See Credit Details Below
The past year has significantly changed the rules when it comes to privacy obligations. Technology companies across the globe are now confronted with a multitude of overlapping – and occasionally clashing – requirements for protecting the data of consumers. Those requirements also come with significant enforcement mechanisms, including the possibility of stiff fines and a crush of private litigation.
While significant attention has been paid to what various technology and social media companies will have to do in order to comply with the EU’s General Data Protection Regulation (GDPR) and California’s Consumer Privacy Act (CCPA), the concurrent discussion about how cybersecurity vendors are impacted by those laws has been significantly less robust. Such a conversation is, however, equally vital as in many ways those laws could have an even greater impact on how cybersecurity companies collect, analyze, store, and distribute information on cyber threats and bad actors.
This presentation will feature a discussion on the following areas:
- Basic overview of the GDPR and CCPA
- Where the two overlap
- Sections that directly impact cybersecurity providers (particularly those that rely on “personal data identifiers” as identified in both laws)
- How those laws specifically impact cybersecurity operations
- Possible workaround methods for cybersecurity vendors and consumers
The panelists include Steven P. Farmer, Brian E. Finch, and David M. Lisi, all partners at Pillsbury Winthrop Shaw Pittman LLP. Messrs. Farmer, Finch, and Lisi all focus their practices on various aspects of cybersecurity and privacy issues, and counsel a variety of cybersecurity vendors on compliance and liability issues.