrastructure Services Providers in Europe published its Data Protection Code of Conduct. CISPE, a relatively new coalition of more than 20 cloud infrastructure providers with operations in Europe, has focused the Code on transparency and compliance with EU data protection laws. …
Continue Reading CISPE Unveils Cloud Providers Code of Conduct
European Parliament Adopts Directive on Security of Network and Information Systems
On July 6, 2016, the European Parliament adopted the Directive on Security of Network and Information Systems, which will come into force in August 2016. The NIS Directive is part of the European Commission’s cybersecurity strategy for the European Union, and is designed to increase cooperation between EU Member States on cybersecurity issues.
Continue Reading European Parliament Adopts Directive on Security of Network and Information Systems