Data Security
- Risk Mitigation
- Incident Response
- Litigation
Dec. 4, 2024
Checklist for Conducting Technical Privacy Reviews
Oct. 2, 2024
How to Manage AI Procurement: Five Steps
Sep. 18, 2024
How to Manage AI Procurement: Leadership and Preparation
Aug. 7, 2024
How Privacy Efforts Can Boost Revenue
Jul. 31, 2024
Challenges, Risks and Future of the CISO Role
Jun. 26, 2024
A Mock Cyber Incident Tabletop: Day Two and Beyond
May 15, 2024
Applying AI in Information Security
Apr. 17, 2024
AI Governance Strategies for Privacy Pros
Mar. 20, 2024
AI Drives Rise in Private Funds’ Use of Alternative Data
Jan. 24, 2024
Emerging Cyber Threats and Defenses
Jan. 10, 2024
Ten Cybersecurity Resolutions for 2024
Dec. 6, 2023
Dos and Don’ts for Employee Use of Generative AI
Nov. 22, 2023
Task 2: Vendor Onboarding
Nov. 22, 2023
Task 5: Audits
Nov. 15, 2023
Navigating NIST’s AI Risk Management Framework
Nov. 8, 2023
Understanding the Growing Use of PETs
Nov. 1, 2023
Checklist for Selecting Privacy Tech Solutions
Nov. 1, 2023
Compliance Challenges in Records Management
Oct. 4, 2023
Considerations for Managing Third-Party Cyber Risks
Sep. 27, 2023
The Good, Bad and Ugly of Summer’s Cyber Incidents
Aug. 30, 2023
Checklist for Framing and Assessing Third-Party Risk
Aug. 16, 2023
Why Companies Unintentionally Fail to Honor Opt-Outs
Aug. 16, 2023
Checklist for Framing and Assessing Third-Party Risk
Jul. 12, 2023
SEC Remains Focused on Off-Channel Communications
Jun. 14, 2023
Messaging Apps Come Under Increasing Regulatory Scrutiny
May 31, 2023
How CPOs Communicate Privacy’s Value to the Board
Mar. 1, 2023
Getting Used to Zero Trust? Meet Zero Copy
Feb. 8, 2023
AI Governance Gets Real: Core Compliance Strategies
Nov. 30, 2022
Understanding and Implementing Privacy Audits
Oct. 26, 2022
Takeaways From the New Push for a Federal AI Law
Sep. 14, 2022
Shaping the BIPA Landscape: Avoiding Liability
Aug. 10, 2022
Protecting Against Crypto Theft
Jul. 13, 2022
New AI Rules: Five Compliance Takeaways
Jun. 15, 2022
New AI Rules: NYC First to Mandate Audit
May 4, 2022
Effective Use of Privacy Impact Assessments
Jan. 26, 2022
Lessons From SolarWinds
Jan. 19, 2022
Privacy Resolutions for 2022
Jan. 12, 2022
Cybersecurity Resolutions for 2022
Dec. 15, 2021
Understanding Differential Privacy
Dec. 15, 2021
A Guide to Privacy Frameworks: Finding the Best Fit
Dec. 8, 2021
A Guide to Privacy Frameworks: Examining Options
Nov. 17, 2021
Data Localization: Cybersecurity Challenges Abound
Nov. 3, 2021
Data Localization: Laws Spread and Enforcement Rises
Oct. 27, 2021
IOSCO Issues Final Guidance on AI and Machine Learning
Sep. 22, 2021
Jacki Cheslow on IEEE’s Remote Program Assessment
Sep. 15, 2021
Essential Technology Contract Elements
Aug. 25, 2021
Privacy and Security Provisions in Vendor Agreements
Jul. 28, 2021
Incident Response in the Financial Services Industry
Apr. 28, 2021
AI Compliance Playbook: Understanding Algorithm Audits
Feb. 17, 2021
A Fake Zoom Invite Hack: Eight More Lessons
Feb. 10, 2021
A Fake Zoom Invite Hack: What Happened and Three Lessons
Jan. 20, 2021
Privacy Resolutions for 2021
Jan. 13, 2021
Cybersecurity Resolutions for 2021
Jan. 13, 2021
Checklist for IoT Security Audits
Nov. 4, 2020
A Guided Tour of Enterprise IoT Device Hazards
Jun. 17, 2020
The Current State and Future of AI Regulation
Apr. 8, 2020
Wide-Ranging Lessons From Notable Breaches in Q1
Apr. 1, 2020
When Do Force Majeure Clauses Excuse Performance?
