Privacy & Data Security Law Blog

Subscribe
Visit Blog
By: Winston & Strawn LLP

Blog Authors

Winston & Strawn LLP

Latest from Privacy & Data Security Law Blog

In the last week of May alone, the Investigation Bureau of Taiwan’s Ministry of Justice (“MOJ”) and local prosecutors from various districts raided the offices of 10 semiconductor, device, and display companies suspected of ties to mainland China, alleging illegal cross-strait recruitment of local engineering and managerial talent. The string of raids occurred in Taipei,

The SEC intends for the new rules to provide investors and other market participants with timely, informative, and consistent disclosure about cybersecurity incidents, cybersecurity risk management and governance practices, and cybersecurity expertise.The SEC has proposed new rules that would require companies to make significant disclosures relating to cybersecurity incidents and preparedness. Specifically, the new rules

With the passage and signing of the Utah Consumer Privacy Act (“UCPA”), Utah joins the ranks of California, Virginia, and Colorado in enacting a comprehensive data privacy law. The UCPA will officially go into effect on December 23, 2023, and largely mirrors existing data privacy regimes in the United States, with a few notable exceptions.With

The past 12 months witnessed the emergence of new comprehensive privacy laws in Virginia and Colorado, showing the continued appetite for consumer privacy protections in the United States. China passed a new privacy law, impacting multinational companies.Over the past 12 months, we witnessed two new comprehensive privacy laws in Virginia and Colorado, demonstrating the continued

California has enacted the Genetic Information Privacy Act (GIPA), the nation’s first privacy law specifically targeting the use of genetic information.California has enacted the Genetic Information Privacy Act (GIPA), the nation’s first privacy law specifically targeting the use of genetic information. The law targets direct-to-consumer genetic testing companies to provide—prior to collection of the sample—certain

The Biden Administration has signaled that it views national cybersecurity as an important enforcement priority.The Biden Administration has signaled that it views national cybersecurity as an important enforcement priority. In May 2021, President Biden signed an Executive Order on Improving the Nation’s Cybersecurity, stating that “the Federal Government must bring to bear the full

On August 30, 2021, the Securities and Exchange Commission (SEC) published a press release announcing that it has penalized eight investment advisory firms in three enforcement actions for failing to adopt written policies and procedures reasonably designed to safeguard customer records and information, in violation of Rule 30(a) of Regulation S-P (17 C.F.R. § 248.30(a))