Compliance, Definition and e-records

FINRA’s 2025 Regulatory Oversight Report on Artificial Intelligence

Debevoise Data Blog

FEBRUARY 5, 2025

Third – party risk management : Developing ways to manage compliance risks associated with the deployment of third-party foundational models and the use of third-party software that may have Gen AI embedded therein. Consider also organizing these risks into standard risks ( e., Defining AI consistently and truthfully.

Compliance

Compliance e-records Time-tracking Software

The SEC Adopts Significant Cybersecurity Amendments to Reg S-P

Debevoise Data Blog

MAY 17, 2024

Firms will have either 18 or 24 months (depending on size) from the date of publication in the Federal Register to come into compliance. We discuss Reg S-P’s new and expanded requirements, as well as considerations for compliance, below. a)(5).” §§ 240.17a-4(e)(14(v) 240.17ad-7(k)(5), 270.31a-1(b)(13)(v), 275.204-2(a)(25)(v).

e-records

e-records Compliance e-filing Due diligence

Colorado Proposes Extending AI Regulation to Health and Auto Insurers

Debevoise Data Blog

DECEMBER 16, 2024

Definitions of ECDIS, Auto Insurer, and Health Benefit Plan The Draft Amendment employs the same definition of ECDIS for Auto Insurers and Health Benefit Plan Insurers as for Life Insurers with one exception.

Compliance

Compliance e-records Court

Webinars

The New Way of Conducting Patent Research: Proven Strategies For Efficient Due Diligence

AI for Paralegals: Everything You Need to Know (and How to Use It Safely)

The Tech-Savvy Paralegals Playbook: How To Leverage AI

Uncovering The Hidden Connections: A Patent Family Survival Guide

MORE WEBINARS

You Can’t Have Legal GRC Optimisation Without Data Management Improvement?

Legal Tech Blog

DECEMBER 8, 2022

While these are necessary to help reduce complacency towards internal data protection compliance and ensure organisations actively work to reduce their exposure, it isn’t always easy for companies to align. In the case of e-discovery , for example, artificial intelligence is already being leveraged to great effect.

e-discovery

e-discovery Compliance Machine learning Due diligence

Data Protection in the Workplace: Employer Guidance

Legal IT Group

SEPTEMBER 19, 2023

In particular, specific details about the lives of some employees of H&M (illnesses, medical diagnoses, religious beliefs, and family problems) were comprehensively recorded and stored as information on a network drive. Find out the essential steps that employers should take for GDPR compliance in our article.

Data protection

Data protection Compliance e-records Law

Summary of amendments to the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021 in relation to online gaming

Ikigai Law

APRIL 7, 2023

Key definitions and explanations Definitions: ‘Online game’ means a game that is offered on the internet and is accessible by a user through a computer resource or an intermediary. [3] Compliance for OGIs under the Amendment 1. Candy Crush) may be considered harmful and be subjected to compliances under the Amendment.

Compliance

Compliance e-records e-filing Time-tracking

Understanding the CCB’s First Two Final Determinations (Guest Blog Post–Part 3 of 3)

Eric Goldman

MARCH 29, 2023

By guest blogger Elizabeth Townsend Gard , John E. Step Two: The CCB does a compliance review of the filed claim to determine if the claim qualifies for the CCB. Others have dropped out because they did not pass the compliance review, the respondent opted out, or for other reasons). This is done by a staff attorney.

e-filing

e-filing Court Failure-to-appear Dispute resolution

Washington’s Novel Health Data Law: An In-Depth Look

Debevoise Data Blog

AUGUST 2, 2023

This post highlights key aspects of the MHMDA with a focus on net-new provisions that organizations should consider as they build out their privacy compliance programs. The MHMDA includes data exemptions for HIPAA, quality assurance testing, and health records governed by or created pursuant to other state and federal laws.

Law

Law Law e-records Time-tracking

A Closer Look at 2023 U.S. State Privacy Law Activity: Washington State

Debevoise Data Blog

AUGUST 2, 2023

This post highlights key aspects of the MHMDA with a focus on net-new provisions that organizations should consider as they build out their privacy compliance programs. The MHMDA includes data exemptions for HIPAA, quality assurance testing, and health records governed by or created pursuant to other state and federal laws.

Law

Law Law e-records Time-tracking

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

3 Geeks and a Law Blog

SEPTEMBER 5, 2023

So there’s corporate and IP and employment and all of that, and our own internal privacy compliance as well. So that’s definitely a, you know, the automation is definitely something that helps uncover, you know, the, the not just the good data that’s out there. So it definitely has impact cross functionally as well.

