Category: Data Security
2018 Compliance and Privacy Change – Year in Review
Compliance & Privacy Change: Video of panel discussion SmartEdgeLaw took part in at end of 2018 at NYC Javits Center finally dropped. “Compliance and Privacy Change: 2018 has seen new compliance and privacy changes, specifically with the introduction of GDPR and also with the new California consumer privacy act. How can businesses deal with these […]
Webinar – 2019 Privacy, Compliance and Risk Management Strategies for Infosec Professionals
Please join SmartEdgeLaw Attorney Richard Santalesa and colleagues for a January 31 webinar covering “2019 Privacy, Compliance and Risk Management Strategies for Infosec Professionals” Information and registration are at: http://www.infosecurity-magazine.com/webinars/2019-privacy-compliance-risk/ Description: 2018 saw a number of new privacy and security compliance acts introduced, including the GDPR, the NIS Directive and California’s Consumer Privacy Act (CCPA), […]
Annual Cryptocurrency Year in Review
SmartEdgeLaw’s founder Richard Santalesa recently provided his comments and thoughts in a Thomson Reuters’ 2018 Year in Review webinar covering cryptocurrency. The past year was a crazy up-and-down roller coaster on the crypto and blockchain front… and 2019 promises to be even more active. We’ll provide the link when TR releases.
Record HIPAA Violation Settlement – $16 million
Think HIPAA fines aren’t serious for violations of security and privacy rules around Protect Health Information? You may want to think again. Here’s the headline from a story out today: “Anthem Mega-Breach: Record $16 Million HIPAA Settlement“, which links to our friends at Gov InfoSecurity https://www.govinfosecurity.com/anthem-mega-breach-record-16-million-hipaa-settlement-a-11622 Though many enter into HIPAA/HITECH-driven Business Associate Agreements on a near […]
ABA Journal Quotes SmartEdgeLaw Group on Cybersecurity in Law Firms
Founding attorney, Richard Santalesa, is quoted in the Sept. 2018 ABA Journal about cybersecurity in law firms. The legal profession as a whole has lagged behind other segments in keeping its digital house locked down #cybersecurity #infosec #ABAJournal #datasecurity via ABA Journal http://www.abajournal.com/…/law_firms_cybersecurity_awarene…
Fairfield County Business Journal Profiles SmartEdgeLaw Group
We’re proud to be featured in the Fairfield County Business Journal. Our practice is tech-focused, reality-driven and above all embrace that legal is here to deliver solutions and recommendations not road blocks. Our firm works throughout CT and NYC and is constantly developing new approaches to meet your legal needs. Westport attorney takes a legal […]
SmartEdgeLaw Quoted on NYDFS Final Cybersecurity Regulations
Attorney Richard Santalesa was quoted on the time and deadlines coming for entities affected by newly enacted New York State Dept of Financial Services CyberSecurity Regs, which went into effect on March 1, 2017 following two rounds of drafts and public comment. The article in SecurityIntelligence, New York State Codifies Financial Cybersecurity Regulations, available here https://securityintelligence.com/news/new-york-state-codifies-financial-cybersecurity-regulations/, […]
FTC Issues New Data Breach Response Guidance For Businesses
As the de facto federal agency policing privacy and data breaches nationally, when the Federal Trade Commission (“FTC”) speaks on such matters, it’s generally wise to listen. Earlier this week the FTC issued a new, 16-page, business-oriented Guide (Data Breach Response: A Guide for Business,) along with accompanying short video on what to do (and […]
New Cloud Computing Guidance From Health & Human Services’ OCR
The digital world has migrated to the Cloud, on both personal and business levels. But for “covered entities” and “business associates” subject to the Health Insurance Portability and Accountability Act regime, better known by the moniker of “HIPAA”, many CE and BA’s must often determine how (and whether) they can take advantage of cloud computing while […]
Proposed cybersec regulations for New York financial institutions have a broad reach
As written by SmartEdgeLaw Group Attorney Richard Santalesa, in the September 30, 2016 IAPP Privacy Tracker and Daily Dashboard – at https://iapp.org/news/a/proposed-cybersec-regulations-for-new-york-financial-institutions-have-a-broad-reach/ Proposed cybersec regulations for New York financial institutions have a broad reach Richard Santalesa, CIPP/US Privacy Tracker | Sep 30, 2016 New York state’s long-awaited Cybersecurity Regulations For Financial Services Companies, issued by […]
Cybersecurity Regulations Issued by NYS Dept of Financial Services
New York State’s long-awaited Cybersecurity Regulations for financial institutions were released last week by the New York State Department of Financial Services (“NYDFS”) for a 45-day public notice and comment period, starting Sept 28, 2016, after which the Regs will go into effect on January 1, 2017, unless modified, as codified at 23 NYCRR Part […]
1+ Billion Records Exposed So Far in 2016
With Labor Day over and summer now fading into memory, it’s the perfect time to take a fresh look at your data and information security, privacy and compliance postures. And to review fresh lessons from what 2016 has served up as to data breaches and incidents in the first six months. Background Earlier this year, […]
EU-US Privacy Shield Goes Into Effect
It’s certainly been a very busy past eight months, even since the EU-US Safe Harbor was declared invalid back in October 2015 by the European Court of Justice. Without re-hashing events since then (suffice to say it’s been a long and winding road), the EC-adopted Privacy Shield went into effect yesterday (per the EC Press […]
Is this the Definitive Cybersecurity Guide? NYSE Guide for Directors & Officers
The following post by SmartEdgeLaw Group attorney, Richard Santalesa, was originally published Oct. 27, 2015 at the International Association of Privacy Professionals’ Privacy Perspectives website. Is this the Definitive Cybersecurity Guide? While many companies come up short on their cybersecurity programs or ability to safeguard data privacy, one area where no gap exists is in the […]
