William Gamble Archive
In efforts to curb cybersecurity and privacy issues, governments around the world have been tightening legislation on how organizations collect and share data. The most effective way to comply with these requirements is to draft the appropriate contracts. This is …
It seems like such a simple case. On August 24, 2022, California Attorney General Rob Bonta announced a settlement with Sephora, Inc., a French cosmetics company. The organization paid $1.2 million for violating the CCPA (California Consumer Privacy Act). But …
There is a common perception – one that’s especially popular among leaders and politicians – that the way to solve a problem is to pass a law. In the U.S., cybersecurity is a particular issue, and one the government has …
Product liability has been a significant area for class action litigation, with billions of dollars of awards made. Recent litigation includes cases against Johnson & Johnson and Bayer, which began after the organizations’ products were found to increase the risk …
This is a guest article by IT Governance USA GDPR Consultant William Gamble. I am one of the few lawyers with an advanced certification in cybersecurity. I help organizations identify and comply with relevant cybersecurity and privacy laws. Four years …
Third-party risk management focuses on identifying and reducing risks relating to vendors, suppliers, partners, contractors, and service providers. It has become more important than ever due to the growing trend in third-party data breaches. Incidents such as the SolarWinds hack …
Last month, the U.S. Congress passed the CIRCIA (Cyber Incident Reporting for Critical Infrastructure Act of 2022), which requires organizations involved in critical infrastructure to report cybersecurity incidents within 72 hours. Jen Easterly, the head of the CISA (Cybersecurity and …
There is a growing trend for organizations to invest in and promote positive social movements. Enter ESG (environmental, social, and governance) management. Organizations receive good ESG ratings for having a positive effect on society. This includes reducing their carbon footprint, …
Legislatures follow trends. Four years ago, there were only two U.S. state legislatures that proposed bills to protect consumer data. This year, there have been 34. Unfortunately, only three states – California, Virginia, and Colorado – have passed such bills. …
Litigation following a data breach is like adding insult to injury. The incident damages your reputation and slows your business as you try to correct the issues. Then you have to pay for litigation expenses and perhaps a destructive award. …
