Compliance, Definition and Failure-to-appear

Federal Trade Commission Finalizes Updates to the Health Breach Notification Rule

Debevoise Data Blog

MAY 20, 2024

Failure to comply with the HBNR can result in penalties of up to $51,744 per violation. While this language may appear exceedingly broad at first glance, certain definitions limit the scope of the HBNR to businesses whose services involve offering or maintaining (e.g., fertility, fitness, glucose levels, heart rate).

Time-tracking

Time-tracking Compliance Failure-to-appear

A Summary of the Final Amendments to the NYDFS Cyber Rules

Debevoise Data Blog

NOVEMBER 14, 2023

The Second Amendment’s compliance requirements will take effect in phases. The Second Amendment’s compliance requirements will take effect in phases. April 15, 2024: 500.17(b): b): Certification requirements. May 1, 2025: 500.5(a)(2): a)(2): Scanning requirements; 500.7: Access privilege and password requirements; 500.14(a)(2):

Compliance

Compliance Failure-to-appear Time-tracking

NYDFS Publishes Revised Amendments to Its Cybersecurity Regulation – What Got Fixed, and What Still Needs Fixing

Debevoise Data Blog

JULY 9, 2023

The Revised Amendment narrows the definition of a Class A company by adding that, “when calculating the number of employees and gross annual revenue, affiliates shall include only those that share information systems, cybersecurity resources or all or any part of a cybersecurity program with the covered entity.”

Failure-to-appear

Failure-to-appear Compliance Law Law

UK Data Protection Bill No.2 – What is changed?

Technology Law Dispatch

MARCH 24, 2023

As with the previous bill, the new bill aims to alleviate the burden of compliance with the UK GDPR and its implementing UK Data Protection Act (2018) for organisations in the UK. What are the main proposed changes? Records of processing No longer required unless the organisation is involved in high-risk processing.

Data protection

Data protection Failure-to-appear Compliance Software

CCPA Enforcement Actions Take Aim at Sales of Personal Information

Debevoise Data Blog

SEPTEMBER 14, 2022

A large number of the examples focused on compliance with the CCPA’s requirements for “sales” of personal information, including the obligation that businesses honor consumers’ use of a Global Privacy Control (“GPC”) opt-out signals.

Analytics

Analytics Compliance Failure-to-appear Attorney

Can staking-as-a-service providers be regarded as alternative investment funds?

new tech law blog

JUNE 6, 2022

(For this reason, for a while there was a risk that the European Parliament would include in the proposed Markets in Crypto-assets Regulation a ban on the use of consensus based on PoW.) StaaS providers offer this service to numerous participants, and this greatly increases the pool of tokens they can present to the network as their stake.

Failure-to-appear

Failure-to-appear Case law Compliance Law

NYDFS Publishes Official Amendments to Its Cybersecurity Regulation (Part 2) – Answers to the Top Questions from Our Webcast

Debevoise Data Blog

NOVEMBER 30, 2022

But as more cybersecurity requirements are placed on covered entities, they are more likely to rely on outside assistance for compliance. To the extent that covered entities rely on noncovered entity affiliate(s) for compliance with any of the obligations created by the Proposed Amendments (e.g.,

Compliance

Compliance Failure-to-appear Law Law

Buy-Side vs. Sell-Side Contracts: Differences, Similarities, Opportunities, & Challenges

AXDRAFT

FEBRUARY 17, 2023

Definition of Buy-Side Contracts In simple words, buy-side contracts are agreements that define the receipt of goods or services in exchange for something in return, typically money. Your company’s performance can be defined by how well you sell and how you buy. New to contracting?

Time-tracking

Time-tracking Contract management Analytics Failure-to-appear

Comments on the Ruling Declaring California’s Age-Appropriate Design Code (AADC) Unconstitutional–NetChoice v. Bonta

Eric Goldman

OCTOBER 16, 2023

The age estimation and privacy provisions thus appear likely to impede the “availability and use” of information and accordingly to regulate speech.” [Sorry it’s take me this long to get this blog post off my desk. I hope it was worth the wait.] their website).

