2021, Compliance and Failure-to-appear

Understanding the CCB’s First Two Final Determinations (Guest Blog Post–Part 3 of 3)

Eric Goldman

MARCH 29, 2023

Step Two: The CCB does a compliance review of the filed claim to determine if the claim qualifies for the CCB. Others have dropped out because they did not pass the compliance review, the respondent opted out, or for other reasons). Mitrakos, 22-CCB-0035 , February 15, 2023, and Oppenheimer v. Prutton, 22-CCB-0045 , February 28, 2023.

e-filing

e-filing Court Failure-to-appear Dispute resolution

Effective Access Controls, Timely Breach Notification, and Other Takeaways from the Latest NYDFS Cyber Resolution

Debevoise Data Blog

APRIL 14, 2021

On April 14, 2021, the New York State Department of Financial Services (the “DFS”) announced that its cyber enforcement action against National Securities Corporation (“National Securities”) has been resolved by a Consent Order that imposes a $3 million penalty. This is the latest step in the DFS’s very active cyber-enforcement agenda.

Failure-to-appear

Failure-to-appear Compliance Hearing Document management

The SEC’s New Risk Alert Warns about the Use of Alternative Data

Debevoise Data Blog

MAY 1, 2022

On April 26, 2022, the Division of Examinations (“EXAMS”) of the Securities and Exchange Commission (the “SEC”) issued a Risk Alert titled “ Investment Adviser MNPI Compliance Issues ” (“Risk Alert”) on the use of alternative data.

Due diligence

Due diligence Failure-to-appear Compliance Law

Webinars

Case Closed: How to Optimize Your Legal Intake Process for Efficiency

MORE WEBINARS

First Resolution by the DFS Under Its Cyber Rules Highlights the Risks of Inadequate Cyber Investigations and the Importance of Satisfying State Breach Notification Obligations

Debevoise Data Blog

MARCH 7, 2021

On March 3, 2021, the DFS reached its first full resolution under its Part 500 Cybersecurity Regulation , a Consent Order with Residential Mortgage Services that imposes a $1.5 Failure to satisfy various state breach notification obligations. Failure to satisfy various state breach notification obligations.

Failure-to-appear

Failure-to-appear Compliance Hearing Law firm

European Data Protection Roundup – September

Debevoise Data Blog

OCTOBER 12, 2021

million fine against Austrian Post for channelling electronic data protection-related inquiries to a web form and not offering an additional email address, irrespective of the data subject option to also use non-electronic postal mail or customer service. These developments, and more, covered below. Standard Contractual Clauses).

Data protection

Data protection Failure-to-appear Compliance e-records

Federal Trade Commission Finalizes Updates to the Health Breach Notification Rule

Debevoise Data Blog

MAY 20, 2024

Failure to comply with the HBNR can result in penalties of up to $51,744 per violation. However, the FTC’s 2021 policy statement and several recent enforcement actions that followed indicate the agency’s intent to expand the scope of the HBNR to: (a) treat as a breach of security so-called “unauthorized disclosures” (i.e.,

Time-tracking

Time-tracking Compliance Failure-to-appear

The FTC’s Proposed Rulemaking Part 2 — Key Privacy Takeaways

Debevoise Data Blog

AUGUST 24, 2022

The ANPR’s questions also consider under what circumstances a failure to provide privacy protections to children and teenagers (e.g., In Part 1 of this Data Blog series, we provided an overview of the ANPR and the context for the FTC’s rulemaking process. social media, ad tech and the mobile app ecosystem).

Failure-to-appear

Failure-to-appear Compliance Law Law

European Data Protection Roundup – October 2023

Debevoise Data Blog

NOVEMBER 21, 2023

Data protection & AI: In particular: (i) the French CNIL published its first set of guidance on GDPR compliance when developing AI tools; and (ii) the UK ICO issued a preliminary enforcement notice against Snap over its AI chatbot, alleging that Snap had not adequately assessed the privacy risks posed to child users of the tool.

Data protection

Data protection Compliance Failure-to-appear e-records

Cyber Whistleblower Leads to DOJ Civil Settlement

Debevoise Data Blog

NOVEMBER 4, 2024

Specifically, Penn State allegedly failed to meet cybersecurity requirements in federal government contracts, misrepresented compliance timelines and plans, and failed to use a qualified external cloud service provider. The underlying failures alleged in the settlement occurred between 2018 and 2023.

