Data Privacy & Security Advisors's Avatar

Data Privacy & Security Advisors

@dpsa.bsky.social

We are a team of senior-level data privacy and security experts with combined expertise in the strategy, operation, and execution of global data protection programs. www.TheDPSA.com

75 Followers  |  0 Following  |  21,852 Posts  |  Joined: 20.11.2024  |  1.1032

Latest posts by dpsa.bsky.social on Bluesky

Preview
Recent ICO Data Breach Enforcement Emphasizes the Importance of a Robust Breach Response In the final quarter of 2025, the UK Information Commissioner’s Office (ICO) issued fines under the General Data Protection Regulation (GDPR) totaling £15 million against Capita plc, Capita Pension Solutions Limited (together, “Capita”) and LastPass UK Limited for data breaches.... By: Skadden, Arps, Slate, Meagher & Flom LLP
03.02.2026 21:59 — 👍 0    🔁 0    💬 0    📌 0
Preview
Class Action Decisions Published December 2025 Highlights from this issue include: Numerosity Requirement for Settlements. The U.S. District Court for the Northern District of West Virginia denied a motion for final approval of a class action settlement against the City of Morgantown over the city's decision to enforce an anti-panhandling ordinance...... By: Shook, Hardy & Bacon L.L.P.
03.02.2026 21:59 — 👍 0    🔁 0    💬 0    📌 0
Preview
What is OpenClaw, and Why Should You Care? Over 100,000 people just gave an AI assistant root access to their computers. That assistant can now talk to other AI assistants on a social network humans cannot post to.... By: Baker Botts L.L.P.
03.02.2026 21:59 — 👍 0    🔁 0    💬 0    📌 0
Preview
Just Another NDA? Why M&A Confidentiality Agreements Are Different When it’s time to finally sell your company or if you’re exploring a potential acquisition target, one of the first documents you will encounter is the confidentiality agreement or non-disclosure agreement (“NDA”).... By: Dickinson Wright
03.02.2026 21:59 — 👍 0    🔁 0    💬 0    📌 0
Preview
U.S. CISA adds SolarWinds Web Help Desk, Sangoma FreePBX, and GitLab flaws to its Known Exploited Vulnerabilities catalog U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds SolarWinds Web Help Desk, Sangoma FreePBX, and GitLab flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added SolarWinds Web Help Desk, Sangoma FreePBX, and GitLab flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: The first […]
03.02.2026 21:59 — 👍 0    🔁 0    💬 0    📌 0
Preview
JAMS Adds Frost Brown Atty With Healthcare, Tech Chops Alternative dispute resolution provider JAMS has brought on a Frost Brown Todd LLP partner in its Atlanta office, strengthening its panel with an attorney experienced in regulated industries like healthcare. 
03.02.2026 21:48 — 👍 0    🔁 0    💬 0    📌 0
Preview
Cybersecurity & Privacy Group Of The Year: Morgan & Morgan Morgan & Morgan PA was co-lead counsel in a class action that secured a $425 million jury verdict finding that Google illegally collected information from 98 million cellphone users who had asked the tech giant not to track their activity, earning the law firm a spot as one of the 2025 Law360 Cybersecurity & Privacy Groups of the Year.
03.02.2026 21:48 — 👍 0    🔁 0    💬 0    📌 0
Preview
How Insurers Are Wording AI Exclusions Artificial intelligence exclusions are now available for use in insurance policies, meaning corporate risk managers must determine how those exclusions are interpreted and applied, and how they define AI, says David Kroeger at Jenner & Block.
03.02.2026 21:48 — 👍 0    🔁 0    💬 0    📌 0
Preview
GlassWorm Malware Returns to Shatter Developer Ecosystems The self-replicating malware has poisoned a fresh set of Open VSX software components, leaving potential downstream victims with infostealer infections.
03.02.2026 21:47 — 👍 0    🔁 0    💬 0    📌 0
Preview
Getting Ready to Use the DROP The January 31 deadline for companies that operated as data brokers in 2025 to register in California has passed, but registration is just the beginning of what lies ahead for data brokers in the remainder of 2026 (and beyond).... By: Kelley Drye & Warren LLP
03.02.2026 21:03 — 👍 0    🔁 0    💬 0    📌 0
