Jim Pastore – Page 2 – Debevoise Data Blog

Cybersecurity

A New Era of FTC Privacy and Cybersecurity Oversight: Top Ten Things Companies Should Know When Assessing FTC Compliance and Exposure

By: Luke Dembosky, Avi Gesser, Ted Hassi, Jim Pastore, Paul D. Rubin, Johanna Skrzypczyk, Christopher S. Ford, Leah Martin and Melissa Runsten January 14, 2022

Companies developing Federal Trade Commission (“FTC”) compliance programs, or under investigation by the FTC’s Bureau of Consumer Protection, should be aware of significant developments impacting the Commission’s regulatory authority and…

Announcement

Debevoise Authors 2022 Edition of the PLI Privacy Law Answer Book

By: Luke Dembosky, Jeremy Feigelson, Jyotin Hamid, Satish Kini, Henry Lebowitz, Maura Kathleen Monaghan, David A. O'Neil, Jim Pastore, David Sarratt, Jeffrey P. Cunard, Christopher Garrett, Kim Le, Tricia Bozyk Sherno, Johanna Skrzypczyk, Javier Alvarez-Oviedo, HJ Brehmer, Frank Colleluori, Josie Dikkers, Martha Hirst and Alexandra Mogul December 1, 2021

The Data Strategy and Security team at Debevoise & Plimpton LLP has authored the 2022 edition of the Privacy Law Answer Book (Practising Law Institute, 2021), a user-friendly guide to…

Cybersecurity

Six Quick Cybersecurity Takeaways from SEC Speaks 2021

By: Luke Dembosky, Jeremy Feigelson, Avi Gesser, Jim Pastore, Charu Chandrasekhar, HJ Brehmer and Matthew C. Rametta October 14, 2021

On October 13, the annual Securities and Exchange Commission Speaks seminar concluded with presentations from the Examination, Enforcement, and Investment Management divisions. As SEC regulated entities (including publicly traded companies,…

Regulation

China Passes the Personal Information Protection Law

By: William Y. Chua, Luke Dembosky, Jeremy Feigelson, Avi Gesser, Edwin Northover, Jim Pastore, Emily Lam, Philip Rohlik, Johanna Skrzypczyk and Tingting Wu October 11, 2021

On August 20, 2021, China’s Standing Committee of the National People’s Congress passed the Personal Information Protection Law (“PIPL”).1 The PIPL will take effect on November 1, 2021.2 A breakdown…

CCPA

More Privacy and Cyber Requirements Coming to California: Privacy Enforcer Invites Public Comment on New Rulemaking

By: Jeremy Feigelson, Avi Gesser, Jim Pastore, Christopher S. Ford and HJ Brehmer September 17, 2021

Last week, the California Privacy Protection Agency (the “Agency”) invited public comment on its preliminary rulemaking. As previously discussed, the California Privacy Rights Act (“CPRA”) established the Agency and tasked…

Enforcement

The Latest Round of SEC Cybersecurity Enforcement Actions Targets MFA Deficiencies, Inadequate Policies, and Misleading Breach Notifications

By: Avi Gesser, Jim Pastore and Mengyi Xu September 1, 2021

On August 30, 2021, the SEC filed settled enforcement actions against three groups of broker-dealers and investment advisers for failing to protect confidential customer information in violation of Rule 30(a)…

CCPA

Key Takeaways from the First Year of CCPA Enforcement

By: Jeremy Feigelson, Jim Pastore, David Sarratt, Johanna Skrzypczyk, Christopher S. Ford and HJ Brehmer July 26, 2021

On July 19, 2021, California Attorney General Rob Bonta announced his first-year enforcement update on the California Consumer Privacy Act (“CCPA”), and unveiled a tool to help the Attorney General’s…

Automated Decision Making

The Supreme Court TransUnion Case: Part 2—What It Means for Efforts to Defeat Class Certification?

By: Mark P. Goodman, Maura Kathleen Monaghan, Jim Pastore, Jacob W. Stahl and Adam Aukland-Peck July 13, 2021

This is Part 2 of a two-part article on the recent U.S. Supreme Court TransUnion decision. In Part 1, we discussed the implications of the decision for standing in cyber…

CCPA

Seven Tips for Reducing CCPA Litigation Risks – Lessons from the First 18 Months

By: Jeremy Feigelson, Avi Gesser, Jim Pastore, Johanna Skrzypczyk, Christopher S. Ford, Alexandra P. Swain and HJ Brehmer June 22, 2021

Since the implementation of the California Consumer Privacy Act (“CCPA”) 18 months ago, more than 75 lawsuits have been filed seeking damages using the Act’s private cause of action. The CCPA…

CCPA

Quick Takeaways from the California Privacy Protection Agency’s First Public Meeting

By: Jeremy Feigelson, Avi Gesser, Jim Pastore, Johanna Skrzypczyk and HJ Brehmer June 17, 2021

On Monday, June 14, 2021, the Board of the California Privacy Protection Agency (“Agency”) hosted its first inaugural public meeting. As discussed in a prior posting, the California Privacy Rights…