Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

Senate Approves the Cybersecurity Information Sharing Act of 2015

On October 27, 2015, the Senate approved the Cybersecurity Information Sharing Act of 2015. The vote was 74 to 21 in support of the bill. The bill provides certain liability protections to companies that share cybersecurity information with one another and the federal government to help protect against cybersecurity threats. Some amendments were adopted, including a ten-year sunset...

NAIC Task Force Adopts a Cybersecurity “Bill of Rights” Despite Industry Objections

On October 14, the National Association of Insurance Commissioners Cybersecurity Task Force (NAIC Task Force) adopted a version of the Cybersecurity Bill of Rights for insurance consumers. The Bill of Rights claims to outline the rights insurance consumers can expect when insurers, agents and other businesses collect personal consumer information and experience data breaches. It was...

European Court of Justice Invalidates Safe Harbor Agreement

On October 6th, the European Court of Justice declared the Safe Harbor data-transfer agreement between the United States and the European Union to be invalid. Safe Harbor established a framework for U.S. companies to transfer personal data of European citizens to the U.S. without violating European privacy rules. The Court’s ruling does not order an immediate end to Safe Harbor...

The SEC’s Cybersecurity Enforcement Action: Rulemaking by Enforcement

The Securities and Exchange Commission recently brought an enforcement action against an investment adviser that, like a large number of companies, was the victim of a cyberattack. Although the SEC did not allege that any of the firm’s clients suffered harm, the Commission nonetheless sanctioned the firm for its allegedly unreasonable policies and procedures. In their article for...