Preview
AI Trends For 2026 - EU Shifts from Expansion to Consolidation From the AI Act to the Data Act and from the Data Governance Act to the DMA and DSA, the EU has rapidly expanded its AI and digital regulations over the past five years. In the field of AI and data regulation, 2026 will be characterized by consolidation rather than further expansion.... By: MoFo Tech
03.02.2026 21:03 — 👍 0    🔁 0    💬 0    📌 0
Preview
Walls Have Ears: Data, Privacy, and Real Estate Buildings collect data about the experiences of occupants creating compliance questions that affect transaction values.... By: Goodwin
03.02.2026 21:03 — 👍 0    🔁 0    💬 0    📌 0
Preview
U.S. Supreme Court to Define “Consumer” Under VPPA The U.S. Supreme Court will soon decide who qualifies as a “consumer” under the federal Video Privacy Protection Act, a 1988 law originally enacted to protect the privacy of individuals’ video rental and purchase records. Continue Reading ›
03.02.2026 20:54 — 👍 0    🔁 0    💬 0    📌 0
Preview
European Commission Announces New Cybersecurity Package On January 20, 2026, the European Commission proposed a comprehensive new cybersecurity package aimed at strengthening the EU’s cybersecurity resilience and enhancing its capacity to manage evolving threats. Continue Reading ›
03.02.2026 20:54 — 👍 0    🔁 0    💬 0    📌 0
Preview
Thompson Hine Adds 6 Financial Services Attys In Chicago Thompson Hine LLP has expanded its Chicago office with a six-attorney securities litigation and regulatory enforcement team from UB Greensfelder LLP.
03.02.2026 20:51 — 👍 0    🔁 0    💬 0    📌 0
Preview
Australia’s Privacy Regulator Beginning 2026 With Its First Compliance Sweep The Office of the Australian Information Commissioner (OAIC), Australia’s privacy regulator, is conducting its first ever privacy compliance sweep, as of this January. The compliance sweep will include a review of the privacy policies of businesses that collect information in person.... By: K&L Gates LLP
03.02.2026 20:05 — 👍 0    🔁 0    💬 0    📌 0
Preview
Insurance Claims Data Fair Game In Instagram Addiction Suit A Massachusetts judge said the state's attorney general may continue reviewing health insurance claims data from two agencies it subpoenaed months after the close of discovery in its social media addiction lawsuit against Instagram.
03.02.2026 19:54 — 👍 0    🔁 0    💬 0    📌 0
Preview
1st Circ. Pushes For Settlement In Mass. 'Right-To-Repair' Suit The First Circuit suggested Tuesday that major automakers and the Massachusetts Attorney General's Office should work together to resolve a suit over compliance with a state law requiring open access to vehicle telematics systems.
03.02.2026 19:54 — 👍 0    🔁 0    💬 0    📌 0
Preview
Paperless Law Firm Seeks Coverage For Ransomware Attack A personal injury law firm told a Kansas federal court that an excess insurer owes it coverage for lost business revenue from a ransomware attack, arguing that as a paperless firm it was essentially shut down for several days because of the attack.
03.02.2026 19:54 — 👍 0    🔁 0    💬 0    📌 0
Preview
Moltbook and the Rise of AI-Agent Networks: An Enterprise Governance Wake-Up Call The digital town square has grown quiet for humans, replaced by the frenetic, invisible humming of a million machines. In the opening weeks of 2026, a platform called Moltbook has emerged as the premier social destination for autonomous AI agents, leaving human observers to peer through the glass at a society they can no longer join.... By: EDRM - Electronic Discovery Reference Model
03.02.2026 19:08 — 👍 0    🔁 0    💬 0    📌 0
Preview
HIPAA Covered Entity and Part 2 Program Updates to Notice of Privacy Practices Under recent federal rulemaking, Part 2 Programs and HIPAA covered entities that process Part 2 Substance Use Disorder (SUD) records must update their Notice of Privacy Practices (NPP) by February 16, 2026. Which Providers Are Affected? Part 2 SUD records are those related to a federally-assisted substance use disorder treatment provider. Common examples include opioid treatment programs (OTPs), hospital-based addiction counselors and specialized residential or outpatient treatment facilities.... By: Roetzel & Andress
