Main Menu

Legal Blogs and Updates

Posts in Cybersecurity and Data Privacy.
New Jersey Moves to Expand Online Breach Notification Requirements

As the result of recent legislation, New Jersey residents now have additional rights to privacy and protection when it comes to their online accounts. Effective September 1, companies must disclose data breaches that involve usernames, email addresses and/or other account holder ...

DNC Hacking Lawsuit against Donald Trump’s Presidential Campaign and Others Dismissed

On July 30, 2019, a federal judge dismissed a lawsuit filed by the Democratic National Committee (DNC) against Donald Trump’s presidential campaign, campaign leaders, WikiLeaks, Russia and others related to the Russian hacking of Democratic Party computers and the dissemination of ...

Cyber Incident Exposes Potential Vulnerabilities Onboard Commercial Vessels

In February of 2019, a deep draft vessel reported that it was experiencing a significant cyber incident impacting their shipboard network. There has been no information regarding who instigated the attack but an interagency team of cyber experts stated that the damage had no effect on the ...

FEC: Campaigns Can Use Discounted Cybersecurity Services

On July 11, 2019, the Federal Election Commission (“FEC”) issued an advisory opinion stating that low to no-cost cybersecurity services do not constitute an in-kind contribution. Accordingly, to not run afoul of campaign finance laws, the firm providing these services must already ...

An Employer Must Take Reasonable Efforts to Protect Its Employees’ Personal Data

On November 21, 2018, the Supreme Court of Pennsylvania issued an opinion that could have far-reaching implications both inside and outside the state of Pennsylvania. In its opinion in Dittman v. UPMC, the court ultimately held that an “employer has a legal duty to exercise reasonable care ...

N.J. Creates New Data Privacy and Cybersecurity Unit

On May 7, 2018, New Jersey Attorney General Gurbir Grewal announced the formation of a new civil enforcement unit focused on enforcing laws that protect the data privacy and cybersecurity of New Jersey residents. The Data Privacy & Cybersecurity (DPC) Unit has the authority to enforce laws ...

Colorado Toughens Data Protection Law

On May 29, 2018, Colorado Governor John Hickenlooper signed HB 18-1128, a law that aims to statutorily require reasonable procedures and practices for safeguarding personally identifiable information. The unanimously passed piece of legislation will take effect in September of this ...

Today marks the beginning of a long-awaited and, in some circles, long-feared era—the General Data Protection Regulation (GDPR) is officially in effect. In the months leading up to today, many technology companies have been scrambling to comply with the new regulation. The GDPR, among ...

PCI DSS Version 3.2.1 Released: What You Need to Know

On May 17, 2018, the Purchase Card Industry Security Standards Council (PCI SSC) released version 3.2.1 of its PCI Data Security Standard (PCI DSS). Founded in 2004 by Visa, MasterCard, Discover, and American Express, the PCI SSC produces the “best practices” for enhancing the security ...

Seventh Circuit Provides Plaintiffs a Leg to Stand On

On April 11, 2018, the Seventh Circuit reversed and remanded a district court decision dismissing, for a lack of standing, a class action brought against Barnes & Noble related to a 2012 “skimming” attack suffered by the bookseller.

In a decision penned by Judge Easterbook, the court ...

Archives

Back to Page