Examining Materiality and Cybersecurity Incidents: Practical Tips for Implementing the New SEC Rules

Publicly traded companies have tangled with the question of when a cybersecurity incident should be disclosed to the public and investors. In a bid to add clarity to the topic, the U.S. Securities and Exchange Commission (SEC) released new rules… Read more

October 16, 2023 | Cybersecurity & Data Privacy

Beth Waller Shares 4 Legal Surprises You May Encounter Following a Cybersecurity Incident

By Elizabeth Burgin Waller

In an article published on Thursday, September 28 on DarkReading.com, WRVB Cybersecurity & Data Privacy Chair Beth Waller outlines four legal surprises you may encounter after a cybersecurity incident. Most security professionals know the parade of problems that emerges after… Read more

October 2, 2023 | Cybersecurity & Data Privacy

Associate Phillip Harmon Achieves Prestigious CIPP Credential

On Friday, September 15, WRVB cybersecurity and data privacy attorney Phillip Harmon passed the Certified Information Privacy Professional exam (CIPP-US). Administered by the International Association of Privacy Professionals, CIPP has been recognized as the global preeminent credential in the business… Read more

September 18, 2023 | News

White House “Voluntary” AI Pledge from Big Tech Signals Business Need for AI Framework

By Ross Broudy

Does your business have a framework to ensure safe, secure, and trustworthy artificial intelligence use by employees? Although federal law does not require businesses to have an AI framework, on July 21, 2023, seven leading AI companies, voluntarily pledged to… Read more

July 31, 2023 | Cybersecurity & Data Privacy

FTC Opens Consumer Protection Investigation of OpenAI, Creator of ChatGPT

By Jonathan V. Gallo

The Investigation The Federal Trade Commission (FTC) recently opened an investigation into OpenAI, creator of ChatGPT, to determine whether the artificial intelligence company violated consumer protections laws. According to the Civil Investigative Demand (CID) issued by the FTC and recently… Read more

July 14, 2023 | Cybersecurity & Data Privacy

Beth Waller Comments on Technology Limitations for Virginia’s New Age Verification Laws

In a Virginia Mercury article published on June 29, WRVB Cybersecurity & Data Privacy Chair Beth Waller chimes in on the technology limitations and privacy laws that could make it challenging for adult content websites to use proper age and… Read more

July 10, 2023 | Cybersecurity & Data Privacy

Jonathan Gallo Comments on Recent Law Firm Cyberattacks on DarkReading.com

In an article published on DarkReading.com on June 26, WRVB cybersecurity and data privacy attorney Jonathan Gallo comments on the recent surge of cyberattacks on law firms. According to the recent cyber threat report for the UK legal sector published… Read more

June 29, 2023 | Cybersecurity & Data Privacy

My Health, My Data Act: Washington State’s New Health Data Privacy Law Has a Nationwide Reach

By Elizabeth Barry Heddleston, Ross Broudy

Washington state’s My Health, My Data Act (the Act), signed into law in April 2023, is a broad health data privacy law designed to protect consumer health data that falls outside the scope of HIPAA, such as health-related data collected… Read more

May 31, 2023 | Cybersecurity & Data Privacy | Health Law

Beth Waller Echoes SolarWinds CISO on Need for Clarity on Cybersecurity Incident Disclosure, DarkReading.com

In an article published on Thursday, May 25 on DarkReading.com, WRVB Cybersecurity & Data Privacy Chair Beth Waller chimed in on the importance of a well-coordinated response to cybersecurity incidents. As the article suggests, failure to disclose incidents appropriately can… Read more

May 26, 2023 | Cybersecurity & Data Privacy

Meta Fined €1.2 Billion in Facebook Data Privacy Case: Should US Companies Be Concerned?

By Jonathan V. Gallo, John Pilch

It has been a long time coming, but the other shoe has finally dropped. Ireland’s Data Protection Commission (DPC) fined Meta Platforms Ireland (parent of Facebook Ireland) €1.2 billion, the highest fine to date under the European Union’s General Data… Read more

May 23, 2023 | Cybersecurity & Data Privacy

Cybersecurity & Data Privacy