Lynette Ryan Arce Lynette Ryan Arce

Subscribe to Lynette Ryan Arce's Posts
Lynette Arce focuses her practice on matters of privacy, cybersecurity, and data breach response. She advises clients on state, federal, and international privacy issues, including risk management and regulatory compliance. She has served both private and public entities across various industries, including education, entertainment, hospitality, retail, and financial services. Read Lynette Arce's full bio. 

Federal Agencies Partner to Warn Healthcare Systems of Imminent Cyber Threat

By and on Oct 29, 2020
Posted In Data breach, Data Privacy, Enforcement

US hospitals and healthcare systems should be on high alert after a rare joint advisory issued by the Federal Bureau of Investigation (FBI), the Cybersecurity Infrastructure Security Agency (CISA) and the Department of Health and Human Services (HHS) warning all US hospitals and healthcare providers of an “increased and imminent cybercrime threat to US hospitals...

Continue Reading

OFAC Advisory Warns of Civil Penalties for Ransomware Payments

By and on Oct 13, 2020
Posted In Big Data, Consumer Protection, Cybersecurity, Data breach, Data Privacy, Enforcement

On October 1, 2020, the US Department of the Treasury’s Office of Foreign Assets Control (OFAC) issued an advisory alert that serves as a warning to entities who have been or will be the victim of a ransomware attack. As such, the crucial decision of whether to pay a ransom now comes with the additional...

Continue Reading

Uber Criminal Complaint Raises the Stakes for Breach Response

By , , and on Sep 3, 2020
Posted In Big Data, Cybersecurity, Data breach, Data Privacy, Enforcement, Mobile Apps

On August 20, 2020, a criminal complaint was filed charging Joseph Sullivan, Uber’s former chief security officer, with obstruction of justice and misprision of a felony in connection with an alleged attempted cover-up of a 2016 data breach. These are serious charges for which Mr. Sullivan has the presumption of innocence. At the time of...

Continue Reading

Tackling Increased Cybersecurity Requirements in the Defense Industrial Base

By , , , , and on Feb 3, 2020
Posted In Cybersecurity

On January 30, 2020, the US Department of Defense (DoD) released version 1.0 of the Cybersecurity Maturity Model Certification (CMMC) framework, which is available here, with appendices available here. This highly anticipated 390-page release supersedes the prior draft versions, the last of which was released in December 2019. The DoD will begin requiring contractors to obtain certification...

Continue Reading

To Scan or Not to Scan: Surge in Lawsuits under Illinois Biometrics Law

By , , , and on Nov 8, 2017
Posted In Big Data, Consumer Protection, Cybersecurity, Data breach, Data Privacy, Workplace Privacy

Although the Illinois Biometric Information Privacy Act has been on the books for almost 10 years, a recent surge in lawsuits has likely been brought on by developments in biometric scanning technology and its increased use in the workplace. At least 32 class action lawsuits have been filed in recent months by Illinois residents in...

Continue Reading