Tag archives: cybersecurity regulation

Just when you thought it was safe—California AG issues proposed CCPA regulation changes

Norton Rose Fulbright - Data Protection Report blog

The California Attorney General has just issued some proposed revisions to the California Consumer Privacy Act (CCPA) regulations and our readers may be surprised by one of the proposed changes.  You may recall that California’s Office of Administrative Law (OAL) had rejected some the proposed CCPA regulations during the summer, but accepted most of them.  The accepted regulations became final on August 14, 2020.

The proposed regulatory changes from October 12 are available at www.oag.ca.gov/privacy/ccpa/current  The proposed changes would affect four sections of the CCPA regulations, but the one most likely to affect our readers is this one:

  • 999.315 (Requests
Continue Reading

February 15 deadline looms for first DFS Cybersecurity Certification

Data Protection Report - Norton Rose Fulbright

February 15, 2018, is quickly approaching and any entity subject to New York’s cybersecurity regulation (23 NYCRR Part 500) must file its first annual certification of compliance with the New York State Department of Financial Services (DFS) by that date. New York imposes cybersecurity requirements on all entities (covered entities) subject to the jurisdiction of the DFS, which include not only banks and insurers, but also any persons regulated by the DFS, including the newest DFS licensees, those engaged in virtual currency business activity.… Continue Reading

LexBlog