Vermont Enacts Nation’s First Data Broker Legislation
Recently, Vermont enacted legislation (H.764) that regulates data brokers who buy and sell personal information. Vermont is the first state in the nation to enact this type of legislation.
Oregon Amends Data Breach Notification Law
Oregon’s amended data breach notification law has new requirements, prohibits fees for security freezes and adds a specific notification timing requirement, Hunton Andrews Kurth explains.
Department of Energy Makes Energy Sector Cybersecurity Moves
The U.S. Department of Energy (“DOE”) Office of Electricity Delivery & Energy Reliability in May released its Multiyear Plan for Energy Sector Cybersecurity. Hunton Andrews Kurth explains.
Arizona Amends Data Breach Notification Law
Arizona recently amended its data breach notification law, which now features a 45-day breach notification requirement. Hunton Andrews Kurth explains.
Attacks Targeting Oil, Gas Sector Renew Cybersecurity Questions
Cyberattacks against a third-party platform used by an oil and gas pipeline trigger fresh questions about critical infrastructure security.
Alabama Data Breach Notification Law Activates June 1
Alabama is the final U.S. state to enact a data breach notification law. The Alabama Data Breach Notification Act of 2018 (S.B. 318), effective June 1, has these requirements.
Second Global GDPR Readiness Report: CIPL, AvePoint Findings
The second Global GDPR Readiness Report explores organizational preparedness for implementing the EU General Data Protection Regulation. Here are the findings.
Financial Stability Board to Develop International Cybersecurity Lexicon
The Financial Stability Board (“FSB”) is developing a common vocabulary of cybersecurity terms for the world’s top 20 economic powers, known as the G-20.
Mobile Device Security Patches, Software Updates: FTC Recommendations
FTC offers guidance for proper mobile device security patches and software updates. Hunton & Williams LLP summarizes the FTC advice.