Compliance

Compliance Failure-to-appear Lawsuit Court

Cyber Whistleblowers: Eight Lessons from the First False Claims Act Settlements

Debevoise Data Blog

JULY 20, 2022

Department of Justice (the “DOJ”) announced that Aerojet Rocketdyne (“Aerojet”), a California-based aerospace and defense contractor, agreed to pay $9 million to resolve allegations that it violated the False Claims Act (the “FCA”) by misrepresenting its compliance with cybersecurity requirements in federal government contracts.

Failure-to-appear

Failure-to-appear Compliance Court Attorney

Harry Nelson: How to Be a Top Lawyer In Your Field

Attorney at Work

APRIL 6, 2022

In addition to his regulatory strategy work, he developed a regulatory pathway for telehealth companies acquired in 2021. I am in the business of persuading investors or acquirers of early-stage ventures that the regulatory compliance concerns expressed by other lawyers are not a real problem — or that they are addressable.

Lawyer

Lawyer Failure-to-appear Compliance Law firm

Complying with New York’s AI Employment Law and Similar Regulations

Debevoise Data Blog

JULY 13, 2022

The Automated Employment Decision Tool Law (“AEDT”) places compliance obligations on employers in New York City that use AI tools, rather than software vendors who create the tools. For companies subject to the AEDT, compliance obligations include: Conducting an Independent, Annual Bias Audit. What Does the AEDT Require?

Law

Law Law Machine learning Compliance

Cyber Incident Reporting for Critical Infrastructure – Considerations for the Space Industry

Berkley Technology Law Journal

JANUARY 2, 2024

In particular, the May 2021 ransomware attack against the Colonial Pipeline was a “watershed moment” that laid bare how cyber incidents can have rippling impacts on the American economy and people’s daily lives. Second, the U.S.

Failure-to-appear

Failure-to-appear Compliance Law Law

National Cybersecurity Strategy (Part 1): The White House Urges Private and Public Action

Debevoise Data Blog

MARCH 16, 2023

The Strategy demonstrates a strong commitment by the Administration to further enhance the country’s cybersecurity posture. The Strategy demonstrates a strong commitment by the Administration to further enhance the country’s cybersecurity posture. Early reaction to the Strategy is largely favorable.

Software

Software Defendant Failure-to-appear Compliance

Two Separate Courts Reiterate That Online Age Authentication Mandates Are Unconstitutional

Eric Goldman

SEPTEMBER 19, 2023

Many recent laws essentially mirror the “protect the kids online” initiatives of the 1990s and early 2000s, all of which failed as unconstitutional. In 1996, Congress passed the Communications Decency Act (CDA) to restrict minors’ access to indecent and patently offensive content online.

Court

Court Judge Defendant Litigator

Legal Tech Connection

Understanding the CCB’s First Two Final Determinations (Guest Blog Post–Part 3 of 3)

Effective Access Controls, Timely Breach Notification, and Other Takeaways from the Latest NYDFS Cyber Resolution

Webinars

Trending Sources

The SEC’s New Risk Alert Warns about the Use of Alternative Data

Webinars

First Resolution by the DFS Under Its Cyber Rules Highlights the Risks of Inadequate Cyber Investigations and the Importance of Satisfying State Breach Notification Obligations

European Data Protection Roundup – September

Federal Trade Commission Finalizes Updates to the Health Breach Notification Rule

The FTC’s Proposed Rulemaking Part 2 — Key Privacy Takeaways

European Data Protection Roundup – October 2023

Cyber Whistleblower Leads to DOJ Civil Settlement

Cyber Whistleblowers: Eight Lessons from the First False Claims Act Settlements

Harry Nelson: How to Be a Top Lawyer In Your Field

Complying with New York’s AI Employment Law and Similar Regulations

Cyber Incident Reporting for Critical Infrastructure – Considerations for the Space Industry

National Cybersecurity Strategy (Part 1): The White House Urges Private and Public Action

Two Separate Courts Reiterate That Online Age Authentication Mandates Are Unconstitutional

Stay Connected