Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

The New Vendor Management World Under NYDFS’ New Cyber Regulation

As of March 1, 2019, the New York State Department of Financial Services’ (NYDFS) cybersecurity regulation, 23 NYCRR Part 500, requires financial services institutions regulated by NYDFS to implement policies and procedures to address the cybersecurity risks posed by third-party service providers to the institutions’ nonpublic information (NPI). Learn...

Know Your Tech

Technologies often provide solutions, if not game-changing solutions; but there is no solution that comes without its own challenges. Knowing what those potential challenges are up front is becoming increasingly critical. For both pragmatic and regulatory reasons, it is more important than ever that boards, senior executives and general counsels sufficiently understand technologies...

Will you meet the new cybersecurity vendor management requirements? ATTORNEY ADVERTISING

March 1 is upon us, now what? The deadline for the NY Department of Financial Services’ “first of its kind” cyber regulation has arrived for financial services institutions to implement programs that properly evaluate and manage the data security risks posed by their vendors. To manage these risks, institutions must go beyond the traditional vendor management function and far deeper...

Cybersecurity and Data Privacy review and update: Looking back on 2018 and planning ahead for 2019

From the implementation of the GDPR to the passage of the CCPA, the year 2018 proved to be a monumental one for cybersecurity and data privacy. Regulators from around the world responded to devastating, large-scale cyber-attacks, and a desire for their citizens to have more control over their data, by passing a wide range of regulations aimed at protecting consumer information. These...

January’s Privacy Blizzard

The start to 2019 provided scant respite from the frenetic pace of privacy and cybersecurity developments. Already this year, regulators have amended and enforced existing regulations; courts have issued significant interpretations of law; and legislators have proposed new rules aimed at increasing privacy obligations and liability for businesses. This alert highlights the pressing...

The floodgates open – Illinois Supreme Court issues landmark ruling in biometrics case

In a unanimous decision on January 25, 2019, the Illinois Supreme Court found that a plaintiff need not show actual harm to seek relief under the state’s Biometric Information and Privacy Act (BIPA). This is welcome news for plaintiffs’ attorneys who have already used BIPA as a vehicle to file dozens of class action lawsuits against businesses across a wide swath of industries in each...

« Older Entries Next Entries »