On November 2, 2018 Ohio’s new Data Protection Act went into effect. The Ohio DPA creates a new statutory affirmative defense against data breach tort claims and identifies specific cybersecurity frameworks that are now presumptively reasonable. KMK Law and Gratia, Inc. partnered together to discuss the impact of Ohio DPA on businesses, the steps companies need to take as a result, and what this “safe harbor” really means.
Ohio recently enacted the Ohio Data Protection Act[1] which was part of Attorney General DeWine’s CyberOhio Initiative. The Act will go into effect on November 2, 2018. Every Ohio business should be familiar with the Ohio DPA and determine whether they can or want to qualify for the benefits. The Ohio DPA also provides another reminder of the importance of examining and evaluating your data protection and written information governance policies.
September 2018 was a busy month for data privacy. We expect the next several months to be extremely active as well, especially with the number of new complaints and data breach notices filed in Europe since May. We will continue to monitor and update developments as the data privacy framework continues to evolve.
KMK Law Corporate Partner, Rob Lesan, presented at Interface Cincinnati 2018 on the topic of "GDPR: What We're Learned So Far and What to Expect."
G-Day is May 25, 2018, the day when the European Union’s General Data Protection Regulation (“GDPR) is set to go into effect. Even though the Regulation has been approved and available for review for more than a year, most companies are still working to determine whether GDPR applies and, if so, how to become GDPR compliant. The litigators from KMK’s Cybersecurity and Privacy Team have prepared a Legal Alert which helps companies answer both questions.
On February 20, 2018, the Securities and Exchange Commission (SEC) issued interpretive guidance to assist public companies in preparing disclosures about cybersecurity risks and incidents. This guidance indicates that the SEC is expecting more robust cybersecurity-related disclosures in the filings of public companies and encourages companies to implement comprehensive cybersecurity policies and procedures.
KMK Law Partner, Joe Callow, presented at the Greater Cincinnati ISSA Chapter Meeting on Wednesday, February 21, 2018 on the topic, "GDPR and Your Business: What You Need to Know and What You Need To Do." This presentation provided an updated analysis of GDPR, discussed its potential application, and provided action steps to establish compliance.
Subscribe
RSS Feed
Follow us on Facebook
Follow us on Twitter
Follow us on LinkedInTopics/Tags
Select- Cybersecurity and Privacy Law
- Privacy Laws
- California Consumer Privacy Act
- Privacy
- Cybersecurity Regulation
- GDPR
- Data Breach
- Cyber Insurance
- Coronavirus
- CCPA
- General Data Protection Regulation
- Class Action Litigation
- Mergers & Acquisitions
- SEC
- FISMA
- Incident Response Plan
- Information Governance
- Corporate Law
- E-Discovery
- Federal Trade Commission
- Department of Justice
- Litigation
- Seventh Circuit
Recent Posts
- New York Bans Sale of Certain Supplements to Minors
- GDPR Compliance: What is Privacy Shield 2.0?
- Connecticut's Data Privacy Law
- The California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA)
- The Utah Consumer Privacy Act
- The Colorado Privacy Act
- The Virginia Consumer Data Protection Act
- State Data Privacy Law Series
- TransUnion LLC v. Ramirez and the Impact on Class Action Litigation
- 2023: The Year of the CPRA and CDPA - Virginia Joins California in Passing Comprehensive Privacy Legislation