Data Security Law Blog is the firm’s resource for the latest news, analysis, and thought leadership in the critical area of privacy and cybersecurity law.

Recent Blog Posts

  • Craig A. Newman will Present on Implementing the New DFS Cybersecurity Regulation at a Cardozo Data Law Initiative CLE Program on April 28th in New York City Craig A. Newman will be speaking on a panel entitled, “Implementing the New DFS Cybersecurity Regulation” at a Cardozo Data Law Initiative CLE Program on April 28th in New York City. The Cardozo Data Law Initiative is a program designed to prepare law students for careers in the rapidly expanding legal fields of information governance,... More
  • Patterson Belknap Publishes Mini-Treatise on New York Cyber Regulation Patterson Belknap Webb & Tyler LLP is pleased to announce the publication of New York’s Cybersecurity Regulation for Financial Institutions- a New Age of Cybersecurity Regulation: Raising the Bar and Demanding Leadership Accountability, published by and available on Bloomberg Law. The mini-treatise provides a general overview of the sweeping new cybersecurity regulation issued by the New... More
  • Colorado Regulator Proposes New Cybersecurity Rules for Financial Institutions Increasingly, states are enacting cybersecurity regulations for financial institutions and investment advisors.  Following New York’s groundbreaking regulation (which we have covered in detail here), Colorado recently proposed changes to its state securities act that would impose new cybersecurity requirements on broker-dealers and investment advisors that operate in the state.  On March 27, the Colorado Department... More
  • Dueling Cybersecurity Regulations for Healthcare: HHS Meets New York State For healthcare insurers that operate in New York, data security regulation has gotten more complicated.  The U.S. Department of Health and Human Services’ Office for Civil Rights has been the industry’s primary data security regulator.  But now, with the implementation of New York’s new cybersecurity regulation – which covers not only financial institutions but insurers... More
  • The FTC and LabMD’s Legal Battle Gets Personal: First Amendment Claims Against FTC Lawyers Survive The Federal Trade Commission’s (FTC) sprawling and contentious legal battle with now-defunct medical testing company LabMD recently took an unusual turn when a federal court allowed LabMD (and its former CEO) to proceed with claims against two of the three FTC attorneys who handled the agency's investigation and prosecution of LabMD. Understanding this decision to... More
  • New York’s Cyber Regulation: A National Blueprint? New York’s top banking regulator would like the state’s new sweeping – and highly detailed – cybersecurity regulation to serve as a national model for insurance companies in safeguarding their institutions from cybercrime. In a speech to the National Association of Insurance Commissioners (NAIC) on Sunday, Maria T. Vullo, superintendent of the New York State Department... More
  • NAIC Model Cyber Law: Yet Another Regulatory Measure The National Association of Insurance Commissioner’s (NAIC) model cybersecurity law will take center stage later this week at the group’s annual meeting in Denver.  In its third draft, the Insurance Data Security Model Law – which the NAIC’s cybersecurity task force started work on in March 2016 – sets forth risk-based data security standards that... More
  • Help Is On the Way: Cybersecurity Bill Aims to Provide Assistance and Training A recently introduced bipartisan bill seeks to provide state and local authorities with additional resources to assist in the fight against cybersecurity threats.  Last month, Senators John Cornyn (R-Tex.), Patrick Leahy (D-Vt.), and Ted Cruz (R-Tex.) introduced the National Cybersecurity Preparedness Consortium Act, which would authorize the Department of Homeland Security to work with non-profit... More
  • DFS Chief to Address State Insurance Commissioners on NYS Cyber Regulation New York State Department of Financial Services Superintendent Maria T. Vullo is scheduled to discuss the state’s new “first in the nation” cybersecurity regulation later this week at the National Association of Insurance Commissioners annual meeting in Denver. The New York cyber regulation – which went into effect on March 1, 2017 – requires financial... More
  • Digital Divide Deepens: Tech Community Backs Second Circuit in Clash with Magistrates over Reach of U.S. Warrants The technology community took aim at a recent federal magistrate’s ruling that ordered Google Inc. to comply with search warrants seeking customer emails stored on servers abroad, calling the decision “an impermissible extraterritorial application of U.S. law.” In rejecting a recent federal appeals court decision in a similar case in favor of Microsoft Corp., U.S.... More