Beware of Self-Imposed Requirements. Are You Meeting the Mark? 

By Antonia Dumas, Consultant at XPAN Law Group LLC We have made it clear time and time again that data privacy should be made a priority in your business – and many businesses are taking that advice and running with it. Good for you! But, beware of the high-standards and requirements you are setting up […]

Vendor Risk Management: Playing with Fire and Risking Getting Burned

In 2019, the global average cost of a data breach is $3.92 million; a 1.5 percent increase from the 2018 study. While it is impossible to predict exactly where and when a data breach will occur, the costs associated with the breach of personal data is one no organization can really afford. Over the past […]

The Call is Coming From Inside the House: Internal Privacy Breach Threats

This post is authored by Bridget Mead, a third-year student at Drexel University’s Thomas R. Kline School of Law. Ms. Mead is a legal-intern with the XPAN Law Group. While most may believe that the biggest threat to data privacy are dark web hackers who manage to break into the networks of major international organizations […]

Nevada Residents Gain a Right to Opt-Out of Sale of Their Personal Information

By Michael Shapiro, Esq., CIPP/US/E,  Attorney with XPAN Law Group, LLC On October 1, 2019,  Nevada SB 220, a bill which gives consumers a right to opt-out of sale of their personal information came into effect.  The law was passed back in May on the heels of the California Consumer Privacy Act (CCPA) but leapfrogged […]

Happy National Cybersecurity Awareness Month!

By Antonia Dumas, Consultant at XPAN Law Group LLC  Since it is now October – it is officially Cybersecurity Awareness Month once again!! This means that cybersecurity should be top of mind and you should take some time this month to learn how to better protect yourself and your business. In particular, this is a […]

The Right to be Forgotten: Search Engines under the Recent CJEU cases

The further we evolve into a post-GDPR world, the more we are starting to see guidance come from a variety of sources. The European Data Protection Board (“EDPB”) continues to provide guidelines to fill in ambiguities in areas of the GDPR that are less clear. In addition, the Court of Justice of the European Union […]

YouTube May Know My Kids Better Than I Do: The FTC hits YouTube with large fine

This post is authored by Bridget Mead, a third-year student at Drexel University’s Thomas R. Kline School of Law. Ms. Mead is a legal-intern with the XPAN Law Group. On September 4th, just as many parents were sending their kids back to school after a long summer break, the FTC announced its $170 million settlement […]

Data Categorizations: A Back to School Basic

Data categorizations should be on every company’s back-to-school supply list. A few years ago, we published a blog post about how when the kids go back-to-school, it is a good time to take stock of your cyber-readiness in business. After going through the harrowing task of back-to-school shopping and locating the very specific items that […]

Do Not Hit The Red Button! Making Cybersecurity and Data Privacy Training A Requirement

By Antonia Dumas, Associate at XPAN Law Group LLC Keep your employees from hitting the red button! Those of you that are fans of The Twilight Zone (Button, Button) or saw the poor modern remake (The Box) may remember the episode with the mysterious box that arrived on someone’s doorstep with only a big red […]

An Active Summer for GDPR: Part II, Video Surveillance Data and the US CLOUD Act

In an effort to make sure everyone is up-to-date on the guidelines, decisions, and other relevant changes in European data protection, XPAN is providing a break down of what you may have missed over those relaxing summer months. Last week (available here), we provided a breakdown of the first of two plenary sessions held by […]