Debevoise Data Blog

MARCH 5, 2023

The SEC examined robo-advisors’ marketing and performance advertising for compliance with the Advertising Rule. Recently, a California-based aerospace and defense contractor agreed to pay $9 million to resolve allegations that it had misrepresented compliance with cybersecurity requirements in certain federal government contracts.

Compliance 59

Compliance e-filing Attorney Law 59

Debevoise Data Blog

OCTOBER 30, 2024

In Part One of this two-part Debevoise Data Blog post, we go over the new cybersecurity requirements coming into effect in November and provide a few practical considerations that covered entities may want to consider as they evaluate their Part 500 compliance.

Compliance 52

Compliance Time-tracking 52

Global LegalTech Hub

NOVEMBER 11, 2024

This ensures better “compliance, ethical barriers, enhanced security, and a framework that allows users worldwide to collaborate seamlessly.” Definitely, she is more into books , which sometimes give her good quotes to think of and to share “constantly” with her team and her daughter: “There is no problem without a solution.”

Document management 130

Document management Law firm Hearing Legal technology 130

MatterSuite

AUGUST 20, 2024

By identifying the specific roles and responsibilities of legal departments, it becomes easier for companies to align their legal departments and ensure that there is compliance with the law. They are responsible for managing all the legal aspects of the firm from compliance, risks, and governance.

Compliance 52

Compliance Legal advice Litigation Litigator 52

Debevoise Data Blog

MAY 27, 2024

Notable aspects of the HUD Notification Requirement include: (1) an extremely broad definition of a reportable Significant Cyber Incident; (2) a 12-hour reporting time frame; and (3) an unusually early reporting trigger that starts the notification clock at detection.

Compliance 52

Compliance Law Law 52

Debevoise Data Blog

OCTOBER 31, 2023

Seven Takeaways from the Response Paper The definition of AI is a key gating question. The definition of “artificial intelligence” has been a contentious point in multiple AI legislative processes – including the draft EU AI Act – and it appears that the UK Financial Authorities could face similar challenges.

Compliance 52

Compliance Due diligence Machine learning Data protection 52

CloudNine

NOVEMBER 15, 2024

These laws impact how mobile data is managed, collected, and preserved, emphasizing compliance and consumer rights. Key Insights: Definition and Context: Koehler began by defining linked files as paths or URLs in documents that point to other files stored on various platforms.

Compliance 59

Compliance Attorney Court Litigation 59

Debevoise Data Blog

MARCH 18, 2024

These settlements are the SEC’s first-ever cases charging violations of the antifraud provisions of the federal securities laws in connection with AI disclosures, and also include the first settled charges involving AI in connection with the Marketing and Compliance Rules under the Investment Advisers Act of 1940 (“Advisers Act”).

e-filing 52

e-filing Machine learning Compliance Analytics 52

Legal Tech Blog

FEBRUARY 29, 2024

With the power of GPT-4, the security of SOC2 compliance, and extensive training and testing by attorneys, Assistant is generative AI upgraded for legal professionals. That’s why LegalOn states that they have put security, compliance, and contract aptitude as their key priorities in building LegalOn Assistant.

Compliance 62

Compliance Legal tech Legal tech Attorney 62

Ikigai Law

AUGUST 22, 2023

Financial Intelligence Unit – India, analysing the complexities surrounding the definition of ‘reporting entities’ under the Prevention of Money Laundering Act (PMLA) and its implications for fintechs. The FIU rejected these arguments and issued a show cause notice to PayPal for non-compliance. 96 lakhs on PayPal.

Court 52

Court Compliance Law Law 52

Inside Privacy

NOVEMBER 14, 2023

Compliance periods for the newly finalized requirements in the Second Amendment will be phased over the next two years, as set forth in additional detail below. This requirement was part of the proposed definition of “Chief Information Security Officer.” Compliance requirements for the amended regulation will take effect in stages.

Compliance 61

Compliance 61

Legal IT Group

JANUARY 22, 2024

With this regard, it is essential to know about the privacy legislation of this country since, nowadays, most internet businesses process the personal data of their clients, and they should do it in compliance with data protection laws. The “personal information” definition is amended. The controller and processor distinction.