Time-tracking

Time-tracking Hearing Compliance e-filing

The Revised Colorado AI Insurance Regulations: What Was Fixed, and What Still May Need Fixing

Debevoise Data Blog

MAY 31, 2023

In this Debevoise Data Blog Post, we discuss the Revised Regulation, how it differs from the Initial Regulation, what additional changes should be considered, and how companies can prepare for compliance. As discussed below, there are several significant changes in the Revised Regulation, including: Documentation. 10-3-1104.9(3)(d)

Compliance

Compliance e-records Court Law

Colorado Draft AI Insurance Rules Are a Watershed for AI Governance Regulation

Debevoise Data Blog

FEBRUARY 13, 2023

For companies that are not already far down this road, full compliance will be a significant endeavor. In this Debevoise Data Blog post, we discuss the Draft AI Regulation’s requirements, its likely impact on AI regulatory landscape, and how companies can prepare for compliance. Finally, there are reporting requirements to the DOI.

Compliance

Compliance e-records Court

The Final Colorado AI Insurance Regulations: What’s New and How to Prepare

Debevoise Data Blog

OCTOBER 3, 2023

In this Debevoise Data Blog Post, we discuss the Final Regulation, how it differs from the Draft Regulation, and what companies should be doing now to prepare for compliance. This definition does not apply to devices that require direct human intervention for data collection and exchange.

Compliance

Compliance e-records Court Software

The NYDFS Plans to Impose Significant Obligations on Insurers Using AI or External Data

Debevoise Data Blog

JANUARY 28, 2024

Unlike the CO Governance Regulation, the Proposed Circular’s definition of ECDIS does not include an enumerated list of factors that qualify as “lifestyle indicators,” such as social media habits, purchasing habits, home ownership, and educational attainment. The Proposed Circular also provides that ECDIS “ does not include an MIB Group, Inc.

e-records

e-records Compliance Time-tracking Machine learning

NYDFS Adopts Final Circular on Use of AI or External Data by Insurers

Debevoise Data Blog

JULY 15, 2024

It appears the use of the term “medical” for the ECDIS definition, which was changed to “health, life” for AIS definition, was an updating oversight as “medical” insurance is not a category under the New York Insurance Law (“Insurance Law”). The Final Circular also provides that ECDIS “does not include an MIB Group, Inc.

e-records

e-records Compliance Time-tracking Machine learning

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

Legal Tech Monitor

SEPTEMBER 4, 2023

So there’s corporate and IP and employment and all of that, and our own internal privacy compliance as well. So that’s definitely a, you know, the automation is definitely something that helps uncover, you know, the, the not just the good data that’s out there. So it definitely has impact cross functionally as well.

Time-tracking

Time-tracking Hearing Compliance e-filing

European Data Protection Roundup – October 2023

Debevoise Data Blog

NOVEMBER 21, 2023

Data protection & AI: In particular: (i) the French CNIL published its first set of guidance on GDPR compliance when developing AI tools; and (ii) the UK ICO issued a preliminary enforcement notice against Snap over its AI chatbot, alleging that Snap had not adequately assessed the privacy risks posed to child users of the tool.

Data protection

Data protection Compliance Failure-to-appear e-records

EU Digital Operational Resilience Act (DORA): Management Obligations and the Role of the Board

Debevoise Data Blog

APRIL 20, 2023

For most covered entities, DORA adopts the definition of “Management Body” from the principal regulating legislation for that type of entity (e.g., This might be a short document outlining the covered entity’s Board training program (including cadence and content) and attendance records. What is the “Management Body” ?

Compliance

Compliance e-records Hearing

EU Digital Operational Resilience Act (DORA): Management Obligations and the Role of the Board

Debevoise Data Blog

APRIL 20, 2023

For most covered entities, DORA adopts the definition of “Management Body” from the principal regulating legislation for that type of entity (e.g., This might be a short document outlining the covered entity’s Board training program (including cadence and content) and attendance records. What is the “Management Body” ?

Compliance

Compliance e-records Hearing

Treasury’s Post-2024 RFI Report on AI in Financial Services – Uses, Opportunities, and Risks

Debevoise Data Blog

JANUARY 23, 2025

For internal uses, respondents emphasized the growing role of AI in compliance, risk management, and operations, with generative AI in particular enhancing tasks like report creation, data analysis, and detecting anomalies in anti-money laundering and sanctions compliance.

Compliance

Compliance Intellectual Property Due diligence e-records

Voting Is Open! Pick the 15 Finalists to Compete At Startup Alley at ABA TECHSHOW 2024 in February

Above the Law - Technology

DECEMBER 4, 2023

Finally, we will directly target clients (enterprises and government agencies) with the idea that our track record would help become their preferred partners. DCS: records ‘instructions’ from grantor and can help send court orders to custodians to try and close out an estate. Trust + Will: Sets a digital asset beneficiary.

