Follow

Privacy & Security Law Blog Blog

Articles: 1-10 of 413

OMWBE Announces New Public Works Small Business Enterprise Certification

USA - February 26 2024 Recent changes in legislation regarding Washington's Small Works Roster laws have resulted in a new certification, Public Works Small Business…

Old Rule, New Tricks: HHS Finalizes Most Substantial Changes to Substance Use Disorder Confidentiality Rule in Decades

USA - February 20 2024 The long-anticipated final rule addressing substance use disorder (SUD) records at 42 C.F.R. Part 2, commonly referred to as Part 2, is here. The…

LEAP, Don't Run, to Make this YEAR's Deadline: HIPAA Small Breach Notifications Due February 29

USA - February 15 2024 February 29, 2024, is the date by which HIPAA-covered entities must notify the U.S. Department of Health and Human Services Office for Civil Rights…

New Jersey Governor Signs Comprehensive Privacy Law

USA - January 22 2024 On January 16, 2024, New Jersey Governor Phil Murphy signed into law Senate Bill 322 ("the Act"), making New Jersey the fourteenth state to enact a…

FCC's Expansive New Rules Prohibiting "Digital Discrimination" in Broadband Access

USA - December 20 2023 On November 20, 2023, as required by Section 60506 of the Infrastructure Investment and JOBS Act of 2021 (Infrastructure Act), 47 U.S.C. § 1754, the…

HHS Reveals Strategy for Addressing Healthcare Sector Cybersecurity

USA - December 15 2023 The U.S. Department of Health and Human Services ("HHS") issued a concept paper describing its overarching strategy to address healthcare…

DOJ, FBI Issue Guidance for Public Companies Seeking to Delay Disclosure of Material Cybersecurity Incidents

USA - December 14 2023 As we discussed in our prior blog post, the Securities and Exchange Commission (SEC) recently finalized its Cybersecurity Risk Management, Strategy…

Automated Decisionmaking Technology in California: New Rules Would Impose Transparency, Notice, and Consumer Opt-Out Obligations on Businesses

USA - December 7 2023 On November 27, 2023, the California Privacy Protection Agency (CPPA) released draft regulations mandating notice, opt-out, and information access…

CISA, UK NCSC, and 17 Other Countries Issue Landmark Joint Guidelines for Secure AI System Development

United Kingdom, USA - December 4 2023 The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the UK National Cyber Security Centre (UK NCSC), along with partner agencies…

CISA Releases Revised Draft of Secure Software Development Self-Attestation Form

USA - November 30 2023 The Cybersecurity and Infrastructure Security Agency (CISA) has released a revised draft of its Secure Software Development Attestation Common Form…