Cybersecurity has become critically important to plan sponsors, plan administrators and plan participants. With retirement plans holding an estimated $9.3 trillion in assets as well as sensitive information for approximately 140 million plan participants, retirement accounts are especially attractive targets for cyber-enabled fraud. For instance, sophisticated phishing email schemes have proliferated during the COVID-19 pandemic,

During the COVID-19 pandemic, data privacy – and, in particular, employee data privacy – has been at the forefront of employers’ minds.  In the last six months, employers across the globe have been required to give careful thought to a whole host of potential issues, from contact tracing apps to temperature and other health checks

The Supreme Court last week heard the supermarket chain Morrisons argue that it should not be held vicariously liable for its then in-house senior internal auditor publishing the personal data of almost 100,000 employees deliberately and without authorisation.

In seeking to overturn the judgment of the Court of Appeal that it is vicariously liable, Morrisons

The New General Law of Data Protection (LGPD) innovates how the personal data must be processed by companies in Brazil. Inspired by the European General Data Protection Regulation (GDPR), the Brazilian law establishes the parameters according to which companies can process personal data, that until then was not properly regulated by applicable legislation. This means

The Employment & Benefits group is pleased to announce the publication of A Global Guide to Employee Data Privacy, the latest in our series of global guides.

Benefits of the Guide

Our largest guide to date, it is designed to help employers with operations in more than one country navigate the specific, and increasing,

Hong Kong’s Privacy Commissioner has issued a revised Code of Practice on Human Resource Management (the “Code”) and a revised Privacy Guidelines for Monitoring and Personal Data Privacy at Work (the “Guidelines”).

Neither the new Code nor the new Guidelines include any material change from their existing versions. The only changes are the new Code

The conference of the independent federal and state data protection authorities in Germany (“Data Protection Conference”) has published guidelines for employers on the limits of control of email and other Internet services in the workplace on January 27, 2016. Within these guidelines, the data protectionists emphasize their restrictive position regarding the employer’s control rights.

The