Mengyi Xu – Debevoise Data Blog

Artificial Intelligence

Board Responsibility for AI Risk Oversight

By: Charu Chandrasekhar, Avi Gesser, William Regner and Mengyi Xu August 17, 2023

On August 17, 2023, we published an article on Board Responsibility for AI Risk Oversight with Directors & Boards, covering: The promises and risks of AI adoption The rapidly evolving…

Artificial Intelligence

SEC Proposes Rule to Eliminate or Neutralize Conflicts of Interest in the Use of “Predictive Data Analytics” Technologies

By: Andrew J. Ceresney, Charu Chandrasekhar, Avi Gesser, Robert B. Kaplan, Marc Ponchione, Julie M. Riewe, Jeff Robins, Kristin Snyder, Matt Kelly, Gary Murphy, Sheena Paul, Jarrett Lewis, Catherine Morrison and Mengyi Xu August 14, 2023

On July 26, 2023, the U.S. Securities and Exchange Commission (“SEC”) issued proposed rules (the “Proposed Rules”) that would require broker-dealers and investment advisers (collectively, “firms”) to evaluate their use…

Regulation

SEC Adopts New Cybersecurity Rules for Issuers – Part 2 Key Takeaways

By: Charu Chandrasekhar, Luke Dembosky, Avi Gesser, Matthew Kaplan, Erez Liebermann, Benjamin R. Pedersen, Paul Rodel, Steven J. Slutzky, Matt Kelly, Mengyi Xu, Kelly Donoghue, John Jacob, Amy Pereira, Chris Duff and Ned Terrace August 7, 2023

On July 26, 2023, the SEC adopted long-anticipated final rules on cybersecurity risk management, strategy, governance and incident disclosure for issuers (“Final Rules”). We summarized the key obligations under the…

Cybersecurity

SEC Adopts New Cybersecurity Rules for Issuers

By: Charu Chandrasekhar, Luke Dembosky, Avi Gesser, Matthew Kaplan, Erez Liebermann, Benjamin R. Pedersen, Paul Rodel, Steven J. Slutzky, Matt Kelly, Kelly Donoghue, John Jacob, Amy Pereira, Chris Duff and Mengyi Xu July 28, 2023

On July 26, 2023, the SEC adopted the long-anticipated final rules on cybersecurity risk management, strategy, governance, and incident disclosure for issuers. The new rules are part of the SEC’s larger efforts focused…

Cybersecurity

A Late Winter Blizzard of SEC Cybersecurity Rulemaking: the Proposed BD Cybersecurity Rules and Expanded Reg S-P and Reg SCI Obligations

By: Luke Dembosky, Avi Gesser, Erez Liebermann, Marc Ponchione, Julie M. Riewe, Jeff Robins, Kristin Snyder, Charu Chandrasekhar, Sheena Paul, Suchita Mandavilli Brundage, Michael R. Roberts, Mengyi Xu and Ned Terrace March 20, 2023

On March 15, 2023, the U.S. Securities and Exchange Commission (the “SEC”) released a suite of proposed new rules (the “Proposed Rules”) that include: Proposed new cybersecurity rules for broker-dealers,…

Artificial Intelligence

The Challenges That AI Poses for Data Minimization

By: Avi Gesser, Mengyi Xu, Michael Pizzi and Jackie Dorward March 17, 2023

We have written several times about the need for companies to reduce the amount of data that they collect and to get rid of old data. Data minimization lowers the…

Cybersecurity

National Cybersecurity Strategy (Part 1): The White House Urges Private and Public Action

By: Luke Dembosky, Avi Gesser, Erez Liebermann, Jim Pastore, Michael R. Roberts, Mengyi Xu, Noah L. Schwartz, Stephanie Thomas, Jarrett Lewis and Jacob Hochberger March 16, 2023

On March 2, 2023, the White House Office of the National Cyber Director (“ONCD”) released the Biden Administration’s (the “Administration”) long-awaited National Cybersecurity Strategy (the “Strategy”), the first since the…

Artificial Intelligence

Risks of Overselling Your AI: The FTC is Watching

By: Avi Gesser, Erez Liebermann, Jim Pastore, Paul D. Rubin, Christopher S. Ford, Anna Gressel, Mengyi Xu and Melissa Muse March 6, 2023

On February 27, 2023, the FTC released guidance entitled “Keep Your AI Claims in Check” (“AI Claims Blog Post”), reminding companies that false or unsubstantiated claims about a product’s efficacy…

Announcement

Debevoise Authors 2023 Edition of the PLI Privacy Law Answer Book

By: Luke Dembosky, Avi Gesser, Jyotin Hamid, Satish Kini, Henry Lebowitz, Erez Liebermann, Maura Kathleen Monaghan, David A. O'Neil, Jim Pastore, David Sarratt, Jeffrey P. Cunard, Kim Le, Tricia Bozyk Sherno, Johanna Skrzypczyk, Michael R. Roberts, Michael Bloom, Fanny Gauthier, Corey Goldstein, Kyle Kysela, Hannah R. Levine, Linda Lin, Melissa Muse, Kate Saba, Noah L. Schwartz and Mengyi Xu January 23, 2023

The Data Strategy and Security team at Debevoise & Plimpton LLP has authored the Practising Law Institute’s 2023 edition of the Privacy Law Answer Book, a user-friendly guide to the laws and…

NYDFS

NYDFS Publishes Official Amendments to Its Cybersecurity Regulation (Part 2) – Answers to the Top Questions from Our Webcast

By: Avi Gesser, Erez Liebermann, Johanna Skrzypczyk, Caroline Novogrod Swett, Mengyi Xu and Jonathan Steinberg November 30, 2022

On November 9, 2022, the New York Department of Financial Services (the “NYDFS”) announced the publication of the official proposed amendments to its 2017 Cybersecurity Regulation 23 NYCRR 500 (the “Proposed Amendments”). The 60-day…