Beware of Self-Imposed Requirements. Are You Meeting the Mark? 

By Antonia Dumas, Consultant at XPAN Law Group LLC We have made it clear time and time again that data privacy should be made a priority in your business – and many businesses are taking that advice and running with it. Good for you! But, beware of the high-standards and requirements you are setting up […]

Vendor Risk Management: Playing with Fire and Risking Getting Burned

In 2019, the global average cost of a data breach is $3.92 million; a 1.5 percent increase from the 2018 study. While it is impossible to predict exactly where and when a data breach will occur, the costs associated with the breach of personal data is one no organization can really afford. Over the past […]

The Call is Coming From Inside the House: Internal Privacy Breach Threats

This post is authored by Bridget Mead, a third-year student at Drexel University’s Thomas R. Kline School of Law. Ms. Mead is a legal-intern with the XPAN Law Group. While most may believe that the biggest threat to data privacy are dark web hackers who manage to break into the networks of major international organizations […]

Nevada Residents Gain a Right to Opt-Out of Sale of Their Personal Information

By Michael Shapiro, Esq., CIPP/US/E,  Attorney with XPAN Law Group, LLC On October 1, 2019,  Nevada SB 220, a bill which gives consumers a right to opt-out of sale of their personal information came into effect.  The law was passed back in May on the heels of the California Consumer Privacy Act (CCPA) but leapfrogged […]

Ransomware Is On the Rise

XPAN has published numerous blog posts over the years devoted to cybersecurity generally, and ransomware specifically. “Nowhere to Run, Nowhere to Hide“, ” Is Nothing Sacred? Recent Hackings on Our Governmental Entities“, and ” When Will We Learn????” to name just a few. We also speak on the topic of ransomware. And, despite the fact […]

Happy National Cybersecurity Awareness Month!

By Antonia Dumas, Consultant at XPAN Law Group LLC  Since it is now October – it is officially Cybersecurity Awareness Month once again!! This means that cybersecurity should be top of mind and you should take some time this month to learn how to better protect yourself and your business. In particular, this is a […]

The Right to be Forgotten: Search Engines under the Recent CJEU cases

The further we evolve into a post-GDPR world, the more we are starting to see guidance come from a variety of sources. The European Data Protection Board (“EDPB”) continues to provide guidelines to fill in ambiguities in areas of the GDPR that are less clear. In addition, the Court of Justice of the European Union […]

YouTube May Know My Kids Better Than I Do: The FTC hits YouTube with large fine

This post is authored by Bridget Mead, a third-year student at Drexel University’s Thomas R. Kline School of Law. Ms. Mead is a legal-intern with the XPAN Law Group. On September 4th, just as many parents were sending their kids back to school after a long summer break, the FTC announced its $170 million settlement […]

The Many Factors of Two-Factor Authentication

By Michael A. Shapiro, Esq., CIPP/US/E, attorney with XPAN Law Group Conventional cybersecurity wisdom says that adding a two-factor authentication to your online accounts is the single and simplest most important cybersecurity measure you can take.  There are different two-factor authentication mechanisms and not all are created equal in terms of security and convenience. Which […]

Data Categorizations: A Back to School Basic

Data categorizations should be on every company’s back-to-school supply list. A few years ago, we published a blog post about how when the kids go back-to-school, it is a good time to take stock of your cyber-readiness in business. After going through the harrowing task of back-to-school shopping and locating the very specific items that […]