Latest Posts

UK – US “Data Bridge” – commitment in principle announced
Key Tech Law Trends in Video Gaming | Part 1: Awareness of Data Privacy Challenges and the Importance of Cybersecurity Strategy
European Data Protection Board (“EDPB”) publishes updated Guidelines 9/2022 on personal data breach notification under GDPR
Data Protection Day – Key developments and looking ahead to 2022
Landmark Ruling Affirms Direct Applicability of Collective Redress Directive – With Far-Reaching Implications for the Private Enforcement of Digital Rights
A legal framework for NFTs and other tradeable assets in video games: the Great French Experiment
Kentucky is Off to the Races: Bluegrass state is 15th to Pass Comprehensive Privacy Law
IAB Europe CJEU decision: key takeaways and impact for the AdTech industry
M&A, Professional Perspective – AI: Real Money, Light Representations & Light Deal Certainties
California moves to disable vehicular data access used in domestic abuse
Mission Critical: CIRCIA’s Regulations and the Race to Secure Critical Infrastructure
Recent SEC Actions Highlight Increased Regulatory Scrutiny over Artificial Intelligence and “AI Washing”

In Cybersecurity Podcast

Podcast Episode: Strengthening American Cybersecurity Act – What You Need to Know

May 12, 2022 by Brian Hengesbaugh and Stephen Reynolds 1 Min Read

In this episode, Brian Hengesbaugh, Global Chair of Data Privacy and Security, is joined by Stephen Reynolds, partner in Chicago, as they discuss the Strengthening American Cybersecurity Act, a law recently signed by President Biden, which requires key businesses to report certain ransomware incidents to the Cybersecurity and Infrastructure Security Agency (CISA). Listen in to hear about:

An overview of the new law, including key elements such as mandatory reporting requirements, timelines and which “critical infrastructure” sectors are affected by the legislation
How the scope and ambiguity of the new law impacts organizations and complicates the response process effort
What to expect in terms of engaging with CISA and how to preserve privilege applying to such communications
How to manage and coordinate the new reporting mandates with existing incident reporting obligations
Suggested action items to help companies address top-of-mind concerns and challenges they encounter as ransomware continues to be a prevalent threat

Want to Learn More?
Stay tuned for more podcasts and subscribe to the Connect On Tech Blog at www.connectontech.com

Subscribe on your player of choice: Apple | Android | Spotify

Author Brian Hengesbaugh

Brian provides advice on global data privacy, data protection, cybersecurity, digital media, direct marketing information management, and other legal and regulatory issues. He is Chair of Baker McKenzie's Global Data Privacy and Security group.

Author Stephen Reynolds

Stephen Reynolds frequently advises clients on complex matters involving data privacy and security laws and serves on the board of directors of the International Association of Privacy Professionals (IAPP). Stephen’s expertise adds value to organizations by mitigating cyber threats through proactive preventative measures and navigating complex litigation on behalf of clients in data privacy and security. He is uniquely able to and routinely uses his computer background in cases involving data privacy and security, electronic discovery, social media discovery, and computer forensics.