Mar. 11, 2020
The Keys to Encryption: Legal and Regulatory Framework
Mar. 11, 2020
Privacy and Cyber Due Diligence in M&A Transactions
Feb. 12, 2020
Compliance Records Are a Strategic Gold Mine
Dec. 11, 2019
How to Handle E.U. Data Subject Access Requests
Dec. 11, 2019
Not Just GDPR: Examining the Other European Privacy Laws
Oct. 23, 2019
CFTC Issues $1.5-Million Fine After Phishing Attack
Sep. 11, 2019
Using “Red-Teaming” to Test and Improve Cyber Defenses
Jul. 17, 2019
Maine Enacts Sweeping Broadband Customer Privacy Law
Jun. 26, 2019
Preparing for the Latest SEC Cyber Sweeps
May 15, 2019
What Does It Mean to Be Technologically Competent?
Apr. 3, 2019
FCA Evaluates Firms’ Cyber Resilience
Mar. 13, 2019
Mitigating the Risks of Open-Source Software
Feb. 20, 2019
Fixing the Chinks in Companies’ Cyber Armor: Executives
Jan. 9, 2019
Ten Cyber and Privacy Resolutions for the New Year
Nov. 14, 2018
Negotiating SaaS Agreements
Oct. 10, 2018
Lessons From the SEC’s First Red Flags Rule Settlement
Sep. 26, 2018
Five Takeaways From the Fiserv Wake-Up Call
Mar. 28, 2018
Evaluating Cybersecurity Coverage in Light of the GDPR
Mar. 14, 2018
How Will the GDPR Affect Due Diligence?
Mar. 14, 2018
Developing an Effective Third-Party Management Program
Oct. 25, 2017
How to Outsource Vulnerability Assessments to Hackers
Sep. 13, 2017
Negotiating an Effective Cloud Service Agreement
Jun. 14, 2017
Navigating the Evolving Cyber Insurance Market
Jun. 14, 2017
How Internal Audit Can Improve Cybersecurity
May 31, 2017
Advice on Incorporating Cybersecurity in eDiscovery
May 17, 2017
Tracking Data and Maximizing Its Potential
Apr. 19, 2017
How to Ensure Cyber Risks Do Not Derail an IPO
Jan. 11, 2017
Ten Cybersecurity Priorities for 2017
Nov. 30, 2016
New NIST and DHS IoT Guidance Signal Regulatory Growth
Sep. 21, 2016
Staying Cybersecure Without Mobile Device Management
Aug. 24, 2016
Cybersecurity Due Diligence in M&A Is No Longer Optional
Jul. 20, 2016
Using Data Analytics to Combat Internal Cyber Threats
Jun. 8, 2016
Minimizing Class Action Risk in Breach Response
Feb. 17, 2016
Cybersecurity Preparedness Is Now a Business Requirement
Apr. 8, 2015
Ten Actions for Effective Data Risk Management
Jun. 26, 2024
A Mock Cyber Incident Tabletop: Day Two and Beyond
May 15, 2024
Applying AI in Information Security
May 1, 2024
Navigating Ransomware’s Challenges
Feb. 14, 2024
Mitigating CISO Personal Liability Post-SolarWinds
Jan. 24, 2024
Emerging Cyber Threats and Defenses
Jan. 10, 2024
Ten Cybersecurity Resolutions for 2024
Sep. 27, 2023
The Good, Bad and Ugly of Summer’s Cyber Incidents
Aug. 30, 2023
Ransomware Incident Response Checklist
Apr. 26, 2023
Ransomware Incident Response Checklist
Nov. 23, 2022
6) Ransomware Evolution
Nov. 9, 2022
Lessons From the Conviction of Uber’s Former CISO
Aug. 10, 2022
Protecting Against Crypto Theft
Jun. 29, 2022
Navigating the Intersection of Digital Assets and AML
May 25, 2022
Ransomware and Sanctions in the Time of War
Jan. 26, 2022
Lessons From SolarWinds
Jan. 12, 2022
Cybersecurity Resolutions for 2022
Dec. 22, 2021
Area #5: Breach Notification
Oct. 27, 2021
IOSCO Issues Final Guidance on AI and Machine Learning
Jul. 28, 2021
Incident Response in the Financial Services Industry
Jun. 9, 2021
To “Cure” or Not to “Cure,” That Is the Question
Feb. 17, 2021
A Fake Zoom Invite Hack: Eight More Lessons
Feb. 10, 2021
A Fake Zoom Invite Hack: What Happened and Three Lessons
Jan. 20, 2021
Disputed Twitter Fine Offers Breach Response Lessons
Jan. 13, 2021
Cybersecurity Resolutions for 2021
Jan. 13, 2021
Checklist for IoT Security Audits
Nov. 25, 2020
Managing Ransomware’s Mutation Into a Public Data Breach
Nov. 25, 2020
Identifying and Preventing Ransomware Attacks
Nov. 25, 2020
Preparing for and Responding to Ransomware Attacks
Nov. 4, 2020
A Guided Tour of Enterprise IoT Device Hazards
Oct. 28, 2020
Ten Tips for Fighting Breaches Like Fires
Sep. 23, 2020
Identifying and Preventing Ransomware Attacks
Sep. 9, 2020
Action Steps to Respond to Ransomware Attacks
Apr. 8, 2020
Wide-Ranging Lessons From Notable Breaches in Q1
Apr. 1, 2020
Investigation Strategies During Social Distancing
Apr. 1, 2020
When Do Force Majeure Clauses Excuse Performance?
