Hunton & Williams LLP

Firm/Organization: Hunton Andrews Kurth LLP

Blogs: Business Immigration Insights, Hunton Employment & Labor Perspectives, Hunton Insurance Recovery Blog, Hunton Retail Law Resource, PipelineLaw, Privacy & Information Security Law Blog, The Nickel Report

Latest Articles

Privacy & Information Security Law Blog

China Issues Draft Regulation on Cross-Border Transfer of Personal Information

By Hunton & Williams LLP

June 19, 2019

On June 13, 2019, the Cyberspace Administration of China (the “CAC”) released Draft Measures on Security Assessment of Cross-Border Transfer of Personal Information (“Draft Measures”) for public comment, the window for which ends July 13, 2019.…

Privacy & Information Security Law Blog

China Issues Draft of Data Security Administrative Measures

By Hunton & Williams LLP

June 10, 2019

On May 28, 2019, the Cyberspace Administration of China (“CAC”) released draft Data Security Administrative Measures (the “Measures”) for public comment. The Measures, which, when finalized, will be legally binding, supplement the Cybersecurity Law of China (the “Cybersecurity Law”) that took force on June 1, 2017, with detailed and practical requirements for network operators who collect, store, transmit, process and use data within Chinese territory. The Measures likely will significantly impact network operators’ compliance programs…

Privacy & Information Security Law Blog

Pennsylvania County Hit with 68 Million Dollar Verdict in Statutory Damages After Violating Privacy Interests

By Hunton & Williams LLP

June 4, 2019

On May 28, 2019, a federal jury returned a verdict awarding $1,000 to each of the roughly 68,000 class members whose criminal history was made publicly available online. The jury found that Bucks County willfully violated Pennsylvania’s Criminal History Records Information Act (“CHRIA”) and awarded the statutory minimum to each of the class members. As a result, Bucks County could pay up to $68 million in punitive damages.…

Privacy & Information Security Law Blog

China Issues Draft Rule on Cybersecurity Review for Certain CII Operators

By Hunton & Williams LLP

May 30, 2019

On May 24, 2019, the Cyberspace Administration of China (the “CAC”), together with eleven other relevant government authorities, jointly released the draft Cybersecurity Review Measures for public comment. The deadline for public comment is June 24, 2019.…

Privacy & Information Security Law Blog

Office of the Privacy Commissioner of Canada Suspends Consultation on Transborder Data Flows

By Hunton & Williams LLP

May 28, 2019

As reported by Bloomberg Law, on May 24, 2019, the Office of the Privacy Commissioner of Canada (the “OPC”) suspended its public consultation on transborder data flows (the “Consultation”). The suspension follows the announcement of the Digital Charter by the Canadian government, which puts forward principles for digital reform, including improvements to Canadian privacy law.…

Privacy & Information Security Law Blog

The EDPB Publishes Updated Enforcement Figures for the First Anniversary of the GDPR

By Hunton & Williams LLP

May 24, 2019

On May 22, 2019, the European Data Protection Board (the “EDPB”) published on its website a summary of enforcement actions taken by the European Economic Area Supervisory Authorities (“EEA Supervisory Authorities”) one year after the entry into force of the General Data Protection Regulation (the “GDPR”). Reflecting on the growing numbers of data controllers designating a lead supervisory authority, the EDPB reported that of the 446 cross-border cases opened by EEA Supervisory Authorities, 205 of…

Privacy & Information Security Law Blog

California Senate Committee Declines to Expand Private Right of Action under the CCPA

By Hunton & Williams LLP

May 22, 2019

On May 16, 2019, the California State Senate Appropriations Committee did not approve SB 561, a bill that would have amended the California Consumer Privacy Act (“CCPA”) to expand the private right of action to permit consumers to sue for any violations of the CCPA. The Committee’s decision to hold the bill means it will not pass out of the Senate this session.…

Privacy & Information Security Law Blog

New Jersey Amends Data Breach Law to Include Online Account Information

By Hunton & Williams LLP

May 17, 2019

On May 10, 2019, New Jersey Governor Phil Murphy signed into law a bill that amends New Jersey’s data breach notification law to expand the definition of personal information to include online account information. The amendment goes into effect September 1, 2019.…

Privacy & Information Security Law Blog

Federal Government Reduces Maximum Annual Penalties for Most Healthcare Privacy Violations

By Hunton & Williams LLP

May 2, 2019

On April 26, 2019, the U.S. Department of Health and Human Services (“HHS”) Office for Civil Rights announced reductions in available penalties for three out of four tiers of privacy and security violations set forth in the HITECH Act, based on the severity of the violation. Previously, all four tiers of violation were subject to a maximum annual civil monetary penalty of $1.5 million. The revised regime provides for maximum civil penalties of $25,000 for…

Privacy & Information Security Law Blog

UK Government’s National Cyber Security Centre Confirms It Will Not Share Confidential Cyber Breach Information with the ICO

By Hunton & Williams LLP

May 2, 2019

At its annual conference, CYBERUK, the National Cyber Security Centre (the “NCSC”), pledged not to pass on confidential information about cyberattacks to the UK Information Commissioner’s Office (the “ICO”) without the consent of the affected organization. This commitment is an attempt to reassure organizations, encouraging them to report and seek assistance in the event of a cybersecurity incident.…

Hunton & Williams LLP

China Issues Draft Regulation on Cross-Border Transfer of Personal Information

China Issues Draft of Data Security Administrative Measures

Pennsylvania County Hit with 68 Million Dollar Verdict in Statutory Damages After Violating Privacy Interests

China Issues Draft Rule on Cybersecurity Review for Certain CII Operators

Office of the Privacy Commissioner of Canada Suspends Consultation on Transborder Data Flows

The EDPB Publishes Updated Enforcement Figures for the First Anniversary of the GDPR

California Senate Committee Declines to Expand Private Right of Action under the CCPA

New Jersey Amends Data Breach Law to Include Online Account Information

Federal Government Reduces Maximum Annual Penalties for Most Healthcare Privacy Violations

UK Government’s National Cyber Security Centre Confirms It Will Not Share Confidential Cyber Breach Information with the ICO

Stay Connected

Company

Support

New to the Network