Litigator

Litigator Litigation Mediator Law firm

Biden Administration Acts to Limit Access to Sensitive Personal Data by Countries of Concern

Debevoise Data Blog

MARCH 5, 2024

Concurrently, the Department of Justice (“ DOJ ”) released an Advance Notice of Proposed Rulemaking (“ Advance Notice ”), detailing potential definitions for key terms not defined in the Order, discussing the potential regulatory framework to implement the Order (the “ Program ”) and seeking public comment on over 100 related questions. [1]

Compliance

Compliance e-records Federal law Court

Voting Is Open! Pick the 15 Finalists to Compete At Startup Alley at ABA TECHSHOW 2024 in February

Legal Tech Monitor

DECEMBER 4, 2023

Finally, we will directly target clients (enterprises and government agencies) with the idea that our track record would help become their preferred partners. DCS: records ‘instructions’ from grantor and can help send court orders to custodians to try and close out an estate. Does not have any actionable estate planning elements.

Litigator

Litigator Litigation Mediator Law firm

Berkeley Technology Law Journal Podcast: Digital Markets Act with Professor Jürgen Kühling

Berkley Technology Law Journal

NOVEMBER 18, 2022

Legislation empowers the European Commission to designate certain tech companies as gatekeepers and impose obligations on them in relation to data, advertising, e-commerce, interoperability, and the commercial relationships between the service providers customers and end users. Professor Kühling] 21:08 Definitely. billion euros.

Law

Law Law Data protection Court

Berkeley Technology Law Journal Podcast: Digital Markets Act with Professor Jürgen Kühling

Berkley Technology Law Journal

NOVEMBER 18, 2022

Legislation empowers the European Commission to designate certain tech companies as gatekeepers and impose obligations on them in relation to data, advertising, e-commerce, interoperability, and the commercial relationships between the service providers customers and end users. Professor Kühling] 21:08 Definitely. billion euros.

Law

Law Law Data protection Court

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

3 Geeks and a Law Blog

JUNE 28, 2023

E-discovery professionals are on the front lines of detecting deep fakes used as evidence, according to Marathe. Catch Deepfakes If You Can: Can E-Discovery Tools Keep Up With Gen AI? So I think that’s what we have right now when it comes to any authentication, compliance for AI image generators. Deepfakes Are Coming to Courts.

Litigator

Litigator Litigation Court e-discovery

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

Legal Tech Monitor

JUNE 28, 2023

E-discovery professionals are on the front lines of detecting deep fakes used as evidence, according to Marathe. Catch Deepfakes If You Can: Can E-Discovery Tools Keep Up With Gen AI? So I think that’s what we have right now when it comes to any authentication, compliance for AI image generators. Deepfakes Are Coming to Courts.

Litigator

Litigator Litigation Judge Court

Legal Tech Connection

FINRA’s 2025 Regulatory Oversight Report on Artificial Intelligence

The SEC Adopts Significant Cybersecurity Amendments to Reg S-P

Webinars

Trending Sources

Colorado Proposes Extending AI Regulation to Health and Auto Insurers

Webinars

You Can’t Have Legal GRC Optimisation Without Data Management Improvement?

Data Protection in the Workplace: Employer Guidance

Summary of amendments to the Information Technology (Intermediary Guidelines and Digital Media Ethics Code) Rules, 2021 in relation to online gaming

Understanding the CCB’s First Two Final Determinations (Guest Blog Post–Part 3 of 3)

Washington’s Novel Health Data Law: An In-Depth Look

A Closer Look at 2023 U.S. State Privacy Law Activity: Washington State

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

The Revised Colorado AI Insurance Regulations: What Was Fixed, and What Still May Need Fixing

Colorado Draft AI Insurance Rules Are a Watershed for AI Governance Regulation

The Final Colorado AI Insurance Regulations: What’s New and How to Prepare

The NYDFS Plans to Impose Significant Obligations on Insurers Using AI or External Data

NYDFS Adopts Final Circular on Use of AI or External Data by Insurers

Observing the Black Box: Transcend’s Brandon Wiebe’s Insights into Governing Emerging AI Systems (TGIR Ep. 218)

European Data Protection Roundup – October 2023

EU Digital Operational Resilience Act (DORA): Management Obligations and the Role of the Board

EU Digital Operational Resilience Act (DORA): Management Obligations and the Role of the Board

Treasury’s Post-2024 RFI Report on AI in Financial Services – Uses, Opportunities, and Risks

Voting Is Open! Pick the 15 Finalists to Compete At Startup Alley at ABA TECHSHOW 2024 in February

Biden Administration Acts to Limit Access to Sensitive Personal Data by Countries of Concern

Voting Is Open! Pick the 15 Finalists to Compete At Startup Alley at ABA TECHSHOW 2024 in February

Berkeley Technology Law Journal Podcast: Digital Markets Act with Professor Jürgen Kühling

Berkeley Technology Law Journal Podcast: Digital Markets Act with Professor Jürgen Kühling

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

The Rise of “Post-Truth” Litigation: ALM’s Isha Marathe on How Deep Fakes Threaten the Legal System (TGIR Ep. 209)

Stay Connected