Nevada Residents Gain a Right to Opt-Out of Sale of Their Personal Information

By Michael Shapiro, Esq., CIPP/US/E,  Attorney with XPAN Law Group, LLC On October 1, 2019,  Nevada SB 220, a bill which gives consumers a right to opt-out of sale of their personal information came into effect.  The law was passed back in May on the heels of the California Consumer Privacy Act (CCPA) but leapfrogged […]

Ransomware Is On the Rise

XPAN has published numerous blog posts over the years devoted to cybersecurity generally, and ransomware specifically. “Nowhere to Run, Nowhere to Hide“, ” Is Nothing Sacred? Recent Hackings on Our Governmental Entities“, and ” When Will We Learn????” to name just a few. We also speak on the topic of ransomware. And, despite the fact […]

Happy National Cybersecurity Awareness Month!

By Antonia Dumas, Consultant at XPAN Law Group LLC  Since it is now October – it is officially Cybersecurity Awareness Month once again!! This means that cybersecurity should be top of mind and you should take some time this month to learn how to better protect yourself and your business. In particular, this is a […]

The Right to be Forgotten: Search Engines under the Recent CJEU cases

The further we evolve into a post-GDPR world, the more we are starting to see guidance come from a variety of sources. The European Data Protection Board (“EDPB”) continues to provide guidelines to fill in ambiguities in areas of the GDPR that are less clear. In addition, the Court of Justice of the European Union […]

YouTube May Know My Kids Better Than I Do: The FTC hits YouTube with large fine

This post is authored by Bridget Mead, a third-year student at Drexel University’s Thomas R. Kline School of Law. Ms. Mead is a legal-intern with the XPAN Law Group. On September 4th, just as many parents were sending their kids back to school after a long summer break, the FTC announced its $170 million settlement […]

The Many Factors of Two-Factor Authentication

By Michael A. Shapiro, Esq., CIPP/US/E, attorney with XPAN Law Group Conventional cybersecurity wisdom says that adding a two-factor authentication to your online accounts is the single and simplest most important cybersecurity measure you can take.  There are different two-factor authentication mechanisms and not all are created equal in terms of security and convenience. Which […]

Data Categorizations: A Back to School Basic

Data categorizations should be on every company’s back-to-school supply list. A few years ago, we published a blog post about how when the kids go back-to-school, it is a good time to take stock of your cyber-readiness in business. After going through the harrowing task of back-to-school shopping and locating the very specific items that […]

Do Not Hit The Red Button! Making Cybersecurity and Data Privacy Training A Requirement

By Antonia Dumas, Associate at XPAN Law Group LLC Keep your employees from hitting the red button! Those of you that are fans of The Twilight Zone (Button, Button) or saw the poor modern remake (The Box) may remember the episode with the mysterious box that arrived on someone’s doorstep with only a big red […]

An Active Summer for GDPR: Part II, Video Surveillance Data and the US CLOUD Act

In an effort to make sure everyone is up-to-date on the guidelines, decisions, and other relevant changes in European data protection, XPAN is providing a break down of what you may have missed over those relaxing summer months. Last week (available here), we provided a breakdown of the first of two plenary sessions held by […]

An Active Summer for GDPR: Part I, Codes of Conduct & Certification under the GDPR

As the summer is beginning to wind down, it is a good time to reflect on the last few months and to set priorities for the upcoming fall and winter months when it comes to a company’s security and privacy infrastructure. And, the EU authorities have had an active summer — giving companies in all […]