Data Law Insights

Data Law Insights

Legal insights on navigating privacy, data protection, cybersecurity, information governance, and e-discovery

Paul Mathis

Subscribe to all posts by Paul Mathis

NIST Surveys and Assesses Broad Landscape of IoT Cybersecurity Standards in Interagency Report

Posted in Cybersecurity / Data Security, Information Management, Internet of Things, Privacy
Following a draft Interagency Report published in February, the National Institute of Standards and Technology (“NIST”) has published NISTIR 8200: Interagency Report on the Status of International Cybersecurity Standardization for the Internet of Things (IoT), which seeks to assess the “current state of international cybersecurity standards development for IoT.” In this effort, the Report defines… Continue Reading

SEC Encourages Internal Accounting Controls to Guard Against Cyber Fraud

Posted in Cybersecurity / Data Security, Data Breach, Government Agencies
Concluding its investigation into the internal accounting controls of nine public issuers who were recent cyber fraud victims, the Securities and Exchange Commission (“SEC”), Division of Enforcement explicitly reminded issuers to consider cyber-related threats in developing and deploying their Section 13(b)(2)(B) internal accounting controls. The SEC emphasized the importance of tailoring internal accounting controls to… Continue Reading

Recent IoT Device Cases

Posted in Advertising & Product Risk Management, Cybersecurity / Data Security, Litigation
“There are many ways to surveil each other now, unfortunately,” including “microwaves that turn into cameras, et cetera.  So we know that that is just a fact of modern life.”  Kellyanne Conway, March 12, 2017 Interview with New Jersey’s The Record. Data from microwaves-turned-cameras has yet to appear in court, but data from other IoT devices… Continue Reading