Privacy & Security Law Blog

• DWT California Consumer Privacy Act Primer
• DWT’s Road Map to CCPA Compliance

• Healthcare Breach Charts
• The DWT HIPAA Audit Toolkits

• Department of Justice’s Cybersecurity Unit: White papers and other documents
• Executive Order on Maintaining American Leadership in Artificial Intelligence (Feb 11, 2019)
• Executive Order Enhancing the Effectiveness of Agency Chief Information Officers (May 15, 2019)
• Executive Order on Strengthening the Cybersecurity of Federal Networks and Critical Infrastructure (May 11, 2017)
• GAO: Technology & Science Homepage
• NIST Cybersecurity Framework
• The Communications Security, Reliability and Interoperability Council
• U.S. Small Business Administration Cybersecurity site
• Homeland Security Cybersecurity 
• Homeland Security: Cybersecurity and Infrastructure Security Agency (CISA)

• Summary of U.S. State Data Breach Notification Statues
• Copier Data Security: A Guide for Businesses
• FTC’s Data Security Guidance page
• FTC’s P2P File Sharing page
• FTC Protecting Personal Information page
• FTC Security Check: Reducing Risks to your Computer Programs

• European Union
  
  • Legislation & Guidance
    • Regulation (EU) 2018/1725 (“GDPR”)
    • e-Privacy Directive
    • Telecom Breach Notification Regulation
    • GDPR: Guidelines, Recommendations, Best Practices
    • A29 WP Opinion on Cloud Computing (Opinion 05/2012)
    • European Commission on Data Protection
    • DPO Corner
    • Privacy Shield

• Regulators and Authorities websites
  • European Data Protection Supervisor website
  • EDPB’s homepage
  • List of the DPAs and contact information

• Canada
• Office of the Privacy Commissioner of Canada website
• Personal Information Protection and Electronic Documents Act (PIPEDA)
• Canada Anti-Spam Legislation

• Mexico
• National Institute for Transparency, Access to Information and Personal Data Protection
• Federal Law for the Protection of Personal Data Held by Private Parties (english)
• Regulations to the Federal Law on the Protection of Personal Data Held by Private Parties (english)

• Singapore
• Personal Data Protection Commission website
• PDPA Legislation and Guidelines

In today’s world, where companies are collecting, using, and sharing personal information on an unprecedented scale, honoring consumers’ choices about how data is used and disclosed and securing personal data from unauthorized disclosure is critical. We have been pioneers in the dynamic area of privacy and security law, serving highly regulated industries, such as communications, healthcare and financial services, for decades. As privacy and information security requirements have evolved to extend beyond these historically regulated industries to apply to virtually every business organization, we have expanded our counseling to advise companies in other industry sectors, such as technology, media, entertainment, retail, advertising, and more.

Our core Privacy and Security team counsels clients regarding internal employee information, consumer-facing requirements associated with marketing and payments, protecting companies from cyber-attacks, cross-border data transfers, vendor management, due diligence in the context of mergers and acquisitions, and more.

This resource is intended to provide regular updates and commentary with respect to this multifaceted field, from a legal perspective. As detailed in the Disclaimer, we are not providing specific legal advice; for that, our firm can provide an array of legal services that may interest you. We hope to provide a one-stop source of important news and information about privacy and security for your perusal. Please bookmark us or subscribe to our RSS feed, and feel free to contact us if you have any comments or suggestions.