Lynette Ryan Arce
Subscribe to Lynette Ryan Arce's Posts
Lynette Arce focuses her practice on matters of privacy, cybersecurity, and data breach response. She advises clients on state, federal, and international privacy issues, including risk management and regulatory compliance. She has served both private and public entities across various industries, including education, entertainment, hospitality, retail, and financial services. Read Lynette Arce's full bio.
By Laura E. Jehl and Lynette Ryan Arce on Oct 29, 2020
Posted In Data breach, Data Privacy, Enforcement
US hospitals and healthcare systems should be on high alert after a rare joint advisory issued by the Federal Bureau of Investigation (FBI), the Cybersecurity Infrastructure Security Agency (CISA) and the Department of Health and Human Services (HHS) warning all US hospitals and healthcare providers of an “increased and imminent cybercrime threat to US hospitals...
By Laura E. Jehl and Lynette Ryan Arce on Oct 13, 2020
Posted In Big Data, Consumer Protection, Cybersecurity, Data breach, Data Privacy, Enforcement
On October 1, 2020, the US Department of the Treasury’s Office of Foreign Assets Control (OFAC) issued an advisory alert that serves as a warning to entities who have been or will be the victim of a ransomware attack. As such, the crucial decision of whether to pay a ransom now comes with the additional...
By Laura E. Jehl, Todd McClelland, Lynette Ryan Arce and Austin Mooney on Sep 3, 2020
Posted In Big Data, Cybersecurity, Data breach, Data Privacy, Enforcement, Mobile Apps
On August 20, 2020, a criminal complaint was filed charging Joseph Sullivan, Uber’s former chief security officer, with obstruction of justice and misprision of a felony in connection with an alleged attempted cover-up of a 2016 data breach. These are serious charges for which Mr. Sullivan has the presumption of innocence. At the time of...
By Michael G. Morgan, Laura E. Jehl, Lynette Ryan Arce, James W. Kim, Brian Long and Wendy Zhang on Feb 3, 2020
Posted In Cybersecurity
On January 30, 2020, the US Department of Defense (DoD) released version 1.0 of the Cybersecurity Maturity Model Certification (CMMC) framework, which is available here, with appendices available here. This highly anticipated 390-page release supersedes the prior draft versions, the last of which was released in December 2019. The DoD will begin requiring contractors to obtain certification...
By Michael G. Morgan, Lynette Ryan Arce, Kristin E. Michaels, Christopher M. Murphy and Mark E. Schreiber on Nov 8, 2017
Posted In Big Data, Consumer Protection, Cybersecurity, Data breach, Data Privacy, Workplace Privacy
Although the Illinois Biometric Information Privacy Act has been on the books for almost 10 years, a recent surge in lawsuits has likely been brought on by developments in biometric scanning technology and its increased use in the workplace. At least 32 class action lawsuits have been filed in recent months by Illinois residents in...