Feb. 19, 2020
Preparing for and Responding to Ransomware Attacks
Dec. 11, 2019
Not Just GDPR: Examining the Other European Privacy Laws
Oct. 23, 2019
CFTC Issues $1.5-Million Fine After Phishing Attack
Oct. 2, 2019
Preserving Customer Goodwill After a Breach
Sep. 11, 2019
Using “Red-Teaming” to Test and Improve Cyber Defenses
Jul. 31, 2019
Learning From the Equifax Settlement
Jul. 17, 2019
How to Establish an Efficient Incident Response Plan
Jul. 3, 2019
Key Cyber Threats and Targets for 2019
May 29, 2019
Keeping CISOs and the C-Suite Off the Witness Stand
Feb. 20, 2019
Fixing the Chinks in Companies’ Cyber Armor: Executives
Jan. 16, 2019
Key Cyber Threats and Targets for 2019
Jan. 9, 2019
Ten Cyber and Privacy Resolutions for the New Year
Dec. 19, 2018
Ten Steps for Effective Crisis Communications
Dec. 19, 2018
Interim Response Lessons From the Marriott Breach
Sep. 26, 2018
Five Takeaways From the Fiserv Wake-Up Call
Jan. 11, 2017
FTC Priorities for 2017 and Beyond
Jan. 11, 2017
Ten Cybersecurity Priorities for 2017
Jul. 20, 2016
Checklist for an Effective Incident Response Plan
Jun. 8, 2016
Minimizing Class Action Risk in Breach Response
Feb. 17, 2016
Cybersecurity Preparedness Is Now a Business Requirement
Apr. 22, 2015
Steps to Take Following a Healthcare Data Breach
Nov. 13, 2024
Unpacking the Second Circuit’s Bombshell VPPA Ruling
Feb. 14, 2024
Mitigating CISO Personal Liability Post-SolarWinds
Mar. 22, 2023
ECJ Ruling Expands Legal Professional Privilege
Sep. 14, 2022
Shaping the BIPA Landscape: Avoiding Liability
Aug. 10, 2022
Protecting Against Crypto Theft
Mar. 16, 2022
No End in Sight: Biometrics Litigation Trends
Oct. 20, 2021
Collective Actions in the U.K. After Lloyd v. Google
Jun. 9, 2021
To “Cure” or Not to “Cure,” That Is the Question
Feb. 17, 2021
Big Questions for BIPA Case Law in 2021
Jan. 20, 2021
Disputed Twitter Fine Offers Breach Response Lessons
Jan. 22, 2020
How to Stem the Coming Tide of CCPA Private Litigation
May 29, 2019
Keeping CISOs and the C-Suite Off the Witness Stand
Jan. 30, 2019
Navigating Cloud Litigation’s Claims and Theories
Dec. 19, 2018
Interim Response Lessons From the Marriott Breach
Jan. 17, 2018
A Wake-Up Call: Data Breach Standing Is Getting Easier
Aug. 24, 2016
Takeaways From the FTC’s Revival of the LabMD Action
Jun. 8, 2016
Minimizing Class Action Risk in Breach Response
Nov. 11, 2015
Liability Lessons from Data Breach Enforcement Actions
Sep. 16, 2015
Privacy and Cybersecurity in Canada: Legal Risk Update
Most-Read Articles
-
Nov. 13, 2024
Unpacking the Second Circuit’s Bombshell VPPA Ruling -
Oct. 23, 2024
Aftermath of the Ninth Circuit BIPA Liability Shake‑Up in Zellmer v. Meta -
Oct. 30, 2024
Seventh Circuit Refuses to Compel BIPA Mass Arbitration Against Samsung: Legal Analysis Breakdown -
Oct. 23, 2024
Emerging Issues in Workplace Privacy: Data Collected and Employees’ Perspectives -
Nov. 20, 2024
SEC Charges Four Companies for Misleading Cyber Incident Disclosures: New Expectations?
