Search Results: Cybersecurity

SEC Examinations Division Publishes 2022 Priorities

The SEC Division of Examinations recently published its list of priorities for 2022.  While it was a bit late compared to a typical year, the priorities letter provides a roadmap for firms to better understand where the Division will take its examination efforts over the coming months. Significant focus areas…

Read More

SEC to Propose Cybersecurity Risk Governance Disclosures—Commissioner Roisman Shares His Views

SEC Commission Elad Roisman recently spoke about cybersecurity threats and challenges facing the agency’s registrants, including public companies and financial institutions.  One source of challenges (our words, not Roisman’s) may come from the government itself—the combination of (1) the lack of clarity on requirements and expectations from the SEC in…

Read More

UK ICO Confirms Transfers of Data to SEC in the Public Interest

The UK Information Commissioner’s Office (“ICO”) has published a letter sent to the U.S. Securities and Exchange Commission. The ICO confirms that it is possible for SEC regulated UK firms to transfer personal data to the U.S. where the transfer is necessary for important reasons of public interest (the derogation in Article…

Read More

Nowhere To Hide: Controllers Have "Constructive Awareness" of Processor Data Breaches

On December 15, 2020, Ireland’s Data Protection Commission (“DPC”) announced its decision to fine Twitter International Company (“Twitter”) €450,000 for failing to notify the DPC promptly of a data breach affecting EU personal data in compliance with the EU General Data Protection Regulation (“GDPR”). The decision received all the press coverage that…

Read More