Tennessee CyberSecurity Law

Latest Articles

SBA EIDL Data Breach
The SBA EIDL Data Breach

The Small Business Administration (SBA) Economic Injury Disaster Loan (EIDL) program suffered a data breach of nearly 8,000 small-business owners, disclosing many owner’s social security numbers. The federal government acted to provide relief to small businesses under the CARES Act…

Consumer Rights Under the CCPA
Consumer Rights Under the CCPA

The Consumer Rights Under the CCPA The CCPA guarantees a number of consumer rights, and businesses need to take steps to ensure compliance. Most of the rights are explicitly enumerated within the text of the CCPA. However, some are implicitly…

Tennessee's Data Breach Notification Law
Tennessee’s Data Breach Notification Law

Tennessee’s data breach notification law requires “information holders” to notify residents of Tennessee within 45 days when their personal information was acquired, or reasonably believed acquired, by an unauthorized person following a “breach of system security”. As of 2020, every…

the obligation of a bank to give notice to the FDIC following a breach, it depends on whether the FDIC is its primary federal regulator.
When Must a Bank Report a Data Breach to the FDIC?

UPDATE: On November 18, 2021, the FDIC issued a new final rule (“The Computer-Security Incident Notification Final Rule”) altering the obligations discussed below.  Notably, all financial institutions subject to OCC, FDIC or Federal Reserve jurisdiction must now notify their primary…

Does the CCPA Apply to My Tennessee Business?
Does the CCPA apply to my Tennessee business?

The California Consumer Privacy Act (CCPA) is the most expansive state privacy law in the United States. The law went into effect on January 1, 2020, after months of negotiations and drafting. Although it is a California state law, the…