• |

    Feb. 8, 2023

AI Governance Gets Real: Core Compliance Strategies

In the millions of sentences recently published commenting on ChatGPT and the other fun AI platforms that generate images and text, one pattern is obvious: companies must undertake governance to ensure their adoption of AI is responsible. This article, the second in a two-part series, presents top priorities and other tips for creating AI compliance measures from front-line (human) practitioners, with commentary from experts at IBM, the AI Responsibility Lab and PwC, and findings from an Accenture report. It also discusses the brand-new market for automated AI governance platforms. Part one provided tips from an AI chat provider about countering AI risks and creating a governance culture for AI. See “Takeaways From the New Push for a Federal AI Law” (Oct. 26, 2022).  

Data Breaches and the Private Credit Market: Post-Breach Considerations

In the private debt market, it is important for lenders to consider the impacts of increasingly sophisticated and financially impactful data breaches. A primary concern for lenders is that a borrower will expend capital addressing such liabilities that could otherwise be used to service their debt and/or to grow the enterprise, potentially resulting in financial defaults. In this two-part guest article series, Proskauer partners Ryan P. Blaney, Bharat Moudgil and Evan Palenschat discuss considerations to prevent and mitigate the effects of a borrower’s cyber incident. Part one discussed the cost of breaches, why vigilance is urgent and proactive steps to take to assess a borrower’s preparedness. This second part covers how to prepare for and address a borrower’s breach. See “Privacy and Security Due Diligence in M&A Transactions: Going Beyond the Questionnaire” (Jan. 19, 2021).

How to Comply With the CPRA’s Data Minimization Standards

When the California Privacy Rights Act (CPRA) took effect at the start of this year, it introduced general data minimization obligations. With these new requirements, among other tasks, companies will need to continually evaluate their data collection practices and determine the purposes for which data is collected and processed. In a recent Women in Cyber webinar, Alston & Bird partners and in-house counsel at Hitachi Energy and TransUnion offered key considerations for implementation of new CPRA requirements, and discussed the potential regulatory risks for non-compliance. See “CPRA Draft Regulations: Essential Takeaways and 10 Actions to Take Now” (Jul. 13, 2022).

Eckert Seamans Strengthens Cybersecurity and Privacy Practice

Eckert Seamans has added Elizabeth Wilson as a senior attorney in the firm’s cybersecurity, data protection and privacy practice in Philadelphia. She joins from Credit Suisse Securities (USA) LLC.

Most-Read Articles

 

 

Webinar on Compliant International Data Transfers

Listen here to our discussion with our colleagues at Ethos Privacy, which took place on March 1, 2022, on how to approach international data transfer challenges. 

Webinar on Getting a Handle on Vendor Contracts

A recording of the March 10 webinar can be accessed here

Cybersecurity Resolutions for 2021

In this quick take video, we talk about some of our cybersecurity resolutions for 2021.

Facial Recognition Concerns

In this short video, we discuss the privacy and bias concerns with facial recognition technology.

Planning for the Return to Work 

We discuss a few return-to-work privacy issues in this short video.

ACR and CSLR Spring Update 2020

The Senior Editors of the Anti-Corruption Report and the Cybersecurity Law Report recently teamed up to present an update on the trends and hot topics in the anti-corruption, cybersecurity and data privacy spaces since the beginning of the year and what the publications will be focusing on in the coming months. A complimentary download of the webinar is available here.

Upcoming Webinar: Companywide Work From Home - Cybersecurity and Privacy Best Practices

Please join us on Monday, March 23, 2020, from 12:00 p.m.- 12:30 p.m. EDT for a complimentary webinar discussing the cybersecurity and privacy challenges the shift to remote working has created and how to overcome them. Registration information for the webinar is here

Upcoming Webinar to Explore Best Practices for Alternative Data Use

Please join us on Wednesday, January 15, 2020, at 11:00 a.m. EST for a complimentary webinar hosted by our sister publication, the Hedge Fund Law Report, discussing issues relating to the use of alternative data by private fund managers. To register for the webinar, click here.

Upcoming HFLR/CSLR Webinar to Explore Strategies and Tactics for Conducting an Effective Tabletop Exercise

Please join the Hedge Fund Law Report and the Cybersecurity Law Report on Tuesday, July 30, 2019, at 1:00 p.m. ET for a complimentary webinar discussing the strategies and tactics companies can employ to conduct an effective tabletop exercise. GCs and CCOs are encouraged to invite their CISOs and CTOs to join as well. The webinar will be moderated by Shaw Horton, Associate Editor of the Hedge Fund Law Report, and will feature Luke Dembosky, partner at Debevoise, John “Four” Flynn, chief information security officer at Uber, and Jill Abitbol, Senior Editor of the Cybersecurity Law Report. Registration for the webinar is available here.

Anti-Corruption Webinar: How HPE Is Using Its New T&E Tool to Generate Compliance Metrics

Measuring the effectiveness of a compliance program can be tricky, but some companies are finding ways to use their existing internal controls to generate useful data. Join our sister publication the Anti-Corruption Report (ACR) for a complimentary webinar that explores Hewlett Packard Enterprises’ new travel-and-entertainment-approval tool. On Wednesday, March 27, 2019, from 1:00 p.m. to 2:00 p.m. EDT, the ACR’s Megan Zwiebel will interview Becky Rohr, vice-president of anti-corruption and global trade at Hewlett Packard Enterprises, about how they are using their T&E tool to measure and improve compliance. Registration information is here.