KMK Law Cybersecurity & Privacy Blog

Cybersecurity remains one of the top concerns of companies across the country, especially as companies continue to operate, or plan to operate again, in a remote work environment.  KMK Law is a proud sponsor of the NKU Cybersecurity Workshop Series, a premier event in the region.

As businesses continue to operate remotely, data security is more important than ever.  Given this new environment of millions of employees working remotely, it is not surprising that there has been a significant uptick in ransomware attacks over the last two months.

As employees continue to work from home during the COVID-19 pandemic, more and more businesses (including courts) are turning to alternative forms of face-to-face meetings by utilizing video conferencing applications. These virtual video-chat meetings prompt users to use the cameras and microphones on their electronic devices (such as a phones, laptops, or tablets) to connect with other individuals using the application and see and hear the other person(s) they are chatting with in real time.

Zoom has quickly become the most popular form of video chat, with nearly 200 million ...

Those privacy professionals following the California Consumer Privacy Act (also known as the CCPA) have been eagerly awaiting final regulations from the California Attorney General (CA AG). Unfortunately, we will have to wait a little longer. On February 10, 2020, the CA AG published the Revised Proposed Regulations. This means that the California public will have another opportunity to submit their comments on the CCPA regulations before the CA AG makes additional revisions. The deadline to submit written comments is February 25, 2020. From there, the CA AG has until July 1, 2020 to finalize the regulations.

As we ring in the New Year, privacy professionals are collectively holding their breath: January 1, 2020 marked the effective date of the California Consumer Privacy Act, also known as the CCPA.

Every month, we see a new set of privacy best practices or a new set of regulations proposed or adopted by a state, Congress, the White House, or countries around the globe. The versions of best practices continue to multiply and the layers of regulation continue to expand. Every new group or political entity wants to out-perform the last – but has this one-upmanship gone too far?

All eyes are on California as the countdown to California’s Consumer Privacy Act (CCPA) continues. This attention is for good reason—the CCPA is a data privacy law with the potential to change the landscape of data collection practices in the U.S. Approximately 500,000 U.S. businesses in various industries will have to comply with this new law when it goes into effect on January 1, 2020. When the CCPA goes into effect, consumers may then exercise their private right of action. This means that consumers may bring a civil lawsuit against any business for a data breach and potentially ...

On November 2, 2018 Ohio’s new Data Protection Act went into effect.  The Ohio DPA creates a new statutory affirmative defense against data breach tort claims and identifies specific cybersecurity frameworks that are now presumptively reasonable.  KMK Law  and Gratia, Inc. partnered together to discuss the impact of Ohio DPA on businesses, the steps companies need to take as a result, and what this “safe harbor” really means. 

Ohio recently enacted the Ohio Data Protection Act[1] which was part of Attorney General DeWine’s CyberOhio Initiative. The Act will go into effect on November 2, 2018. Every Ohio business should be familiar with the Ohio DPA and determine whether they can or want to qualify for the benefits. The Ohio DPA also provides another reminder of the importance of examining and evaluating your data protection and written information governance policies.