The Massachusetts Department of Consumer Affairs and Business Regulation have extended the deadline for compliance with 201 CMR 17.00: Business Community Given Additional Time to Comply with Identity Theft Prevention Regulations. The regulations were orginally set to take effect on January 1, 2009. That deadline has been extended to May 1, 2009. The deadlines for […]
A white paper written by Joe Laferrera of Gesmer Updegrove LLP New Data Security Regulations Have Sweeping Implications For Massachusetts Businesses (.pdf) provides a great analysis of the new Massachusetts Data Privacy Regulations, their impact and how to deal with them. These are my prior posts on the new Massachusetts Data Privacy Regulations: Computer System […]
As discussed in earlier alerts (Additional Guidance on the Massachusetts Privacy Regulations, Privacy and Security Alert: Massachusetts Has New Data Security Regulations and New Massachusetts Privacy Laws), starting on January 1, 2009, businesses will be held to a higher standard regarding the protection of Massachusetts residents’ personal information. The regulations set out in detail the […]
French privacy law limits the ability to use anonymous hotlines. In France, the French Data Protection Authority (La Commission Nationale de l’Informatique et des Libertés (CNIL)), an administrative agency, oversees processes involving the collection or compilation of personal data. In 2005 they decided that two reporting procedures were in violation of French privacy law. McDonald’s […]
A Nevada law requiring encryption of customer personal information went into effect on October 1, 2008. See Nev. Rev. Stat. § 597.970. The legislation is short but potentially wide-ranging in scope. NRS 597.970 Restrictions on transfer of personal information through electronic transmission. [Effective October 1, 2008.] 1. A business in this State shall not transfer […]
The Massachusetts Office of Consumer Affairs and Business Regulation has provided guidance regarding its new regulations requiring all entities that own, license, store or maintain personal information about a resident of the Commonwealth of Massachusetts to develop, implement and maintain a comprehensive written information security program and make specific computer information security requirements. I mentioned […]
Goodwin Procter LLP published a summary of the New Massachusetts Regulations to Mandate Comprehensive Information Security Requirements. The regulations have broad coverage, applying to all entities that own, license, store or maintain personal information about residents of the Commonwealth of Massachusetts, regardless of whether or not the entity has operations in the Commonwealth. Federally regulated […]
Cynthia Larose, Elissa Flynn-Poppey and Julia M. Siripurapu of Mintz Levin Put together an alert with a a summary of the new Massachusetts Data Security Regulations: Privacy and Security Alert: Massachusetts New Data Security Regulations Effective January 1, 2009. The alert has a summary of some of the changes to the changes to the regulations […]
The National Research Council has published a new report finding that all U.S. agencies with counterterrorism programs that collect personal data should be required to evaluate the programs’ effectiveness, lawfulness, and impacts on privacy. In its press release, they summarize that “Collecting and examining data to try to identify terrorists inevitably involves privacy violations, since […]
Governor Patrick signed Executive Order 504 an order regarding the the Security and Confidentiality of Personal Information on September 19, 2008. This order revokes the earlier Executive Order 412. There are also new state regulations 201 CMR 17.00: Standards for The Protection of Personal Information of Residents of the Commonwealth (effective Jan. 1, 2009) implementing […]
- What Does the Future Hold for the Regulation of Private Equity Funds?
- Compliance Bricks and Mortar for October 2
- Failing the Family
- New SEC Rulemaking Database
- 75th Anniversary Celebration: Investment Company and Investment Advisers Acts
- The SEC Tries to Change Its Home-Court Advantage
- The SEC’s Cybersecurity Smackdown
- Compliance Bricks and Mortar for September 18
- Cybersecurity Exams Part II: More Governance
- Outside Trading Defendants Settle
Dodd-Frank’ed Real Estate
- Yes, the SEC Wants Real Estate Fund Managers to Register
- Are Real Estate Fund Managers Registered with the SEC?
- Are you an Investment Company?
- Real Estate Funds and the Investment Company Act
- Are you an Investment Adviser?
- Custody and Private Funds
- Private Equity Real Estate Top 50 – 2015 Edition of Who is Registered