Jami Vibbert

Dec 11, 2024 | arnoldporter.com | Kevin Toomey |Jami Vibbert |Nancy Perkins |Anthony Raglani

The Consumer Financial Protection Bureau (CFPB) recently released a report identifying limits in federal privacy protections afforded by the Fair Credit Reporting Act (FCRA) and Gramm-Leach-Bliley Act (GLBA). The report strongly encourages state policymakers to consider how consumers are impacted by the FCRA and GLBA exemptions contained in all of the 191 broad state consumer privacy laws enacted over the past six years.

May 20, 2024 | arnoldporter.com | Ronald Lee |Jami Vibbert |Amy Davenport |James Courtney

Last month, Congress began considering the American Privacy Rights Act, or the APRA. The bill has rare bipartisan support and could pass this year. If Congress enacts the APRA, it will establish the first national privacy and data security standard for the United States. In this episode of Bona Fide Needs, Ron Lee, Jami Vibbert, Amy Davenport, and James Courtney from Arnold & Porter discuss what’s in the APRA, whether it can pass, and what it means for government contractors.

Apr 10, 2024 | arnoldporter.com | Emily Dorner |Nancy Perkins |Jason T. Raylesberg |Jami Vibbert

The federal government is moving rapidly to address concerns about access by foreign adversaries to certain personal and other sensitive U.S. data. In late February, President Biden issued an Executive Order titled “Preventing Access to Americans’ Bulk Sensitive Personal Data and United States Government-Related Data by Countries of Concern” (Order).

Dec 13, 2023 | arnoldporter.com | Robert Azarow |Daniel M. Hawke |Jane Norberg |Jami Vibbert

The Securities and Exchange Commission (SEC) recently sued SolarWinds Corporation and its Chief Information Security Officer (CISO), Timothy Brown, alleging their efforts to conceal the company’s poor cybersecurity practices and downplay its software’s vulnerabilities to cybersecurity attacks defrauded SolarWinds investors and customers.

Aug 4, 2023 | arnoldporter.com | Sara Adler |Robert Azarow |Jami Vibbert |Ronald Lee

On July 26, 2023, the SEC approved new disclosure rules1 designed to allow investors to evaluate a registrant’s exposure to cybersecurity risks and incidents, as well as their ability to manage and mitigate them.