Jim Pastore – Debevoise Data Blog

CCPA

Seven Tips for Reducing CCPA Litigation Risks – Lessons from the First 18 Months

By: Jeremy Feigelson, Avi Gesser, Jim Pastore, Johanna Skrzypczyk, Christopher S. Ford, Alexandra P. Swain and HJ Brehmer June 22, 2021

Since the implementation of the California Consumer Privacy Act (“CCPA”) 18 months ago, more than 75 lawsuits have been filed seeking damages using the Act’s private cause of action. The CCPA…

CCPA

Quick Takeaways from the California Privacy Protection Agency’s First Public Meeting

By: Jeremy Feigelson, Avi Gesser, Jim Pastore, Johanna Skrzypczyk and HJ Brehmer June 17, 2021

On Monday, June 14, 2021, the Board of the California Privacy Protection Agency (“Agency”) hosted its first inaugural public meeting. As discussed in a prior posting, the California Privacy Rights…

Cybersecurity

Effective Access Controls, Timely Breach Notification, and Other Takeaways from the Latest NYDFS Cyber Resolution

By: Luke Dembosky, Jeremy Feigelson, Avi Gesser, Jim Pastore, Johanna Skrzypczyk, Christopher S. Ford, Parker Eudy and Mengyi Xu April 15, 2021

On April 14, 2021, the New York State Department of Financial Services (the “DFS”) announced that its cyber enforcement action against National Securities Corporation (“National Securities”) has been resolved by…

Cybersecurity

The SEC’s Cybersecurity Priorities for Registered Investment Advisers – Looking Back to Anticipate the Road Ahead

By: Jim Pastore, Avi Gesser, Luke Dembosky, Jeremy Feigelson, Mengyi Xu and Tricia Reville March 11, 2021

Earlier this week, Debevoise published an overview of the SEC’s Division of Examination Priorities for 2021. Today, we’re taking a deeper dive into one aspect of those priorities: cybersecurity as it…

Cybersecurity

First Resolution by the DFS Under Its Cyber Rules Highlights the Risks of Inadequate Cyber Investigations and the Importance of Satisfying State Breach Notification Obligations

By: Luke Dembosky, Avi Gesser, Jim Pastore, Christopher S. Ford, Alexandra Mogul and Sarah Q. Smith March 8, 2021

Last year, we discussed the first enforcement action brought by the New York State Department of Financial Services (“DFS”), which involved charges against First American Title Insurance Company. That hearing…

Artificial Intelligence

Destruction Emerges as a Powerful Enforcement Measure for AI – FTC Requires Company to Delete Models Trained With Improperly Utilized Consumer Data

By: Jeremy Feigelson, Avi Gesser, Jim Pastore, Paul D. Rubin, Justin Ferrone, Anna Gressel and Melissa Runsten January 19, 2021

Introduction For those following emerging artificial intelligence (“AI”) regulations and enforcement closely, one issue of great interest is remedies. In particular: in what circumstances, if any, would regulators or courts…

Litigation

Court Chips Away at Privilege Protections for Cyber Forensic Reports

By: Jim Pastore, Luke Dembosky, Jeremy Feigelson, Avi Gesser, Corey Goldstein and Mengyi Xu January 14, 2021

On January 12, Judge James Boasberg of the U.S. District Court for the District of Columbia granted plaintiff Guo Wengui’s motion to compel production of a report (the “Report”)—and related…

Cybersecurity

Banking Agencies Propose 36-Hour Data Breach Reporting Rules for Significant Incidents

By: Jeremy Feigelson, Avi Gesser, Jim Pastore, Luke Dembosky, Satish Kini, David Portilla, Gregory Lyons, Zila Reyes Acosta-Grimes, Courtney Bradford Pike, Alex Henry, Alexandra Mogul and Amy Aixi Zhang January 12, 2021

On January 12, 2021, the Federal Deposit Insurance Corporation (“FDIC”), the Office of the Comptroller of the Currency (“OCC”) and the Federal Reserve Board (“FRB”) (together the “Agencies”) published a…

CCPA

California AG Unveils New Opt-Out Button for CCPA Compliance

By: Jeremy Feigelson, Jim Pastore, Christopher S. Ford, Anna Gressel, Alexandra P. Swain, Tigist Kassahun, HJ Brehmer and Frank Colleluori December 18, 2020

On December 10, 2020, California’s Attorney General formally announced a fourth round of proposed modifications to the AG’s regulations regarding the California Consumer Privacy Act (“CCPA”). These modifications include the…

CCPA

Post-Election Privacy Law Prospects

By: Jeffrey P. Cunard, Luke Dembosky, Jeremy Feigelson, Avi Gesser, Jim Pastore, Frank Colleluori, Tigist Kassahun and Mengyi Xu November 4, 2020

California voters have approved the new California Privacy Rights Act (“CPRA”). The margin was 56% – 44% – comfortable, if significantly tighter than pre-election polling that showed CPRA winning in…