SCC

How to Comply With the EU’s New SCC Framework

Since the Schrems 2.0 decision, any organization involved in the international transfer of personal data between the EU and America has been eagerly awaiting a new set of Standard Contractual Clauses (SCCs). In short, the SCCs previously used for such transfers were written before the implementation of the EU’s General Data Protection Regulation (GDPR), so…
Read More
Ransomware

U.S. Government Releases Tools for Fighting Ransomware

The U.S. Department of Homeland Security, in conjunction with the U.S. Department of Justice, launched a new one-stop hub for ransomware guidance on July 15. The hub is designed to help the public and private sectors deal with the rising threat of ransomware, writes JD Supra. The hub includes resources for private and public organizations,…
Read More
CISA

Breaking Down CISA’s “Bad Practices” Guidance

Many cyberattacks are a product of easily preventable mistakes. The Cybersecurity and Infrastructure Security Agency (CISA) has sought to remedy this paradigm with a long-running list of best practices that’s offered organizations frameworks for important cybersecurity functions such as training, risk management, and incident response. Now, to raise awareness and put an end to certain avoidable…
Read More
Cfpb And Fintech

Why Fintech Companies Want to be Regulated by the CFPB

It’s unusual to see an industry making a formal request to be regulated, but that’s exactly what fintech data aggregators are asking of the Consumer Financial Protection Bureau (CFPB).  Companies like Plaid and Robinhood have reasoned that more oversight by the CFPB comes with access to more consumer data–which in turn would allow fintech companies…
Read More

At Last: US Proposes Federal Data Privacy Law

At long last, a comprehensive federal data privacy bill has been introduced in the US legislature by Representative Suzan DelBene (D-Washington). Known at the Information Transparency and Personal Data Control Act (ITPDCA) ensures the protection of “our most sensitive personal information including financial, health, genetic, biometric, geolocation, sexual orientation, citizenship and immigration status, social security…
Read More

How to Use New CSBS Cybersecurity Examination Tool

Any nonbank institution looking to protect against, mitigate and respond to cybersecurity threats should take advantage of the Conference of State Bank Supervisors’ (CSBS) new cybersecurity examination tool.  Unveiled during the Nationwide Multistate Licensing System Annual Conference in February, the resource is designed for state regulators to use during examinations, and for organizations to self-evaluate…
Read More

Minnesota Proposes its Own Version of CCPA

Ever since the California Consumer Privacy Act (CCPA) set the tone for state-level privacy laws, more and more states have followed suit. At the start of the year, Minnesota proposed its own data privacy bill–and yes, it’s heavily influenced by CCPA. The bill, known as HF-36,has been sent for referral to the Committee on Commerce,…
Read More

2020 News in Review

Week Ending December 28  ICO Warns SolarWinds Victims to Report Breaches  The United Kingdom’s Information Commissioner’s Office (ICO) has issued a warning to organizations compromised by the SolarWinds breach. The breach, which was carried out by Russian hackers, affected more than 18000 organizations worldwide. ICO requires UK data controllers subject to NIS regulations to report…
Read More

ADCG Launches Data Privacy Law Comparison Tool

In 2018, the European Union launched its landmark data privacy law, the General Data Protection Regulation (GDPR). What followed can only be described as a wave of data privacy laws that swept the globe. Legislators from California to Brazil, to New Zealand have passed some form of data privacy law with the potential to impact…
Read More
Back To Top