Hunton recently published a client alert discussing the importance of cyber and directors and officers liability insurance for companies and their executives to guard against cyber-related exposures. This blog entry provides a link to download the client alert.
Continue Reading Reducing Risks from Cyber Incidents with Cyber and D&O Insurance
Department of Justice
DOJ Publishes New Corporate Compliance Guidance Related to Communications Platforms and Messaging Applications
On March 3, 2023, the U.S. Department of Justice released an update to its Evaluation of Corporate Compliance Programs guidance. …
Continue Reading DOJ Publishes New Corporate Compliance Guidance Related to Communications Platforms and Messaging Applications
Google Enters into Agreement with DOJ over 2016 Search Warrant Data Loss
On October 25, 2022, the U.S. Department of Justice announced that Google had entered into an agreement to resolve a dispute over the loss of data responsive to a search warrant issued in 2016.
Continue Reading Google Enters into Agreement with DOJ over 2016 Search Warrant Data Loss
U.S. Department of Justice Announces U.S. – UK CLOUD Act Agreement
On October 3, 2022, the U.S. Department of Justice announced that the agreement between the U.S. Government and the UK Government on Access to Electronic Data for the Purpose of Countering Serious Crime entered force, effect the same day. …
Continue Reading U.S. Department of Justice Announces U.S. – UK CLOUD Act Agreement
California Enacts the California Age-Appropriate Design Code Act
On September 15, 2022, California Governor Gavin Newsom signed into law the California Age-Appropriate Design Code Act. The Act, which takes effect July 1, 2024, places new legal obligations on companies with respect to online products and services that are likely to be accessed by children under the age of 18.
Continue Reading California Enacts the California Age-Appropriate Design Code Act
Twitter to Pay $150 Million to Settle Allegations of Data Misuse
On May 25, 2022, Twitter reached a proposed $150 million settlement with the Department of Justice and the Federal Trade Commission to resolve allegations that the company deceptively used nonpublic user contact information obtained for account security purposes to serve targeted ads to users.
Continue Reading Twitter to Pay $150 Million to Settle Allegations of Data Misuse
Cyber Incident Reporting Language in Omnibus Bill Headed to President Biden’s Desk
On March 11, 2022, the U.S. Senate passed an omnibus spending bill that includes language which would require certain critical infrastructure owners and operators to notify the federal government of cybersecurity incidents in specified circumstances. President Biden has until March 15, 2022, to sign the bill. This blog entry provides a summary of the bill.
Continue Reading Cyber Incident Reporting Language in Omnibus Bill Headed to President Biden’s Desk
Russia-Linked REvil Hackers and Their Affiliates Hit with Arrests by the U.S. and International Allies
On November 8, 2021, law enforcement agencies in both the United States and European Union announced that a series of actions, including a number of arrests, were taken against the Russia-linked ransomware group, “REvil.” …
Continue Reading Russia-Linked REvil Hackers and Their Affiliates Hit with Arrests by the U.S. and International Allies
DOJ Announces New Cyber-Fraud Initiative and Intent to Utilize False Claims Act to Spur Compliance
On October 6, 2021, Deputy Attorney General Lisa Monaco announced the launch of the new Civil Cyber-Fraud Initiative that will use the False Claims Act to pursue cybersecurity related fraud by government contractors and grant recipients. …
Continue Reading DOJ Announces New Cyber-Fraud Initiative and Intent to Utilize False Claims Act to Spur Compliance
U.S. Government Issues White Paper on Data Transfers after Schrems II Decision
On September 28, 2020, the U.S. Department of Commerce, along with the U.S. Department of Justice and the Office of the Director of National Intelligence, released a White Paper entitled Information on U.S. Privacy Safeguards Relevant to SCCs and Other EU Legal Bases for EU-U.S. Data Transfers after Schrems II (the “White Paper”). The White Paper outlines privacy safeguards in and updates to the U.S. surveillance provisions flagged by the Court of Justice of the European Union (“CJEU”) in its Schrems II decision. It is intended to serve as a resource for companies transferring personal data from the EU to the U.S. in the wake of the CJEU’s decision overturning the EU-U.S. Privacy Shield. Particularly, it focuses on companies relying on Standard Contractual Clauses (“SCCs”) for data transfers, and provides information to help them determine whether the U.S. ensures adequate privacy protections for companies’ data.
…
Continue Reading U.S. Government Issues White Paper on Data Transfers after Schrems II Decision