Phillips Lytle LLP

Latest from Phillips Lytle LLP

One of the biggest risks to data security is lack of vendor (third-party) and vendor subcontractor (fourth-party) management. Companies can mitigate ever-increasing vendor data security risk through purchasing appropriate cyber insurance and implementing a vendor risk management program that includes processes for systematically conducting due diligence and contract negotiations. If primary vendors are not properly assessed, or controls are not placed on subcontractors (i.e., “fourth parties”) that may be used to render primary vendors’ services,…
The New York Public Service Commission (“PSC”) appears to be creating a new Office of Investigations and Enforcement (“OIE”) and has posted a job listing for a Director of OIE (“Director”) who would report to the CEO of the Department of Public Service (“DPS”), as well as the Chairman of the PSC. The Director would be tasked with managing the OIE’s efforts in investigating and enforcing the regulations promulgated pursuant to §25 and §25-a of…
Earlier this month, the Fifth Circuit held that sovereign immunity protected a number of state agencies and universities from Comprehensive Environmental Response, Compensation, and Liability Act (“CERCLA”) liability. Generally stated, sovereign immunity is a legal doctrine that prohibits private individuals from bringing civil lawsuits or criminal prosecutions against the state. State immunity from lawsuits is provided by the Eleventh Amendment, while the Supreme Court has established a similar rule for suits against the federal government.…
On August 21, 2018, the Environmental Protection Agency (“EPA”) proposed a new rule which would replace the Obama-era Clean Power Plan (“CPP”) and establish new emissions guidelines for states to address greenhouse gas (“GHG”) emissions from electric-generating power plants. As background, the CPP was stayed by the Supreme Court in a 5-4 decision in February of 2016 before the rule ever went into effect. More recently, in October 2017, the EPA announced its intention to…
On August 21, 2018, the Environmental Protection Agency (“EPA”) proposed a new rule which would replace the Obama-era Clean Power Plan (“CPP”) and establish new emissions guidelines for states to address greenhouse gas (“GHG”) emissions from electric-generating power plants. As background, the CPP was stayed by the Supreme Court in a 5-4 decision in February of 2016 before the rule ever went into effect. More recently, in October 2017, the EPA announced its intention to…
Earlier this month, the United States Environmental Protection Agency (“EPA”) issued a memorandum that defines Adaptive Management (“AM”) and calls for its expanded implementation at Superfund sites across the country. The push for AM derives from one of many recommendations made by the EPA Superfund Task Force (“STF”), which was established by former EPA Administrator Scott Pruitt. As we previously reported, one of the former Administrator’s main priorities while in office was to revamp…
The New York State Department of Financial Services (“DFS”) Cybersecurity Regulation (“Regulation”) took effect on March 1, 2017, and applies to those entities operating or required to operate under New York banking, insurance and finance laws (“Covered Entities”). Covered Entities should have been in compliance with portions of the Regulation as of August 28, 2017, for which they certified compliance on February 15, 2018.…
Last Thursday, Basil Seggos, the Commissioner of the New York State Department of Environmental Conservation (“NYSDEC”) announced the first major update to New York’s State Environmental Quality Review Act (“SEQRA”) regulations in over 20 years. SEQRA establishes a process to systematically consider environmental factors early in the planning stages of actions that are directly undertaken, funded or approved by local or state agencies. Seggos believes the updates will “streamline the environmental review process and encourage…
Recently, Phillips Lytle’s own Dennis Elsenbeck made an appearance on Spectrum News’ Capital Tonight program with host Liz Benjamin to discuss the energy landscape in New York and the economic impact of energy-related policy decisions. As the State legislative calendar year comes to a close, the conversation centered around how energy policy should be focused on meeting market demands so that it aligns with the current economic goals to drive development. As the energy industry…
The SEC’s recent enforcement action and settlement with Altaba (formerly known as Yahoo) over the company’s major data breach provides a suggested roadmap for how companies may want to proactively approach data breach issues. Some major takeaways are: (1) companies should have effective controls in place to assess disclosure obligations; (2) known cyberattacks should, when appropriate, be included in disclosures in public filings; and (3) if known cyberattacks have a material impact on the business,…