Eversheds Sutherland Cybersecurity and Privacy Insights Blog
content top

2021 Foresight: Key lessons from 2020 to help navigate the future of cybersecurity and data privacy

When it comes to privacy and cybersecurity, the uncertainty and volatility of 2020 will not soon relent — but neither will its invaluable lessons. In this article for Thomson Reuters, Partners Michael Bahar and Paula Barrett look back on the tumult of 2020 and reveal five key lessons to help manage the inevitable uncertainty and volatility going forward, and emerge stronger and more...

Standard Contractual Clauses and EDPB Recommendations

The European Data Protection Board (EDPB), a collective of representatives from European data privacy regulators, published important recommendations on the Schrems II judgment, the seismic European decision that invalidated the EU-US Privacy Shield and called into question the continuing viability of personal data transfers from the EU and UK to third countries, particularly the...

Accessibility—The hidden A in the CCPA

In the scramble to come into compliance before the January 1, 2020, deadline, companies may have overlooked a key—and potentially costly—requirement in the California Consumer Privacy Act (CCPA). Under the draft regulations to the CCPA, businesses are required to ensure that their internal and external notice and privacy policies are reasonably accessible to individuals with...

Dangerous seas ahead – the California Consumer Privacy Act and litigation risk

The California Consumer Privacy Act (CCPA) exposes companies doing business in California to certain litigation risks. The CCPA creates a private right of action that increases class action litigation risk for data breaches. Plaintiffs might try to use California’s Unfair Competition Law (UCL) to expand the scope of the CCPA’s private right of action. Businesses can proactively engage...

Will you meet the new cybersecurity vendor management requirements? ATTORNEY ADVERTISING

March 1 is upon us, now what? The deadline for the NY Department of Financial Services’ “first of its kind” cyber regulation has arrived for financial services institutions to implement programs that properly evaluate and manage the data security risks posed by their vendors. To manage these risks, institutions must go beyond the traditional vendor management function and far deeper...

« Older Entries Next Entries »