Technology & Data Privacy

News and Commentary Impacting Data Privacy and Cybersecurity Programs CFPB Cracking Down on AI-Driven Employee Monitoring and Reports Key Takeaways for Employers Increasingly, employers are monitoring and evaluating their employees with third-party applications, including with AI-driven surveillance tools. The federal Consumer Financial Protection Bureau (CFPB) and other agencies, however, are
Read More

News and Commentary Impacting Data Privacy and Cybersecurity Programs M&A Excitement, Cybercriminal Opportunists Taking Notice Beware Downplaying Risks in SEC Cybersecurity Incident Disclosures M&A Excitement, Cybercriminal Opportunists Taking Notice This year has seen an increase in mergers and acquisitions (M&A), and with that an increase in opportunities for cybercriminals. High-profile
Read More

News and Commentary Impacting Data Privacy and Cybersecurity Programs Your Newest Remote Hire Could be a North Korean Hacker Key Takeaways for Employers Do you know who your newest remote employee is? The candidate you Zoomed with could actually be a “mule” for a North Korean agent. According to recent
Read More

News and Commentary Impacting Data Privacy and Cybersecurity Programs Going Once, Going Twice, Sold! Christie’s Client Data Allegedly Sold on Dark Web, Auction House Sued Rare Defense Win as American Bar Association Beats Member Data Privacy Suit Minnesota Consumer Data Privacy Act Signed Into Law Vermont Data Privacy Act Vetoed
Read More

News and Commentary Impacting Data Privacy and Cybersecurity Programs What Could Have Been: Artificial Intelligence Bill Dies as CT Legislative Session Ends HIPAA Privacy Rule Addresses Reproductive Health Information No. 17: Understanding the Nebraska Data Privacy Act  Concluding Consideration What Could Have Been: Artificial Intelligence Bill Dies as CT Legislative
Read More

News and Commentary Impacting Data Privacy and Cybersecurity Programs A Bipartisan Federal Comprehensive Data Privacy Proposal New Additions to the State Consumer Privacy Patchwork Peanuts, Cracker Jacks, and Facial Authentication? Concluding Consideration “In Order to Form a More Perfect [Data Privacy] Union”? Hopes and fears for a federal comprehensive data
Read More

News and Commentary Impacting Data Privacy and Cybersecurity Programs New Jersey’s new consumer privacy law Data Privacy Day 2024 – ideas and resources Boardroom liability – failing to oversee privacy and data security risks New Jersey Data Privacy Act (NJDPA) Does your organization offer products or services to New Jersey consumers? On January 16,
Read More

News and Commentary Impacting Data Privacy and Cybersecurity Programs Consumer Data Privacy On Deck 2024: Oregon, Texas, and Montana FTC Safeguards Rule Adds Breach Notification Requirement $480,000 HIPAA Enforcement Spotlight: Risk Assessments and Threat Monitoring 23 [credential stuffing] and Me Consumer Data Privacy On Deck 2024: Oregon, Texas, and Montana
Read More

Litigation partner Jason Gagnon is quoted in this article regarding How to Move Forward with Generative AI, LLMs (shrm.org)

Carmody Privacy and Data Security partner Sherwin Yoder is quoted in the Hartford Business Journal in regard to growing concerns about cybersecurity. https://www.hartfordbusiness.com/article/employer-shield-law-boosts-cybersecurity-interest-amid-high-profile-attacks-litigation

Carmody privacy and data security partner Sherwin Yoder is quoted in Hartford Business Journal’s article focused on the risk of cyber attacks for employers and how the law is trying to protect them. Click to read more.

On November 10, Sherwin Yoder will present “Business Friendly Cybersecurity Laws: Taking Advantage and Staying Out of the Headlines” with Christopher Wisneski of Whittlesey Technology for the Connecticut Society of CPA’s. About the Program Recently enacted cybersecurity laws in Connecticut [and beyond] reward businesses for getting ahead of the curve.
Read More

The most recent Connecticut legislative session, which ended June 9, 2021, may have stopped short of passing California-like, comprehensive consumer data privacy legislation, but it – like other states – continued its yearly march toward ever-increasing privacy and data security protections in two pieces of legislation, including one that is
Read More

Blackbaud, a popular supplier of automated fundraising tools and related technology services for nonprofits, schools and universities, last week began notifying customers worldwide that it was the victim of a ransomware attack that may have resulted in the unauthorized disclosure of customer data. Some of the Blackbaud services known to
Read More

The rapid spread of the COVID-19 virus has stretched the capacity of our healthcare systems. In addition to the immediate concerns of providing care to those infected and curbing the spread of the disease, healthcare providers find themselves contemplating the legal implications of the care they provide now and whether
Read More

Enabling work from home is a solid start to managing your organization’s COVID-19 risks.  Yet, while it resolves some issues, it raises others.  Before providing remote access to the company’s IT systems and digital assets, consider the privacy and data security implications of telework.  Here are a few top-of-mind considerations:
Read More

Until recently, Connecticut health care providers who disclosed patient medical information in violation of the federal Health Insurance Portability and Accountability Act of 1996 (HIPAA) were subject only to HIPAA’s administrative penalties and possibly to claims of breach of patient-provider contracts.  Suits based on HIPAA violations were thought to be
Read More