A CISO and Outside Cybersecurity Counsel: A Marriage Made in Heaven

Frequently people ask, “why would a company [or organization] need a good cybersecurity and data privacy attorney”? A CISO (chief information security officer) should be able to handle everything, right? She should be intimately familiar with the corporate network infrastructure, all of the current policies, procedures, SOPs, and guidelines, all existing privacy and security regulations/requirements, […]

A Biometric Data Regulation: Coming to a State Near You

By Michael A. Shapiro, Attorney at XPAN Law Group, LLC Once a subject of science fiction movies, biometric identification is becoming an integral part of our daily lives.  Between fingerprint scanning, voice print identification, and facial recognition technology, more and more companies are collecting and processing biometric data. While biometric identification provides more security advantages […]

Beware of Potential Conflicts: Should Your Organization Appoint an IT Director as a Data Protection Officer?

**Reproduced from the International Journal for the Data Protection Officer, Privacy Officer, and Privacy Counsel, availabe here.  By Jordan L. Fischer, Esquire, Managing Partner, XPAN Law Group, LLC and Michael A. Shapiro, Esquire, XPAN Law Group, LLC Since the enactment of the European Union’s General Data Protection Regulation (the “Regulation”), the Data Protection Officer (“DPO”) […]

Jordan L. Fischer, Esquire is recognized on the 2019 Rising Star list for Pennsylvania in Technology Law

XPAN Law Group, LLC is proud to announce that Jordan L. Fischer, Esq., co-founder & managing partner, was recognized as a 2019 Rising Star in Pennsylvania for Technology Law by the Super Lawyers. Each year, no more than 2.5 percent of the lawyers in the state are selected by the research team at Super Lawyers […]

Year Number 2, A Rollercoaster Worth Riding

Dear Family, Friends, Team, Colleagues, and Everyone, XPAN is celebrating its Second Anniversary — even typing that makes us so proud! What started as just an idea has evolved into a full, live, real, law practice in a new and evolving field. Sometimes, we have to pinch ourselves to make sure it has all happened. […]

Nowhere to Run, Nowhere to Hide

This week we saw yet another rash of cyberattacks. The Philadelphia court system website was shut down Tuesday (May 21st) all afternoon because of a virus intrusion. The court website is where attorneys file all of their pleading (complaints, answers, motions) for court cases taking place in Philadelphia. And while it is bad enough to deprive […]

Insider Threats Continued – Your Own Employees Are Your Weakest Link

By Antonia Dumas, Associate at XPAN Law Group LLC In a previous blog post, we discussed  insider threats with a focus on a non-obvious threat, your third-party relationships, describing how an insider threat can be defined and the types of actors that can be a threat to the protection and privacy of your systems and […]

Better Late than Never: While Organizations Struggle to Comply with the California Consumer Privacy Act on Time, Ignorance of the Law Is Not an Option

By Michael A. Shapiro, Attorney at XPAN Law Group, LLC The California Consumer Privacy Act (CCPA) enacted last summer is the first comprehensive U.S. privacy law which creates broad rights for consumers in California and parallel duties on businesses regarding the use of private information.  Among the rights delineated by the CCPA, consumers can seek […]

One Year Later: How are the Regulators Enforcing the GDPR?

We are coming up on the first anniversary of the European Union’s General Data Protection Regulation (“GDPR”), one of the most anticipated data protection regulations in recent memory. Love it, hate it, indifferent — regardless of your personal feelings, the GDPR made waves. It was the catalyst that caused companies across all industries to start […]

Your Third-Party Relationships Are Insider Threats

By Antonia Dumas, Associate at XPAN Law Group LLC Last week, I had the pleasure of attending the inaugural Cyber Security Summit held in Philadelphia. One hot topic that came up during several presentations and panel discussions was the issue of insider threats. As I sat there listening to discussions of more obvious insider threats […]