Last week, the CFPB last week finalized its rule permitting certain financial institutions to post their annual privacy notices online, claiming it will benefit consumers and financial institutions alike. The rule became effective on October 28, 2014, and applies to banks and non-banks within the CFPB’s jurisdiction.
The Investment Lawyer, Vol.21, No. 8, August 2014
Reprinted with Permission
Regulatory focus on cybersecurity is intensifying. Unlike other compliance matters, the deterrent effect of enforcement actions following data security breaches may be insufficient to achieve regulators’ purpose of ensuring that technology platforms are secure before an event occurs. Thus, in the area of cybersecurity, regulators appear to be shunning granular, prescriptive rules and instead insisting upon more holistic management of cybersecurity risk. Read More