<b><i>Lessons from 2017 Enforcement Actions and Guidance</b></i><p>Regulators including the FTC, the Department of Health and Human Services Office of Civil Rights (OCR) — the agency responsible for enforcing the HIPAA rules for protected health information (PHI) — and state attorneys general have issued guidance and announced a number of settlements in data security cases that are instructive about measures that organizations can take to reduce the potential for a data breach or, if a breach does occur, provide appropriate notice.
Kevin Coy
Data security and breach notification issues continue to grab headlines, most recently in connection with the data breach announced by Equifax. Regulatory scrutiny is currently underway, with the Federal Trade Commission (FTC) taking the unusual step of publicly announcing that the agency is investigating the breach.
ENJOY UNLIMITED ACCESS TO THE SINGLE SOURCE OF OBJECTIVE LEGAL ANALYSIS, PRACTICAL INSIGHTS, AND NEWS IN Cybersecurity Law & Strategy
Already have an account? Sign In Now
For enterprise-wide or corporate access, please contact Customer Service at [email protected] or call 1-877-256-2473.
NOT FOR REPRINT
© 2026 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
Despite widespread investment into AI across the legal industry, just a small group of law firms are consistently realizing measurable returns in operational speed, financial visibility and revenue performance, according to a new report from Law.com and legal industry technology provider Elite.
Most firms are aiming their newest tools at the work they already do — pouring their most powerful technology into running the same tasks a little faster. But when everyone automates the same tasks at once, no one pulls ahead. That reaches the future a little faster while leaving a firm’s largest opportunity untouched — and that opportunity isn’t doing more of the existing work, but transforming how the high-value work gets done.
AI is becoming both an accelerant and a distraction for cybersecurity. In many respects, AI is acting as a stress test for existing security operations by exposing how difficult many organizations still find it to enforce basic controls consistently at scale.
Artificial intelligence is rapidly embedding itself into legal workflows, but much of the conversation treats all use cases as if they carry the same level of risk, even if they do not. The more useful question is not whether AI works, but where it can be safely applied and where it cannot.
© Copyright 2026 ALM Global, LLC trading as Centellic.
Advertise with Us Customer Support Terms of Service Privacy Policy