03.02.2026 19:08 — 👍 0    🔁 0    💬 0    📌 0
Preview
8-Minute Access: AI Accelerates Breach of AWS Environment The AI-assisted attack, which started with exposed credentials from public S3 buckets, rapidly achieved administrative privilges.
03.02.2026 18:56 — 👍 0    🔁 0    💬 0    📌 0
Preview
Why Data Protection Matters Every day, businesses collect personal information such as names, email addresses, phone numbers and payment details. This information is valuable and must be handled carefully. Unfortunately, cyberattacks and data leaks are becoming increasingly common, putting people’s personal information at risk. To prevent this, organizations need clear rules that explain how personal data is protected and used responsibly.... By: Cohen Seglias Pallas Greenhall & Furman PC
03.02.2026 18:11 — 👍 0    🔁 0    💬 0    📌 0
Preview
GSA Issues New Framework for Protecting CUI in Contractor Systems Last month the General Services Administration’s (“GSA”) Office of the Chief Information Security Officer (“OCISO”) issued CIO-IT Security-21-112 Rev. 1, a procedural guide governing how Controlled Unclassified Information (“CUI”) must be protected when it resides in nonfederal contractor systems. Although styled as internal process guidance rather than a regulation, the document establishes a detailed approval framework that will determine which contractors are eligible for GSA contracts that... By: Blank Rome LLP
03.02.2026 18:11 — 👍 0    🔁 0    💬 0    📌 0
Preview
Dark Patterns Undermine Security One Click at a Time People trust organizations to do the right thing, but websites’ and apps’ dark patterns pose a hidden threat that can lead to inadequate security behaviors.
03.02.2026 17:02 — 👍 0    🔁 0    💬 0    📌 0
Preview
Hackers abused React Native CLI flaw to deploy Rust malware before public disclosure Hackers exploit a critical React Native CLI flaw (CVE-2025-11953) to run remote commands and drop stealthy Rust malware, weeks before public disclosure. Attackers are actively exploiting a critical flaw in the React Native CLI Metro server, tracked as CVE-2025-11953. The React Native CLI’s Metro dev server binds to external interfaces by default and exposes a […]
03.02.2026 16:17 — 👍 0    🔁 0    💬 0    📌 0
Preview
[Webinar] Navigating Technology & Privacy Law for Business Owners - February 11th, 12:00 pm - 12:30 pm ET As technology continues to morph, business owners face increasing responsibilities and risks when handling personal data, deploying AI tools, and managing internal systems. With proposed legislation, evolving federal standards, and the rapid expansion and use of AI in daily business operations, organizations must stay informed to mitigate risk and maintain trust.... By: Foster Swift Collins & Smith
03.02.2026 16:17 — 👍 0    🔁 0    💬 0    📌 0
RADICL Raises $31 Million for vSOC The company will use the investment to accelerate development of its autonomous virtual security operations center (vSOC). The post RADICL Raises $31 Million for vSOC appeared first on SecurityWeek.
03.02.2026 16:02 — 👍 0    🔁 0    💬 0    📌 0
Preview
Wiretapping Litigation Shows No Signs Of Slowing In California And Florida Companies with consumer-facing websites can expect to see continued litigation in 2026 under the California Invasion of Privacy Act (CIPA) and, the Florida Security of Communications Act (FSCA) over their use of website analytics tools. We previously commented on plaintiffs’ efforts to recover liquidated damages under CIPA by alleging that modern tools such as cookies and pixels used to serve targeted advertising and conduct website analytics constitute “trap and trace” devices or “pen... By: Eversheds Sutherland (US) LLP
03.02.2026 15:20 — 👍 0    🔁 0    💬 0    📌 0
RapidFort Raises $42M to Automate Software Supply Chain Security The company will use the latest capital to scale its go-to-market efforts and expand its platform’s capabilities. The post RapidFort Raises $42M to Automate Software Supply Chain Security appeared first on SecurityWeek.
03.02.2026 15:05 — 👍 0    🔁 0    💬 0    📌 0