Tag archives: cyber risk

Autonomous Vehicles – Canada’s Current Legal Framework: Cybersecurity Considerations (Part 2)

By Liana Di Giorgio (CA) and Imran Ahmad (CA) on November 22, 2022 Posted in Cybersecurity, Data Protection

Norton Rose Fulbright - Data Protection Report blog

The emergence of autonomous vehicles (AVs) in Canada will present a number of cybersecurity challenges and risks. AV manufacturers will need to consider these risks and address them early in the design and development process of their products. In this post, we discuss some of the key cybersecurity risks associated with AVs, strategies to mitigate … Continue reading

OSFI’s Technology and Cyber Risk Management Guideline: Part 1

By Suzie Suliman (CA), Shreya Gupta and Imran Ahmad (CA) on August 29, 2022 Posted in Compliance and risk management, Cybersecurity

On July 13, 2022, the Office of the Superintendent of Financial Institutions (OSFI) released its final Guideline B-13 (the Guideline), setting out technology and cyber risk management expectations for all federally regulated financial institutions (FRFIs), such as banks, insurance and trust companies. FRFIs will need ensure that they have taken steps to comply with the requirements … Continue reading

Australian Mandatory Data Breach Regime Moves Closer to Reality

By on April 18, 2016 Posted in Regulatory response

Data Protection Report - Norton Rose Fulbright

As mentioned in our previous legal update, the Australian Attorney-General’s Department released and sought comments on an exposure draft of a mandatory data breach notification bill, the Privacy Amendment (Notification of Serious Data Breaches) Bill 2015 (Cth) (Exposure Bill). The time for submissions has now closed, and the Attorney-General’s Department has published a number of the non-confidential … Continue reading

Cyber security – making banking safer

By Marcus Evans (UK) on January 4, 2016 Posted in Compliance and risk management, Cybercrime

Cybersecurity is rarely out of global news headlines. David Navetta and Marcus Evans have commented on the issue in the January 2016 edition of The Banker. The feature – “Cyber security – making banking safer” – looks how financial institutions are protecting their assets and customers’ data.… Continue reading

Data breach notification places cyber-risk at the top of the agenda

By Nick Abrahams (AU) and Jim Lennon (AU) on December 9, 2015 Posted in Compliance and risk management, Regulatory response

The bar is to be raised yet again for privacy compliance in Australia. Cyber-risk has become a key agenda item for boards for the public sector, and the impending mandatory data breach notification regime is set to propel cyber-risk to the top of the agenda.… Continue reading

UK Hedge Fund Standards Board issues cybersecurity guidance

By Marcus Evans (UK) on October 4, 2015 Posted in Regulatory response

The UK Hedge Fund Standards Board (HFSB) announced on September 17, 2015, that it has added a “Cybersecurity Memo” to its Toolbox function. The Toolbox provides guidance to managers, investors, and fund directors on fund-related issues such as governance, internal processing, and reporting. The Toolbox acts as a complement to the HFSB’s standard-setting activities.… Continue reading