Companies large and small are on heightened alert for cyber incidents following the SolarWinds Orion Platform software attack that came to light in late 2020.
Organizations of all sizes are facing daunting technological and logistical challenges, as much of the country’s workforce adjusts to working remotely. Privacy and data security risks only add to these challenges.
Unless you have been living under a data protection rock, or have no interaction with the world’s fifth largest economy, you are likely aware that the California Consumer Privacy Act (CCPA) went into effect on January 1, 2020.
On April 16, 2019, the Securities and Exchange Commission (“SEC”) Office of Compliance Inspections and Examinations (“OCIE”) issued a Risk Alert following OCIE’s examinations of investment advisers and broker-dealers. The Risk Alert identified some of the key compliance issues in the recent examinations related to Regulation S-P, which is the SEC’s principle rule covering privacy notices and policies and practices required to safeguard customer records and information.