Hannah Edmonds

Featured in: Favicon

thriveglobal.com Favicon

jdsupra.com Favicon

natlawreview.com Favicon

lexology.com Favicon

babygaga.com

Articles

New CPPA Regulations for Data Brokers and ADMT Rulemaking Package Advance | JD Supra

Nov 25, 2024 | jdsupra.com | Hannah Edmonds

On November 8, 2024, the California Privacy Protection Agency (CPPA) Board voted to adopt new regulations for data broker registration requirements. The CPPA Board also voted to advance proposed rules for insurance companies, cybersecurity audits, risk assessments, and automated decision-making technology (ADMT) to the formal rule making process. We wrote about these proposed rules in a July 2024 update.
Paul Hastings Hosts Panel on Litigation Trends and Risk Management | JD Supra

May 16, 2024 | jdsupra.com | Hannah Edmonds

On May 9, 2024, Paul Hastings participated in a panel on litigation trends and risk management at this spring’s Privacy+Security Forum. Panelists included Carter Simpson (Partner, Paul Hastings) and Matt Gardner (Senior Privacy Counsel, Ro). The panel covered their experiences defending against privacy class claims under the California Information Privacy Act (CIPA), Video Privacy Protection Act (VPPA), and other federal and state privacy laws.
Litigation Trends and Risk Management

May 15, 2024 | lexology.com | Hannah Edmonds

On May 9, 2024, Paul Hastings participated in a panel on litigation trends and risk management at this spring’s Privacy+Security Forum. Panelists included Carter Simpson (Partner, Paul Hastings) and Matt Gardner (Senior Privacy Counsel, Ro). The panel covered their experiences defending against privacy class claims under the California Information Privacy Act (CIPA), Video Privacy Protection Act (VPPA), and other federal and state privacy laws.
HHS’ Civil Rights Office Reaches Second-Ever Ransomware Settlement | JD Supra

Mar 5, 2024 | jdsupra.com | Hannah Edmonds

March 5, 2024 To embed, copy and paste the code into your website or blog: The Department of Health and Human Services (HHS), Office for Civil Rights (OCR) recently announced a settlement under the Health Insurance Portability and Accountability Act (HIPAA) with Green Ridge Behavioral Health, LLC (GRBH), which is a Maryland-based practice providing psychiatric evaluations, medication management, and psychotherapy. The settlement relates to a ransomware attack on GRBH’s network server in early...
HHS’ Civil Rights Office Reaches Second-Ever Ransomware Settlement

Mar 4, 2024 | lexology.com | Hannah Edmonds

The Department of Health and Human Services (HHS), Office for Civil Rights (OCR) recently announced a settlement under the Health Insurance Portability and Accountability Act (HIPAA) with Green Ridge Behavioral Health, LLC (GRBH), which is a Maryland-based practice providing psychiatric evaluations, medication management, and psychotherapy. The settlement relates to a ransomware attack on GRBH’s network server in early 2019 that affected protected health information of more than 14,000 people.
Data Breaches Exposing Protected Health Information Are Surging | JD Supra

Feb 28, 2024 | jdsupra.com | Hannah Edmonds

The number of large data breaches, those involving 500 or more people, exposing protected health information has increased exponentially in the last few years, and ransomware and hacking are the primary cyber threats in health care. There has been a 256% increase in large breaches reported to the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) that involve hacking and a 264% increase in ransomware reports just in the last five years.
Data Breaches Exposing Protected Health Information Are Surging

Feb 28, 2024 | lexology.com | Hannah Edmonds

The number of large data breaches, those involving 500 or more people, exposing protected health information has increased exponentially in the last few years, and ransomware and hacking are the primary cyber threats in health care. There has been a 256% increase in large breaches reported to the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) that involve hacking and a 264% increase in ransomware reports just in the last five years.
FBI, DOJ, and SEC Publish Guidance on Requesting Delayed Reporting of Item 1.05, Material Cybersecurity Incidents, on Form 8-K | JD Supra

Jan 12, 2024 | jdsupra.com | Hannah Edmonds

January 12, 2024 To embed, copy and paste the code into your website or blog: On July 26 2023, the Securities and Exchange Commission (SEC) adopted final rules intended to enhance and standardize disclosures of cybersecurity risk management, strategy, governance, and incident reporting by public companies.
FBI, DOJ, and SEC Publish Guidance on Requesting Delayed Reporting of Item 1.05, Material Cybersecurity Incidents, on Form 8-K

Jan 11, 2024 | lexology.com | Hannah Edmonds

On July 26 2023, the Securities and Exchange Commission (SEC) adopted final rules intended to enhance and standardize disclosures of cybersecurity risk management, strategy, governance, and incident reporting by public companies. One such update included amendments to Form 8-K to add new Item 1.05, requiring companies to report material cybersecurity incidents within four days of determining an incident is material.
SEC Speech on Cybersecurity Disclosure | JD Supra

Jan 9, 2024 | jdsupra.com | Hannah Edmonds |Spencer Young

On December 14, 2023, Erik Gerding, Director, Division of Corporation Finance at the Securities and Exchange Commission (“SEC”) gave a speech on the SEC’s final rules (the “Final Rule(s)”) regarding cybersecurity risk management, strategy, governance and incident reporting for public companies.