Data protection 52

Data protection Compliance Litigation Litigator 52

Inside Privacy

FEBRUARY 22, 2024

SUD Counseling Notes: The final rule creates a new definition for SUD counseling notes and requires specific consent from an individual to use or disclose these notes. This definition and heightened protection are meant to mirror HIPAA protections for psychotherapy notes. Compliance with the rule is required by February 16, 2026.

Compliance 57

Compliance 57

Debevoise Data Blog

JUNE 11, 2024

Create a roadmap for compliance. Although the implementation period is long—with over 18 months to go—ensuring compliance (especially with the transparency obligations) will take a significant amount of time and resources for many companies. Key Takeaways from the Colorado AI Act Scope the applicability. Modify contracts.

Law 40

Law Law Compliance Attorney 40

Lineal Services

OCTOBER 1, 2024

At this year’s Relativity Fest, this session on Wednesday September 25, titled “ Isn’t It Time to Rethink ‘Document’ Review?”   explored the evolving nature of document review in the modern era, questioning whether the traditional definition of a “document” is still relevant.

Analytics 52

Analytics Compliance Legal technology Legal technology 52

Global LegalTech Hub

OCTOBER 5, 2021

Thus, we should not think of blockchain as the definitive technology, but as the base and channeling technology for many other solutions such as, for example, traceability applications, purchase and sale of currency tokens (cryptocurrencies), decentralized networks for the consumption of works protected by copyright, and a long etcetera.

Legal tech 130

Legal tech Legal tech Intellectual Property Compliance 130

Debevoise Data Blog

JULY 9, 2023

The Revised Amendment narrows the definition of a Class A company by adding that, “when calculating the number of employees and gross annual revenue, affiliates shall include only those that share information systems, cybersecurity resources or all or any part of a cybersecurity program with the covered entity.”

Failure-to-appear 52

Failure-to-appear Compliance Law Law 52

Inside Privacy

NOVEMBER 1, 2023

Below, we outline a number of key provisions: Definition of “Data Broker.” Beginning January 1, 2028, the Act requires data brokers to undergo an audit by an independent third party every three years to determine compliance with the deletion requirements, which must be submitted to the CPPA upon request. Exemptions. Audit Requirement.

Law 61

Law Law Compliance Attorney 61

Inside Privacy

SEPTEMBER 6, 2023

A businesses subject to the audit requirement would be required to submit an annual notice of compliance to the CPPA, including written certifications that the business either did or did not comply with its requirements. Risk Assessments New definitions. Reporting. New risk assessment requirement.

Compliance 65

Compliance 65

Debevoise Data Blog

NOVEMBER 10, 2022

The Revised Proposal softens the definition of Class A companies. Revised Definition of Class A Companies and of Other Key Terms In the pre-proposal, NYDFS created a new category of companies called “Class A” companies. The Proposed Amendments revised the definition of Class A Companies.

Compliance 52

Compliance Law Law 52

Legal IT Group

SEPTEMBER 29, 2023

Scope and differences of the LGPD The definition of personal data under the LGPD is also quite general and covers information about an identified person or an identifiable person. New cases and fines Telekall Infoservice The supervisory authority that monitors compliance with the LGPD is the Autoridade Nacional de Proteção de Dados (ANPD).

Data protection 52

Data protection Compliance Court Law 52

LawSites

JUNE 1, 2021

Integrated with HighQ, the collaboration and workflow platform Thomson Reuters acquired in 2019, HighQ Contract Analysis is designed for attorneys to use in transactional due diligence, compliance review and contract investigations.

Machine learning 145

Machine learning Intellectual Property Due diligence Compliance 145

Debevoise Data Blog

NOVEMBER 14, 2023

The Second Amendment’s compliance requirements will take effect in phases. For legal and compliance teams, the new requirements on certification, risk assessments, and governance will call for cross-functional participation throughout the coming year as companies assess their compliance with NYDFS’s Cybersecurity Regulation.

Compliance 52

Compliance Failure-to-appear Time-tracking 52

Rocket Matter

SEPTEMBER 20, 2023

Smart forms help you pre-qualify clients, route inquiries to the right person, ensure legal compliance, and enhance user experience. The cost of non-compliance can include hefty fines and legal action. Running a legal practice is definitely one of those things. Running a legal practice is definitely one of those things.

