With the coming into effect of the GDPR on 25 May 2018, the modernisation of European privacy laws has reached a critical milestone. Businesses operating in Europe or targeting European customers now need to comply with the new regime. At stake are not only the consequences of non-compliance, but also the ability to take advantage of new technologies, data analytics … Continue Reading
Tag Archives: cybersecurity
TMT China Brief – Summer 2018
This edition features a total of 14 articles which capture various significant TMT developments in Greater China. These developments cover an extraordinary breadth of topics and demonstrate a strong increase in the nuance and complexity of TMT law and practice in the region.
Cybersecurity in China remains a hot topic. The Cyber Security Law is already in place but the … Continue Reading
Internet of Things Webinar Recording: Medical Devices
In the third instalment of the 2018 Internet of Things Webinar (IoT) Series, Yarmela Pavlovic, Paul Otto, Elisabethann Wright, and Fabien Roy hosted an educational webinar focusing on the evolving world of connected medical devices.
Fabien described the regulatory framework applicable to digital health technologies regulated as medical devices in the EU. He explained the criteria which must be met … Continue Reading
Straight Talks podcast: Data privacy and cybersecurity in the age of rolling smart devices
The U.S. Environmental Protection Agency was created in 1970 to safeguard the environment against pollutants. The tidal wave of environmental regulations that followed impacted every industry in the United States, especially the automotive market. Decades later, organizations have internalized these regulations into their culture.
Today, the European Union’s General Data Protection Regulation (GDPR) is driving a regulatory wave of similar … Continue Reading
Asia Data Protection and Cyber Security Guide 2018
As global focus on data protection and cyber security law and regulation continues to increase, the Asia-Pacific region is increasingly an area of concern for global compliance programs.
Much of the focus internationally has been on preparations for the May, 2018 implementation of the EU GDPR. However, the APAC region is also noteworthy for a number reasons, including China’s ongoing … Continue Reading
Is Artificial Intelligence the Ultimate Test for Privacy?
Nothing challenges the effectiveness of data protection law like technological innovation. You think you have cracked a technology neutral framework and then along comes the next evolutionary step in the chain to rock the boat. It happened with the cloud. It happened with social media, with mobile, with online behavioural targeting and with the Internet of Things. And from the … Continue Reading
Two steps forward and a look back – Global IP Outlook 2018
2017 was a year of widespread political, technological and legal changes; leading to lack of certainty and creating both challenges and opportunities for businesses in 2018 and beyond.
We’re here to help: we have published our second annual Global IP Outlook. The Outlook reflects on some of the major developments in intellectual property law and emerging and growing industries. Regardless … Continue Reading
10 steps to better cybersecurity -‘Intellectual Values seminar series #1’ video
Last month we hosted our annual ‘Intellectual Values’ seminar in London which this year focused on the ‘connected world’. Sarah Turner, an IP partner in our Tech Hub, gave a talk on the steps companies can take to improve their cybersecurity. The potential damage resulting from a cybersecurity attack is ever increasing as the world becomes more and more … Continue Reading
Former FTC Chairwoman Edith Ramirez Joins Hogan Lovells Privacy and Cybersecurity Practice
Hogan Lovells has announced that Edith Ramirez, the former Chairwoman of the US Federal Trade Commission (FTC), has joined the firm as a partner and will play an active role in Hogan Lovells’ Privacy and Cybersecurity practice. She will also co-head the firm’s Antitrust, Competition and Economic Regulation (ACER) practice.
Ramirez will co-lead the global antitrust practice alongside Suyong … Continue Reading
The FTC and Industry Propose Best Practices for IoT Security Updates
How do you ensure that an Internet-connected sensor or device—often inexpensive and designed for lifespans of up to 20 years or more—can be secured against not only the intrusions of today but also those of the future? This question has taken on new urgency as low-cost Internet-connected devices are increasingly being co-opted into massive networks, known as “botnets,” that are … Continue Reading
National Association of Corporate Directors Updates Cyber-Risk Oversight Handbook
Earlier this year, the National Association of Corporate Directors (NACD) released an updated version of its Director’s Handbook on Cyber-Risk Oversight (Handbook). The updates add 16 pages of content to the previously 28-page document, including four additional appendices. While the use of and compliance with the Handbook is not mandatory, the Handbook is influential in shaping governance practices and thus … Continue Reading
China’s revised draft data localisation measures
On 19 May 2017, the Cyberspace Administration of China (the “CAC“) released a revised draft of its Security Assessment for Personal Information and Important Data Transmitted Outside of the People’s Republic of China Measures (the “Second Draft Export Review Measures“).
