• Posts by Tandy B. Mathis
    Counsel

    Tandy is counsel in the Litigation, Discovery, and Privacy & Data Security groups. She specializes in information management issues, including privacy and data security. Tandy uses her experience to help clients understand their ...

On August 11, 2022, the Consumer Financial Protection Bureau (“CFPB”) issued a circular (Circular 2022-04 or, the “Circular”) addressing whether insufficient data and information security practices can violate the prohibition against unfair acts or practices in the Consumer Financial Protection Act (“CFPA”). The CFPB concluded that inadequate security practices could give rise to a claim not only under federal data security laws like the Gramm-Leach-Bliley Act (“GLBA”), but also under the CFPA as well. The Circular discusses the elements of a claim under the CFPA and identifies a few specific practices that the CFPB identified as likely giving rise to a violation of the CFPA. The Circular, however, does not otherwise provide direction to the industry on expected information security practices.

Data Management in Government Investigations

Members of MVA’s Privacy and Data Security team, Charlotte Member Neil Bloomfield, Charlotte Counsel and Charlotte Associate Nathan White were speakers for the latest Privacy and Data Security Seminar that was held on August 22, 2018. This seminar discussed the data management challenges in today’s government investigations. This is an area undergoing significant changes in light of GDPR, the CLOUD Act and the impending suspension of the Privacy Shield. This CLE focused on both the legal restrictions and practical challenges confronting U.S. counsel when ...

The CLOUD Act – Congress Passes New Bill Which Will Impact Access To Cross-Border Data
This post originally appeared on the Moore & Van Allen DataPoints Blog. By Tandy MathisOn Friday, March 23, 2018, Congress passed a 2,232 page omnibus spending bill. Included in the bill was a bipartisan act known as the “Clarifying Lawful Overseas Use of Data Act” or CLOUD Act, which will allow United States law enforcement to access the data stored abroad for U.S. citizens and will provide some relief to foreign law enforcement agencies to access the data of their citizens when that data is stored in the U.S.

The CLOUD Act Overhauls an Outdated Stored Communications Act (SCA ...

About MVA White Collar Defense, Investigations, and Regulatory Advice Blog

As government authorities around the world conduct overlapping investigations and bring parallel proceedings in evolving regulatory environments, companies face challenging regulatory and criminal enforcement dynamics. We help keep our clients up to date in these fast-moving areas and to serve as a thought leader.

Stay Informed

* indicates required
Jump to Page

Subscribe To Our Newsletter

Stay Informed

* indicates required

By using this site, you agree to our updated Privacy Policy and our Terms of Use.