Hunter Ferguson chairs Stoel Rives’ global Privacy and Data Security practice and is a partner in its Litigation group. He counsels and advises a wide range of clients on an array of privacy and security matters, including compliance with GDPR, CalCPA, and other federal and state regulatory regimes, assessment and management of third-party risk, and development of internal programs, policies, and procedures. He regularly advises and represents clients in connection with data breach and security incident planning, preparation and response, including internal investigations, notifications and public announcements, and regulatory reporting. And he represents businesses and individuals in privacy and data security disputes and litigation. Hunter also maintains an active litigation practice, involving complex contract, copyright, trade secret, and business interference disputes, and he regularly prepares merits and amicus briefing and petitions for review and certiorari at every level of state and federal courts.
In Illinois, the Biometric Information Privacy Act (“BIPA”) regulates the collection and use of “biometric information” such as fingerprints, facial images, and voice records. It imposes significant penalties and has generated a cottage industry of class action litigation—hundreds of cases have been filed and millions of dollars in liability have been assessed. It is also … Continue Reading
In a recent letter to insurers, the New York State Department of Financial Services (“NYDFS”) acknowledged the key role cyber insurance plays in managing and reducing cyber risk – while also warning insurers that they could be writing policies that have the “perverse effect of increasing cyber risk.” If a cyber insurance policy does not … Continue Reading
Is your business using or thinking of using facial recognition technology for activities in Portland, Oregon? Think again. That’s the message to businesses operating in Portland in a new ordinance that broadly bans the use of facial recognition technology in the city, subject to certain exceptions. The ordinance, which took effect January 1, 2021, restricts … Continue Reading
Businesses are instituting widespread remote work policies and procedures to facilitate social distancing and “flatten the curve.” Enterprises simultaneously need to be mindful of increased data privacy and security risks. The risks can range from pandemic-related phishing emails to increased pressure on network architecture to well-intentioned employee shortcuts. Hackers will try to take advantage of … Continue Reading
Does your business collect personal information from residents in California? Does it monitor user activity on its website? If so, there is a good chance it will need to comply with the California Consumer Privacy Act (“CCPA”), which takes effect January 1, 2020. Following the European Union’s implementation of GDPR, California adopted the CCPA, which … Continue Reading
Stoel Rives LLP is pleased to announce that information privacy & data security attorney Dustin Berger has been recognized as an (ISC)2 Certified Information Systems Security Professional (CISSP). This certification demonstrates an individual’s understanding of cybersecurity strategy and its hands-on implementation. It also confirms that the holder has the advanced knowledge and technical skills to … Continue Reading