The DOJ Announces the Creation of a New Cybersecurity Task Force

On Tuesday, Attorney General Jeff Sessions announced that the Department of Justice would create a “Cyber-Digital Task Force” designed to investigate and identify ongoing global cybersecurity threats. According to a press release issued by the Justice Department, the proposed task force would prioritize its efforts on specific areas of cybersecurity risk, including efforts to interfere… Continue reading The DOJ Announces the Creation of a New Cybersecurity Task Force

Oregon Legislation Alert

This week, Oregon lawmakers introduced a bill (HB4147) that would require companies to notify consumers within 45 days of discovering a data breach of their personal information. The so-called “Equifax Bill” also would prohibit companies from charging consumers or requesting their credit or debit card numbers to redeem offers for free credit card monitoring or a… Continue reading Oregon Legislation Alert

Apple, Cisco, Aon, and Allianz Announce Joint Cyber Risk Management Solution

Earlier this week, Apple, Cisco, Aon, and Allianz announced their plan to create a joint cyber risk management service intended to better protect companies facing or dealing with cyber attacks.  According to the companies’ joint press release, the proposed solution would be comprised of “cyber resilience evaluation services from Aon, the most secure technology from… Continue reading Apple, Cisco, Aon, and Allianz Announce Joint Cyber Risk Management Solution

Developing (or Updating) Your Document Retention Policy

With the increasing proliferation of electronically-stored information (“ESI”), it is more important than ever to have a well-rounded document retention policy (“DRP”) for your business. The purpose of a DRP is to provide clear guidelines for the review, retention, preservation, and destruction of your documents. A DRP should not only cover documents and ESI created… Continue reading Developing (or Updating) Your Document Retention Policy

Oregon’s Data Breach Notification Law

If you do business in Oregon and own, maintain, or possess data about Oregon residents, you must comply with Oregon’s Consumer Identity Theft Protection Act (the “Act”). The Act requires the implementation of reasonable safeguards to protect the security, confidentiality, and integrity of personal information. Personal information is defined as: Social Security number, driver’s license… Continue reading Oregon’s Data Breach Notification Law