All eyes are on the DOJ Bulk Sensitive Data Rule (28 C.F.R. Part 202), and July 8, 2025, when the recently announced good-faith safe harbor expires. The rule, which the…
Debevoise’s Data Strategy and Security group recently assisted five leading financial services industry trade associations in preparing a joint rulemaking petition in response to the Securities and Exchange Commission’s (“SEC”)…
Debevoise & Plimpton LLP partners Luke Dembosky, Erez Liebermann and Jim Pastore have again been named to Cybersecurity Docket’s “Incident Response 50 List” for 2025. The list recognizes the “50…
On Tuesday, April 29, 2025 at 1:15 pm, Erez Liebermann will be moderating a panel at RSAC 2025 Conference to discuss the growing regulatory expectations around governance, including that from…
On Wednesday, April 30, 2025 at 2:25 pm, Erez Liebermann will be moderating a panel at RSAC 2025 Conference to discuss different approaches of private equity firms in evaluating cyber…
On Tuesday, April 29, 2025 at 9:40 am, Erez Liebermann will be moderating a panel at RSAC 2025 Conference to dive into the work that financial services companies, the government,…
On Thursday, April 24, 2025 at 9:00 AM ET, as a part of IAPP Global Privacy Summit 2025, Erez Liebermann will be moderating a panel of experienced in-house counsel and a…
On February 20, 2025, the SEC announced the creation of the Cyber and Emerging Technologies Unit (“CETU”) to focus on “combatting cyber-related misconduct and to protect retail investors from bad…
Introduction On December 20, 2024, the Federal Trade Commission (the “FTC”) finalized a consent agreement (“Consent Order”) with Marriott International, Inc. and its subsidiary Starwood Hotels & Resorts Worldwide LLC…
On December 19, 2024, the U.S. Department of Treasury (“Treasury”) released a report on The Uses, Opportunities, and Risks of Artificial Intelligence in the Financial Services Sector (the “Report”). The…