In an opinion released on March 10, 2022, California Attorney General Rob Bonta addressed the applicability of the “right to know” under the California Consumer Privacy Act (CCPA) (pdf) to internal inferences that organizations develop about individuals. The opinion clarified… Read more
This month, the Securities and Exchange Commission (SEC) proposed new cybersecurity disclosure rules for publicly traded companies. The comment period is ongoing, but the take-away for public companies is immediate: a public company (no matter how large or small) needs… Read more
President Joe Biden recently signed into law the Cyber Incident Reporting For Critical Infrastructure Act of 2022. This new law updates the Federal Information Security Modernization Act (FISMA). The act adds responsibilities for federal agencies and the Cybersecurity & Infrastructure… Read more
The federal banking agencies recently issued a final regulation that will require a bank to notify its primary federal regulator of a cyberattack, or computer-security incident, no later than 36 hours after the bank determines a “notification incident” occurred. The… Read more
Supreme Court of Virginia Declines Certified Questions from Federal Court in In re: Capital One Consumer Data Security Breach Litigation The lawsuit In re: Capital One Consumer Data Security Breach Litigation, has already spawned new precedence related to engaging forensic… Read more
In a growing trend, states around the nation are passing or considering their own data privacy laws. The Colorado Privacy Act (CPA, or “the Act”) will make Colorado the third state to pass major data privacy legislation. This expanding web… Read more
Even as the world slowed in 2020, threat actors picked up their pace and used work-from-home infrastructure to spread malicious attacks. These bad actors also exploited trusted software vendors from Solar Winds to Microsoft, pushing new vulnerabilities across tens of… Read more
The Virginia Consumer Data Protection Act (CDPA, or “the Act”) makes Virginia the second state in the nation to have sweeping data privacy legislation. Nationally the CDPA could drive conversations around consumer data privacy and potentially spark discussions of a… Read more
Rarely do Virginia and California fall into the same camp on legislation, but that may change with Virginia’s Consumer Data Privacy Act (the “Act”). The Virginia House of Delegates overwhelmingly passed the Act on January 29th, and the Virginia Senate… Read more
Welcome to 2021! The Woods Rogers Cybersecurity and Data Privacy group is excited for new beginnings and a new year of solving privacy problems. Now is the time to review 2020’s wild ride from a data privacy law perspective and… Read more
Thank you for your interest in Woods Rogers. This web site provides general information about the firm and is not intended to be legal advice. Please note that contacting Woods Rogers by e-mail or otherwise does not establish an attorney-client relationship between us. An attorney-client relationship is established only after we have cleared any conflicts of interest and have agreed to represent you, as confirmed by your receipt of an engagement letter from us. You should not provide any confidential information or documents to us prior to our advising you that we are in a position to represent you.
Your proceeding to contact us by clicking "agree" reflects your acknowledgement of and agreement to this notice.