Blog Archives

Understanding the Colorado AI Act

The Colorado AI Act, set to take effect on February 1, 2026, introduces new consumer protection regulations for AI systems used by Colorado residents. It imposes disclosure requirements for public-facing AI systems and stricter obligations for high-risk AI systems –

Tagged with: , ,
Posted in Artificial Intelligence, Legislation

Statement of Work Can Make or Break Discoverability of Data Breach Report

A recent decision from a federal court in Pennsylvania highlights the importance of a carefully crafted statement of work (“SOW”) when commissioning an investigative report in response to a data security breach. A convenience store chain recently learned this lesson

Posted in Data Breach, Discovery, Litigation

Does the CCPA Apply to Financial Institutions?

Despite the global pandemic, the California Attorney General will begin enforcing the California Consumer Privacy Act on July 1 as planned, so even in this new work-from-home environment, businesses must continue to work towards compliance and resolve any open issues.

Tagged with: , , , , , ,
Posted in CCPA, Legislation, Privacy, Regulations

Cybersecurity Best Practices in the Remote-Working Environment

In the wake of the COVID-19 crisis, much of the workforce has shifted to working remotely, with many workers operating out of makeshift “offices” they created in their homes with little or no warning. Along with this remote work comes

Tagged with: , , , , , ,
Posted in Data Security, Policies and Procedures, Privacy, Uncategorized

Eight Best Practices for Avoiding Data Breaches

As data breaches are on the rise, the old adage rings true: it’s not a question of if, but when. More companies are experiencing crippling breaches and the statistics are alarming:  According to IBM Security’s Cost of a Data Breach

Tagged with: , , , ,
Posted in Data Breach, Data Security, Policies and Procedures, Standards

Recent Decision Sends Companies Rushing to Review Browsewrap Agreements

A California federal court recently held in Rushing v. Viacom, Inc. that an arbitration provision in Viacom’s End User License Agreement (“EULA”) was one click shy of enforceability, and denied the company’s motion to dismiss claims against it pending arbitration.

Tagged with: , , ,
Posted in Litigation

Anthem Agrees to Record Data Breach Settlement

In the wake of the largest U.S. health care data breach in history, Anthem, Inc., has agreed to pay $16 million to the Office for Civil Rights, which is a record settlement for alleged HIPAA violations. According to the Department

Tagged with: , , , , , ,
Posted in Cyberattack, Data Breach, Data Security, HIPAA, OCR

Technical FACTA Violation Insufficient to Confer Standing

A federal court in Texas cut short a putative class action alleging violation of the truncation requirement under the Fair and Accurate Credit Transactions Act (FACTA), sending a clear message to plaintiffs that minor inconvenience flowing from a procedural violation

Tagged with: , , , , ,
Posted in Litigation, Privacy

Updated SEC Guidance Highlights Importance of Solid Cybersecurity Policies and Procedures

The Securities and Exchange Commission (“SEC” or “Commission”) has given public companies a heads up on where the Commission is setting its sights in the ever-developing world of cybersecurity. Here’s what you need to know, and what you need to

Tagged with: , , , , , ,
Posted in Data Security, Privacy, Regulations

EU’s New Privacy Law—What You Need to Know

The European Union (EU) Parliament’s new data privacy law, known as the General Data Protection Regulation (GDPR), is set to become enforceable in all EU member states on May 25, 2018, just six months from now. The GDPR replaces the

Tagged with: , , , , , , ,
Posted in Data Security, Privacy, Regulations, Standards
About Cyber Law Monitor
In the new digital world, individuals and businesses are almost entirely dependent on computer technology and electronic communications to function on a daily basis. Although the power of modern technology is a source of opportunity and inspiration—it also poses huge challenges, from protecting privacy and securing proprietary data to adhering to fast-changing statutory and regulatory requirements. The Cyber Law Monitor blog covers privacy, data security, technology, and cyber space. It tracks major legal and policy developments and provides analysis of current events.
Subscribe For Updates

cyberlawmonitor

Cozen O’Connor Blogs