Court

Court Failure-to-appear Data protection Judge

Understanding the CCB’s First Two Final Determinations (Guest Blog Post–Part 3 of 3)

Eric Goldman

MARCH 29, 2023

Step Two: The CCB does a compliance review of the filed claim to determine if the claim qualifies for the CCB. Others have dropped out because they did not pass the compliance review, the respondent opted out, or for other reasons). Mitrakos, 22-CCB-0035 , February 15, 2023, and Oppenheimer v. Prutton, 22-CCB-0045 , February 28, 2023.

e-filing

e-filing Court Failure-to-appear Dispute resolution

European Data Protection Roundup – October 2023

Debevoise Data Blog

NOVEMBER 21, 2023

Data protection & AI: In particular: (i) the French CNIL published its first set of guidance on GDPR compliance when developing AI tools; and (ii) the UK ICO issued a preliminary enforcement notice against Snap over its AI chatbot, alleging that Snap had not adequately assessed the privacy risks posed to child users of the tool.

Data protection

Data protection Compliance Failure-to-appear e-records

Highlights from Masters Conference New York 2024

CloudNine

AUGUST 1, 2024

By Rick Clark The Masters Conference for Legal Professionals in New York City hosted by Morgan Lewis LLP on July 24th was replete with insights on applying AI to eDiscovery, collecting and reviewing text and chat app data and information governance. This approach helps to tell the whole story while saving time and reducing costs.

Failure-to-appear

Failure-to-appear Compliance Digital evidence Time-tracking

Cyber Incident Reporting for Critical Infrastructure – Considerations for the Space Industry

Berkley Technology Law Journal

JANUARY 2, 2024

By properly scoping these reporting requirements, CISA can encourage industry compliance with reporting requirements and focus its efforts on responding to high severity cyber incidents. Comments from around the business community emphasize two primary adverse consequences of an overly broad definition of “covered entities.”

Failure-to-appear

Failure-to-appear Compliance Law Law

Complying with New York’s AI Employment Law and Similar Regulations

Debevoise Data Blog

JULY 13, 2022

The Automated Employment Decision Tool Law (“AEDT”) places compliance obligations on employers in New York City that use AI tools, rather than software vendors who create the tools. A growing number of employers are turning to artificial intelligence (“AI”) tools to assist in recruiting and other employment decisions.

Law

Law Law Machine learning Compliance

Two Separate Courts Reiterate That Online Age Authentication Mandates Are Unconstitutional

Eric Goldman

SEPTEMBER 19, 2023

but limited to commercial websites and with tighter definitions of the restricted content. Many recent laws essentially mirror the “protect the kids online” initiatives of the 1990s and early 2000s, all of which failed as unconstitutional. The CDA essentially required websites to authenticate user age.

Court

Court Judge Defendant Litigator

Legal Tech Connection

Federal Trade Commission Finalizes Updates to the Health Breach Notification Rule

A Summary of the Final Amendments to the NYDFS Cyber Rules

Trending Sources

NYDFS Publishes Revised Amendments to Its Cybersecurity Regulation – What Got Fixed, and What Still Needs Fixing

UK Data Protection Bill No.2 – What is changed?

CCPA Enforcement Actions Take Aim at Sales of Personal Information

Can staking-as-a-service providers be regarded as alternative investment funds?

NYDFS Publishes Official Amendments to Its Cybersecurity Regulation (Part 2) – Answers to the Top Questions from Our Webcast

Buy-Side vs. Sell-Side Contracts: Differences, Similarities, Opportunities, & Challenges

Comments on the Ruling Declaring California’s Age-Appropriate Design Code (AADC) Unconstitutional–NetChoice v. Bonta

Understanding the CCB’s First Two Final Determinations (Guest Blog Post–Part 3 of 3)

European Data Protection Roundup – October 2023

Highlights from Masters Conference New York 2024

Cyber Incident Reporting for Critical Infrastructure – Considerations for the Space Industry

Complying with New York’s AI Employment Law and Similar Regulations

Two Separate Courts Reiterate That Online Age Authentication Mandates Are Unconstitutional

Stay Connected