Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

New guidance proposed on the extra-territorial scope of the GDPR

The agency responsible for administering the General Data Protection Regulation (GDPR) recently proposed guidelines to clarify the extra-territorial scope of Europe’s sweeping new privacy law. While these guidelines are not yet finalized, they indicate that the reach of the GDPR spreads far beyond the European Union. American businesses that had concluded that they were likely exempt...

India’s highest court defends data privacy

India’s Supreme Court recently issued a holding that increases the data privacy protection that businesses operating in India must provide. The holding strikes down the portion of Section 57 of the Aadhaar Act that had previously allowed businesses to require national ID numbers, known as Aadhaar numbers, for “any purpose.” The industries most impacted by this ruling will likely be...

Eversheds Sutherland Partner Brian Rubin Selected to Serve in National Society of Compliance Professionals Leadership Role

Eversheds Sutherland is pleased to announce that Partner Brian L. Rubin has been selected to join the National Society of Compliance Professionals (NSCP) Board of Directors. A longtime member of the NSCP and a frequent writer for its premier journal, NSCP Currents, the organization recently confirmed Mr. Rubin’s appointment by a unanimous vote. More than 2,000 financial service...

NAIC Proposed Insurance Data Security Model Law Explained

Eversheds Sutherland’s legal alert, NAIC Takes Major Step Toward Final Approval of Insurance Data Security Model Law, was featured in this article for Captive.com.  

What European Financial Institutions need to know about New York’s Cybersecurity Regulations

From 28 August 2017, banks, insurers, and other financial institutions operating in New York will be required to comply with the New York Department of Financial Services (“NYDFS”) Cybersecurity Requirements for Financial Services Companies (the “Regulations”). Finalized on March 1, 2017, firms had 180 days from the effective date to comply with the core requirements of the...

« Older Entries