Law firm 52

Law firm Law Law Compliance 52

Debevoise Data Blog

AUGUST 7, 2022

Even when they rely on the cybersecurity programs of their parent companies or affiliates, the responsibility for compliance attaches to the covered entity. Covered entities are responsible for their cybersecurity programs. NYDFS covers these issues in their FAQs.

Compliance 52

Compliance Time-tracking Judge Law 52

Technology Law Dispatch

APRIL 18, 2023

Accountability and governance – regulators will need to determine who is accountable for compliance with existing regulation and the principles, and provide guidance on how to demonstrate accountability. The guidance provides a roadmap to data protection compliance for developers and users of generative AI.

Data protection 59

Data protection Compliance 59

Inside Privacy

MARCH 31, 2023

SB 1087 contains a specific standard that genetic data must meet to be considered deidentified. Notably, SB 1087 contains numerous exemptions for research and certain health-related entities and information.

Law 57

Law Law Compliance State law 57

Debevoise Data Blog

MARCH 20, 2023

Because the SEC’s proposed rules have overlapping requirements, it will be important for firms to assess how these competing requirements would interact and impact their incident response and compliance programs, as well as their regulatory notification and disclosure obligations.

Compliance 40

Compliance 40

Bigfork Tech

JUNE 25, 2024

From contract creation to signature and beyond, this integration streamlines operations, eliminates paperwork, and minimizes errors, thereby ensuring compliance with legal standards. DocuSign Integration : Facilitating a smooth contract management process, ALOE integrates seamlessly with DocuSign.

Contract management 52

Contract management Time-tracking Software Data protection 52

Debevoise Data Blog

NOVEMBER 28, 2022

We recently wrote about how rights-based regulatory regimes for artificial intelligence (as opposed to risk-based frameworks) can lead to a misallocation of resources because compliance will require too much effort on low-risk AI ( e.g., spam filters, graphics generation for games, inventory management, etc.)

Compliance 52

Compliance Law Law 52

Rocket Matter

NOVEMBER 2, 2023

There’s no way around it—hidden fees are some of the most annoying things in business (and in life). Whether it’s a hidden “resort” fee for a hotel that definitely isn’t a resort or hidden fees for business services, these fees can have a big impact on your bottom line. Among the trickiest to track for law firms?

Time-tracking 52

Time-tracking Law firm Compliance Legal CRM 52

Inside Privacy

MAY 25, 2023

Notably, the definition of an educational purpose does not include “commercial purposes unrelated to the provision of the online service requested by the school such as advertising or building user profiles.”

Compliance 52

Compliance 52

Inside Privacy

MARCH 28, 2023

Definition of an AI system The European Parliament has sought to amend the definition of an AI system, aligning with the OECD’s definition of AI systems. Below, we outline the key amendments proposed by the European Parliament in the course of its negotiations with the Council.

Compliance 61

Compliance Law Law 61

OpenText

AUGUST 23, 2023

There are a number of ways to understand the “cost” of something, and most definitions of the term begin with money as the chief factor. For example: Cost is “the amount is money needed to buy, do, or make something.”

Compliance 52

Compliance 52

Legal IT Group

SEPTEMBER 19, 2023

Find out the essential steps that employers should take for GDPR compliance in our article. Outlook Calendar and Job Description The job description and outlook calendar are not considered personal data in accordance with the definition outlined in Article 4(1) of the GDPR.

Data protection 52

Data protection Compliance e-records Law 52

Dewey B Strategic

FEBRUARY 28, 2024

We add to that advanced security and privacy protections, including SOC II Type 2 compliance, so that companies can trust Assistant with their sensitive documents and questions.” I use LegalOn Assistant to strengthen my contracts. It helps me identify risks and draft new clauses from scratch.

Compliance 59

Compliance Software Attorney Lawyer 59

Debevoise Data Blog

AUGUST 14, 2023

The Proposed Rules also contain amendments to rules under the Securities Exchange Act of 1934 [1] (“Exchange Act”) and the Investment Advisers Act of 1940 [2] (“Advisers Act”) that would require firms to have policies and procedures to achieve compliance with the rules and to make and maintain related records.

Analytics 52

Analytics Machine learning Compliance Court 52