Avi Gesser – Page 5 – Debevoise Data Blog

Artificial Intelligence

Regulatory Risks for Not Disclosing Trading Algorithms – Five Takeaways from the SEC’s $170 Million Settlement with BlueCrest Capital

By: Avi Gesser, Robert Kaplan, James Amler, Anna Gressel, Steven Tegrar and Valerie Zuckerman January 12, 2021

Regulators in the United States and abroad are showing increasing interest in pursuing enforcement actions against companies that deploy artificial intelligence, machine learning, or algorithmic-based applications (“AI”) in a way…

Cybersecurity

Banking Agencies Propose 36-Hour Data Breach Reporting Rules for Significant Incidents

By: Jeremy Feigelson, Avi Gesser, Jim Pastore, Luke Dembosky, Satish Kini, David Portilla, Gregory Lyons, Zila Reyes Acosta-Grimes, Courtney Bradford Pike, Alex Henry, Alexandra Mogul and Amy Aixi Zhang January 12, 2021

On January 12, 2021, the Federal Deposit Insurance Corporation (“FDIC”), the Office of the Comptroller of the Currency (“OCC”) and the Federal Reserve Board (“FRB”) (together the “Agencies”) published a…

Cybersecurity

The Rise of DDoS Ransom Attacks – How to Prevent and Respond

By: Luke Dembosky and Avi Gesser December 17, 2020

We have recently written about the persistence of the four most common varieties of cyberattacks: Ransomware, Phishing, Business Email Compromises, and Credential Stuffing, as well as the increased regulatory scrutiny that companies face…

Enforcement

SEC Enforcement Highlights the Risks of Not Preserving Text/Chat Messages—Practical Tips for Aligning Policies with Practices to Reduce Risk

By: Avi Gesser, Julie M. Riewe, Jeff Robins and Chana Zuckier December 13, 2020

At many companies, employees are increasingly using non-business communication applications (“apps”) such as iMessage, WhatsApp and WeChat for business-related communications. This trend has likely accelerated in the COVID era, as…

Artificial Intelligence

Debevoise Discusses Corporate Board Supervision of AI at Athens AI Roundtable

By: Anna Gressel and Avi Gesser December 4, 2020

On November 16-17, 2020, Anna Gressel and Avi Gesser from Debevoise’s Data Strategy and Security Group joined AI thought leaders from around the globe at “The Athens Roundtable on Artificial Intelligence…

GDPR

For Companies Subject to the GDPR: Five Cybersecurity Takeaways from the ICO’s Ticketmaster Fine

By: Luke Dembosky, Jeremy Feigelson, Avi Gesser, Robert Maddox and Christopher Garrett November 24, 2020

EU authorities have understandably declined to put forward a single list of mandatory data security controls that apply to all companies subject to the GDPR. As a result, each new…

CCPA

Post-Election Privacy Law Prospects

By: Jeffrey P. Cunard, Luke Dembosky, Jeremy Feigelson, Avi Gesser, Jim Pastore, Frank Colleluori, Tigist Kassahun and Mengyi Xu November 4, 2020

California voters have approved the new California Privacy Rights Act (“CPRA”). The margin was 56% – 44% – comfortable, if significantly tighter than pre-election polling that showed CPRA winning in…

Artificial Intelligence

Webcast – Artificial Intelligence and the Insurance Sector – A Discussion with the Chair of the National Association of Insurance Commissioners (NAIC) Working Group on AI, Jon Godfread

By: Avi Gesser and Anna Gressel October 14, 2020

On October 13, 2020, Anna Gressel and Avi Gesser from Debevoise’s Data Strategy and Security Group, along with their special guest, Jon Godfread, North Dakota Commissioner of Insurance and Chair of…

Enforcement

Companies Face Increased Sanctions Risk for Making Ransomware Payments — Takeaways from the Latest OFAC and FinCEN Advisories

By: Luke Dembosky, Jeremy Feigelson, Avi Gesser, Satish Kini, Paul Rodel, David Sewell, Martha Hirst, Robert Maddox, Zila Reyes Acosta-Grimes and Mengyi Xu October 6, 2020

Earlier this year, we shared a list of 13 technical and nontechnical measures companies can adopt to mitigate the risks of ransomware attacks. With ransomware and other malicious cyber-related attacks…

CCPA

California Extends Key CCPA Exemptions for B2B and HR Data Until 2022

By: Jeremy Feigelson, Avi Gesser, Jim Pastore and Christopher S. Ford October 1, 2020

The business-to-business (“B2B”) and human resources (“HR”) exemptions to the California Consumer Privacy Act (“CCPA”) have been extended for a full year, and will now expire no sooner than January…