CYBER AND DATA PRIVACY
Electronic Discovery & Information Governance – Tip of the Month: Adapting Information Governance and eDiscovery to the “New Normal”
In this scenario we look at a large financial services firm engaged outside counsel and an eDiscovery provider for an internal investigation relating to trading activities that may result in the need for disclosures to regulators and follow-on civil suits.
Utah has become the fourth state to pass comprehensive consumer data privacy legislation. The Utah Consumer Privacy Act (“UCPA”) into law on March 24, 2022. This Legal Update discusses the UCPA’s scope; compares it with the other state privacy laws in the areas of exemptions, data subject rights and data controller obligations; and notes important dates related to the new law.
Top Developments to look out for in 2022 in Intellectual Property, Information Technology and Data Protection
A short-list of legislative, policy and regulatory developments to watch for in 2022; from GDPR damages, to the Artificial Intelligence Act. the UK Online Safety Bill, Children’s Code and more.
Operators of overseas websites with even a minimal commercial activity in the UK might be subject to the General Data Protection Regulation
The General Data Protection Regulation (“GDPR”) might apply to operators of overseas websites that have even a minimal commercial activity in the UK following the judgment of the Court of Appeal of England and Wales in Soriano v Forensic News LLC and Others  EWCA Civ 1952.
The rapid advancement of AI technologies in recent years means that regulators are engaged in a game of catch up.
On November 18, 2021, the Board of Governors of the Federal Reserve, Office of the Comptroller of the Currency and Federal Deposit Insurance Corporation finalized new cyber incident notification requirements for institutions that they regulate and their service providers. The Notification Rule expands and clarifies existing notification obligations of financial institutions, which are primarily focused on consumer protection and suspicious activity reporting.
We are increasingly seeing a deal model that we call a “Cloud+ Strategic Partnership.” In that model, a cloud provider agrees to provide discounts to and collaborate with a company in the development of new software that will run on the provider’s cloud infrastructure or cloud platform. This article contains some initial considerations.
US Federal Trade Commission Adopts Prescriptive Data Security Requirements and Other Updates to Its Gramm-Leach-Bliley Act Safeguards Rule
On October 27, 2021, the Federal Trade Commission issued a final rule (“Final Rule”) implementing most of the revisions it proposed in 2019, with some important modifications, to its Gramm-Leach-Bliley Act safeguards rule.
Since 2018, people have questioned whether they would have new obligations or rights under California’s comprehensive consumer privacy regime. But California was only the beginning for such laws in the United States.
A virtual discussion on the regulatory aspects of the EO, its potential policy outcomes, and practical impacts on affected businesses. On July 9, 2021, President Joe Biden issued a far-reaching executive order (EO) on Promoting Competition in the American Economy that establishes a “whole-of-government effort” aimed at reducing corporate consolidation. The EO calls for federal agencies to undertake 72 separate initiatives across a range of industry sectors, including financial services, technology, transportation and communication services.
Join Mayer Brown partners Brad Peterson and Elizabeth Raymond as they discuss key legal considerations and best practices with host Julian Dibbell.
The end of the Brexit transition period and the implementation of the new UK/EU Trade Agreement have had a significant impact on technology transactions throughout Europe. Businesses entering into Europe-wide technology engagements should pay particular attention to the effects on technology licensing, data privacy and international data transfers, employment and immigration rules, and financial services regulatory requirements.