Staying One Step Ahead of Cyber Criminals: NYDFS Updating Cybersecurity Regulation for 2023

Since 2017, the New York Department of Financial Services (NYDFS) cybersecurity regulation has established minimum cybersecurity requirements for financial services companies that are licensed or registered by NYDFS. The regulation is set to be updated[1] in 2023 to address the ever-increasing sophistication and scope of cyber threats. NYDFS issued a draft regulation last November, and…

Recent Data Breaches Prompt Big Changes in Australian Privacy Penalties

Recent Data Breaches Prompt Big Changes in Australian Privacy Penalties Two massive data breaches exposing the personal information of millions of Australians rocked the country—one in September and another in October— prompting Australia’s parliament to swiftly respond with dramatic increases to penalties allowable under its Privacy Act. In September, telecom company Optus made public news…

California Strengthens Online Privacy Landscape with Child-Specific Legislation

California recently became the first state to enact legislation governing the profiling and processing of personal information gathered from children online.[1] The California Age-Appropriate Design Code Act (CAADCA) becomes law on July 1, 2024, and builds upon the state’s current privacy legislation.[2] The law applies to any business that provides an online service, product, or feature…

Following the Cookie Trail

BOISE, Idaho — If you are following the various privacy laws being passed around the world, you have certainly heard a lot of chatter about cookies. You may also be annoyed by website banners that pop up whenever you view a website. What are cookies and why are they used? Cookies are small text files…

Update on the EU-U.S. Data Privacy Framework

Since our previous post discussing plans for the European Union-U.S. Trans-Atlantic Data Privacy Framework, the United States has taken a significant step toward setting this new framework into action. On Oct. 7, 2022, President Joe Biden signed an “Executive Order on Enhancing Safeguards for United States Signals Intelligence Activities,” which lays out steps the U.S.…

What the Heck is Privacy, Anyway? Some Foundations on Privacy Law in the U.S.

Privacy is everywhere these days. And as RIM professionals, we must be aware of how privacy laws impact records and information management. But terms like ‘sectoral versus comprehensive regulatory approach,’ ‘cross contextual behavioral advertising,’ and many, different—and often convoluted—definitions of ‘personal data’ can make privacy a difficult topic to stay engaged in. Thankfully, for RIM…

Virtual Coffee with Zasio Consulting

April 5, 2023 Virtual Coffee with Consulting: What on Earth is Going on with ChatGPT and What Does it Have to do with IG? ChatGPT is just one of many ventures pushing the boundaries of large language models and AI. The technology is fascinating, but ChatGPT isn’t the only example. And clearly, the sexiness of…