Spotlight on Trailblazing Women
To mark International Women’s Day 2024, women editors and reporters of ION Analytics interviewed outstanding women in the industries and jurisdictions we cover. In this part, Jill Abitbol, Managing Editor of the Cybersecurity Law Report and Anti-Corruption Report, features notable women in data privacy, cybersecurity, white collar defense, compliance and anti-corruption law, including Christina Montgomery, Leslie Shanklin, Palmina Fava, Alexandra Ross and Lucinda Low. Enjoy reading their inspiring remarks here.
We Celebrate Data Privacy Day 2024
Read the full brief here.
Spotlight on Trailblazing Women
In honor of International Women’s Day, some of ION Analytics' editorial teams led by women interviewed notable women in the markets and industries we cover. In this part, the Cybersecurity Law Report highlighted notable women in compliance and hedge fund, data privacy and cybersecurity, and anti-corruption law, including Amii Barnard-Bahn, Abigail Bell, Genna Garver, Jane Horvath, Barbara Li, Amy Mushahwar, Mara Senn and Carol Widger. The interviews are here.
Webinar on Compliant International Data Transfers
Listen here to our discussion with our colleagues at Ethos Privacy, which took place on March 1, 2022, on how to approach international data transfer challenges.
Webinar on Getting a Handle on Vendor Contracts
A recording of the March 10 webinar can be accessed here.
Cybersecurity Resolutions for 2021
In this quick take video, we talk about some of our cybersecurity resolutions for 2021.
Facial Recognition Concerns
In this short video, we discuss the privacy and bias concerns with facial recognition technology.
ACR and CSLR Spring Update 2020
The Senior Editors of the Anti-Corruption Report and the Cybersecurity Law Report recently teamed up to present an update on the trends and hot topics in the anti-corruption, cybersecurity and data privacy spaces since the beginning of the year and what the publications will be focusing on in the coming months. A complimentary download of the webinar is available here.
Upcoming Webinar: Companywide Work From Home - Cybersecurity and Privacy Best Practices
Please join us on Monday, March 23, 2020, from 12:00 p.m.- 12:30 p.m. EDT for a complimentary webinar discussing the cybersecurity and privacy challenges the shift to remote working has created and how to overcome them. Registration information for the webinar is here.
Upcoming Webinar to Explore Best Practices for Alternative Data Use
Please join us on Wednesday, January 15, 2020, at 11:00 a.m. EST for a complimentary webinar hosted by our sister publication, the Hedge Fund Law Report, discussing issues relating to the use of alternative data by private fund managers. To register for the webinar, click here.
Upcoming HFLR/CSLR Webinar to Explore Strategies and Tactics for Conducting an Effective Tabletop Exercise
Please join the Hedge Fund Law Report and the Cybersecurity Law Report on Tuesday, July 30, 2019, at 1:00 p.m. ET for a complimentary webinar discussing the strategies and tactics companies can employ to conduct an effective tabletop exercise. GCs and CCOs are encouraged to invite their CISOs and CTOs to join as well. The webinar will be moderated by Shaw Horton, Associate Editor of the Hedge Fund Law Report, and will feature Luke Dembosky, partner at Debevoise, John “Four” Flynn, chief information security officer at Uber, and Jill Abitbol, Senior Editor of the Cybersecurity Law Report. Registration for the webinar is available here.
Anti-Corruption Webinar: How HPE Is Using Its New T&E Tool to Generate Compliance Metrics
Measuring the effectiveness of a compliance program can be tricky, but some companies are finding ways to use their existing internal controls to generate useful data. Join our sister publication the Anti-Corruption Report (ACR) for a complimentary webinar that explores Hewlett Packard Enterprises’ new travel-and-entertainment-approval tool. On Wednesday, March 27, 2019, from 1:00 p.m. to 2:00 p.m. EDT, the ACR’s Megan Zwiebel will interview Becky Rohr, vice-president of anti-corruption and global trade at Hewlett Packard Enterprises, about how they are using their T&E tool to measure and improve compliance. Registration information is here.