On January 18, 2017, the Department of Homeland Security issued an updated National Cyber Incident Response Plan as directed by the Presidential Policy Directive 41, issued this past summer, and the National Cybersecurity Protection Act of 2014.
Continue Reading DHS Issues Updated National Cyber Incident Response Plan
Obama Administration
OMB Publishes Memorandum on Responding to Data Breaches
On January 3, 2017, the Office of Management and Budget issued a memorandum advising federal agencies on how to prepare for and respond to a breach of personally identifiable information.
Continue Reading OMB Publishes Memorandum on Responding to Data Breaches
Commission on Enhancing National Cybersecurity Issues Recommendations
On December 1, 2016, the nonpartisan Commission on Enhancing Cybersecurity issued its Report on Securing and Growing the Digital Economy, which includes recommended actions that the government and private sector can take over the next 10 years to improve cybersecurity. …
Continue Reading Commission on Enhancing National Cybersecurity Issues Recommendations
U.S. and APEC Leaders Reaffirm Implementation of the APEC CBPR
On November 20, 2016, the heads of state of the 21 member economies of the Asia-Pacific Economic Cooperation forum reaffirmed the APEC Cross-Border Privacy Rules system in their Leaders’ Declaration at the APEC Leaders’ Meeting in Lima, Peru. …
Continue Reading U.S. and APEC Leaders Reaffirm Implementation of the APEC CBPR
OMB Updates Federal Information Management Policies
The Office of Management and Budget recently issued updated information management policies for the U.S. federal government. The updated policies are intended “to reflect changes in law and advances in technology, as well as to ensure consistency with Executive Orders, Presidential Directives, and other OMB policy.”…
Continue Reading OMB Updates Federal Information Management Policies
White House Releases New Policy on Federal Cyber Incident Response
On July 26, 2016, the White House unveiled Presidential Policy Directive PPD-41, which sets forth principles for federal responses to cyber incidents approved by the National Security Council. PPD-41 first focuses on incident response to cyber attacks on government assets, but also outlines federal incident responses to cyber attacks on certain critical infrastructure within the private sector.
Continue Reading White House Releases New Policy on Federal Cyber Incident Response
DHS and DOJ Issue Final Guidance on the Cybersecurity Information Sharing Act of 2015
On June 15, 2016, the U.S. Department of Homeland Security and U.S. Department of Justice jointly issued final guidance on the Cybersecurity Information Sharing Act of 2015.
Continue Reading DHS and DOJ Issue Final Guidance on the Cybersecurity Information Sharing Act of 2015
EU and U.S. Sign Umbrella Agreement
On June 2, 2016, the European Union and the U.S. signed an Umbrella Agreement, which, if approved, will implement a comprehensive data protection framework for criminal law enforcement cooperation. The European Council will adopt a decision on the Umbrella Agreement after obtaining consent from the European Parliament.
Continue Reading EU and U.S. Sign Umbrella Agreement
European Commission Presents EU-U.S. Privacy Shield
On February 29, 2016, the European Commission issued the legal texts that will implement the EU-U.S. Privacy Shield, including a draft adequacy decision of the European Commission, Frequently Asked Questions and a Communication summarizing the steps that have been taken over the last few years to restore trust in transatlantic data flows.
Continue Reading European Commission Presents EU-U.S. Privacy Shield
President Obama Signs Judicial Redress Act into Law
On February 24, 2016, President Obama signed the Judicial Redress Act into law. The Act grants non-U.S. citizens certain rights, including a private right of action for alleged privacy violations that occur in the U.S. …
Continue Reading President Obama Signs Judicial Redress Act into Law