The draft emerged just over a week after public comments closed on the first draft of … Continue Reading
SFC Proposes Baseline Cyber Security Requirements for Internet Trading
The Hong Kong Securities and Futures Commission (“SFC”) has issued a paper containing proposals to introduce cyber security guidelines under the Securities and Futures Ordinance (the “SFO”) applicable to internet brokers (the “Cyber Security Consultation Paper”). Comments are open through 7 July 2017.
The Cyber Security Consultation Paper reflects a sharpening of focus by the SFC on cyber security issues. … Continue Reading
Combatting the Massive Wave of WannaCry Ransomware
Major companies, health care organizations and government agencies are facing a wave of cyberattacks involving ransomware that takes control of computers and denies access until a ransom is paid. These attacks are occurring on a global scale and in some cases are having a significant impact on business and healthcare operations. The cyberattack has disrupted targets throughout the world from … Continue Reading
Emerging patent law issues: IoT webinar update
On 20 April, Hogan Lovells hosted the second instalment of the 2017 webinar series on emerging issues with the Internet of Things (IoT). This instalment focussed on the potential patent law issues presented by IoT technology.
Dr. Chris Mammen, a partner in Hogan Lovells San Francisco office, considered how these issues can impact companies in the IoT space, and discussed … Continue Reading
State of the Cyber Nation: UK Government Report on Cybersecurity Breaches
On 19 April 2017, the UK Government’s Department for Culture, Media and Sport (DCMS) published a report on cybersecurity breaches and how they affected UK companies in the last year. Headline statistics from the report include:
- 61% of businesses hold personal data electronically;
- 46% of all UK businesses identified at least one cybersecurity breach in the past year, rising to
China’s Data Localization Measures Open for Comment
On 11 April 2017 the Cyberspace Administration of China published a circular calling for comments on its draft Security Assessment for Personal Information and Important Data Transmitted Outside of the People’s Republic of China Measures (the Draft Export Review Measures). Public comments are open through 11 May 2017.
The main legislative purpose of the Draft Export Review Measures is to … Continue Reading
Asia Pacific Data Protection and Cyber Security Guide 2017
2016 was an eventful year in the Asia-Pacific region, as data protection and cyber security issues increasingly feature in the news headlines in the Asia-Pacific region as they do elsewhere, our annual publication, the 2017 Asia-Pacific Data Protection and Cyber Security Guide provides you with an update on key regulatory developments and emerging trends in data protection and cyber security.… Continue Reading
Privacy and Cybersecurity March 2017 Events
Please join us for our March 2017 Privacy and Cybersecurity Events.
| March 2 |
|
| March 14 |
|
The “Final Final” is Here: NYDFS Cybersecurity Regulations
As Hogan Lovells previously reported, the New York State Department of Financial Services (NYDFS) has launched a significant initiative to impose detailed cybersecurity requirements on covered financial institutions. On February 16, NYDFS issued its Final Rules, following the initial proposed rules published in September 2016 and two rounds of feedback via industry complaints and public comment. The Final Rules … Continue Reading
“Cybersecurity Review” Takes Shape in China
On 4 February 2017, the Cyberspace Administration of China issued a draft of the Network Products and Services Security Review Measures (“Draft Measures”) for public comment: the Draft Measures remain open for comments until 4 March 2017. The Draft Measures are follow-on legislation to China’s Cyber Security Law adopted on 7 November 2016, which will take effect on 1 June … Continue Reading
China moves to implement security review of network products and services: but leaves foreign investor and manufacturer concerns unanswered
On 4 February 2017, the Cyberspace Administration of China issued a draft of the Network Products and Services Security Review Measures (“Draft Measures“) for public comment: the Draft Measures remain open for comments until 4 March 2017. The Draft Measures are follow-on legislation to China’s Cyber Security Law adopted on 7 November 2016, which will take effect from … Continue Reading
New York Department of Financial Services Cybersecurity Rules Revised and Delayed
The New York Department of Financial Services (NYDFS) just issued major revisions to the cybersecurity regulations for financial institutions that were due to come into effect on January 1, 2017. To allow covered institutions more time to implement the rules, the effective date will now be March 1, 2017, with a series of staggered implementation dates beyond this. There are … Continue Reading
The UK’s Cybersecurity Regulatory Landscape: An Overview
Have you visited our online client cybersecurity resource portal: Ready, Set, Respond? Designed by our cross-practice team of global practitioners to provide in-house counsel with the tools they need to prepare for the inevitable cybersecurity incident and quickly and easily stay up to date on the evolving state of cybersecurity regulation around the world, the portal is regularly updated … Continue Reading
