On May 25, 2022, Twitter reached a proposed $150 million settlement with the Department of Justice and the Federal Trade Commission to resolve allegations that the company deceptively used nonpublic user contact information obtained for account security purposes to serve targeted ads to users.
Continue Reading Twitter to Pay $150 Million to Settle Allegations of Data Misuse
Department of Justice
Cyber Incident Reporting Language in Omnibus Bill Headed to President Biden’s Desk
On March 11, 2022, the U.S. Senate passed an omnibus spending bill that includes language which would require certain critical infrastructure owners and operators to notify the federal government of cybersecurity incidents in specified circumstances. President Biden has until March 15, 2022, to sign the bill. This blog entry provides a summary of the bill.
Continue Reading Cyber Incident Reporting Language in Omnibus Bill Headed to President Biden’s Desk
Russia-Linked REvil Hackers and Their Affiliates Hit with Arrests by the U.S. and International Allies
On November 8, 2021, law enforcement agencies in both the United States and European Union announced that a series of actions, including a number of arrests, were taken against the Russia-linked ransomware group, “REvil.” …
Continue Reading Russia-Linked REvil Hackers and Their Affiliates Hit with Arrests by the U.S. and International Allies
DOJ Announces New Cyber-Fraud Initiative and Intent to Utilize False Claims Act to Spur Compliance
On October 6, 2021, Deputy Attorney General Lisa Monaco announced the launch of the new Civil Cyber-Fraud Initiative that will use the False Claims Act to pursue cybersecurity related fraud by government contractors and grant recipients. …
Continue Reading DOJ Announces New Cyber-Fraud Initiative and Intent to Utilize False Claims Act to Spur Compliance
U.S. Government Issues White Paper on Data Transfers after Schrems II Decision
On September 28, 2020, the U.S. Department of Commerce, along with the U.S. Department of Justice and the Office of the Director of National Intelligence, released a White Paper entitled Information on U.S. Privacy Safeguards Relevant to SCCs and Other EU Legal Bases for EU-U.S. Data Transfers after Schrems II (the “White Paper”). The White Paper outlines privacy safeguards in and updates to the U.S. surveillance provisions flagged by the Court of Justice of the European Union (“CJEU”) in its Schrems II decision. It is intended to serve as a resource for companies transferring personal data from the EU to the U.S. in the wake of the CJEU’s decision overturning the EU-U.S. Privacy Shield. Particularly, it focuses on companies relying on Standard Contractual Clauses (“SCCs”) for data transfers, and provides information to help them determine whether the U.S. ensures adequate privacy protections for companies’ data.
…
Continue Reading U.S. Government Issues White Paper on Data Transfers after Schrems II Decision
FCC Proposes Largest Fine in Its History for Telemarketing Violations
On June 9, 2020, the Federal Communications Commission announced a proposed 225 million dollar fine, the largest in the history of the FCC, against several individuals for telemarketing violations. …
Continue Reading FCC Proposes Largest Fine in Its History for Telemarketing Violations
UPDATE: FTC Announces Record-Breaking Facebook Settlement Order
Facebook will pay a $5 billion penalty to the FTC to resolve a privacy probe into whether Facebook violated a prior FTC consent decree requiring the company to better protect user privacy.
Continue Reading UPDATE: FTC Announces Record-Breaking Facebook Settlement Order
Organizational Accountability in U.S. Law and Its Relevance to a Federal Data Privacy Law: A CIPL Study
The Centre for Information Policy Leadership at Hunton Andrews Kurth LLP recently published a white paper on Organizational Accountability’s Existence in U.S. Regulatory Compliance and its Relevance for a Federal Data Privacy Law.
Continue Reading Organizational Accountability in U.S. Law and Its Relevance to a Federal Data Privacy Law: A CIPL Study
DOJ Releases a White Paper on the CLOUD Act
Earlier this month, the U.S. Department of Justice published a white paper entitled “Promoting Public Safety, Privacy, and the Rule of Law Around the World: The Purpose and Impact of the CLOUD Act.”…
Continue Reading DOJ Releases a White Paper on the CLOUD Act
Department of Energy Announces New Efforts in Energy Sector Cybersecurity
On May 14, 2018, the Department of Energy Office of Electricity Delivery & Energy Reliability released its Multiyear Plan for Energy Sector Cybersecurity.
Continue Reading Department of Energy Announces New Efforts in Energy Sector Cybersecurity