Providing timely updates and perspectives on current events, legislation, regulatory enforcement, and a myriad of other topics that pertain to the collection, use, disclosure, and protection of data.
U.S. and E.U. Reach New Trans-Atlantic Data Flow Agreement To Replace Privacy Shield.
While the announcement is short on details, once in place, U.S.-based. entities will be able to use the new agreement to comply with the GDPR’s cross-border data transfer requirements.
New Critical Infrastructure Cybersecurity Implementing New Breach Notification Requirements Signed into Law.
The new law will require critical infrastructure entities to report certain covered cybersecurity incidents to government agencies within 72 hours; ransomware payments within 24 hours.
Amended Japanese Privacy Law Creates New Categories of Regulated Personal Information and Cross-Border Transfer Requirements.
The amended law comes into effect in April and covers new categories of personal information, including personal-related information and sensitive personal information.