The written information security plan (WISP) is not just another compliance document, it's a practical roadmap that turns abstract data protection duties into concrete business practices.
December 01, 2025Alfred R. Brunetti
“Shadow AI” highlights a growing risk for firms that have yet to develop comprehensive governance strategies for artificial intelligence. In today’s rapidly evolving digital landscape, the question is not whether AI is present in your organization, but whether it is being managed responsibly.
December 01, 2025Robert PadillaThe written information security plan (WISP) is not just another compliance document, it's a practical roadmap that turns abstract data protection duties into concrete business practices.
December 01, 2025Alfred R. BrunettiWhat started off as a law directed at Blockbuster video rentals is now being deployed against the New England Patriots, part of a broader privacy trend that will increasingly impact a sports industry eager to embrace advanced technologies that exploit fan and athlete data. A class action filed against the NFL team alleged the storied franchise ran afoul of the Video Privacy Protection Act by sharing the personal information of fans who used the team’s app.
July 31, 2025Michael Bahar and Baird Fogel and Jonathan Freimann and Thomas SpringThe wave of cyberattacks and data breaches has turned information governance from a compliance afterthought into a required business function. Yet, despite well-publicized threats and skyrocketing costs associated with cyber incidents, most companies remain both underinsured and fundamentally underprepared.
June 01, 2025Brandon HollinderIn today's digital age, the volume of data generated and managed by law firms has skyrocketed, presenting both opportunities and challenges. Unfortunately, in parallel with this exponential growth in data, and partially as a direct result of it, law firms have also experienced a significant increase in targeted cyberattacks.
May 01, 2024Gregg ParkerThis article discusses why a robust IG program is critical to modern-day law firm operations, the complexities associated with crafting such a program, and what a high-level roadmap for implementing the program looks like.
May 01, 2024Gregg ParkerThis article summarizes the DOJ's recent guidance and the SEC's enforcement trends and priorities in this area, and it provides information governance best practices companies can implement now to ensure they are meeting regulators' expectations and recordkeeping rules.
July 01, 2023Jonathan B. New, Patrick T. Campbell, James A. Sherer and Luke E. RecordRegulators increasingly are scrutinizing employee use of personal devices and third-party messaging apps. This article summarizes the DOJ's recent guidance and the SEC's enforcement trends and priorities in this area, and it provides information governance best practices companies can implement now to ensure they are meeting regulators' expectations and recordkeeping rules.
July 01, 2023Jonathan B. New, Patrick T. Campbell, James A. Sherer and Luke E. RecordSecurity and privacy start with good information governance, and for many firms — trying to get their information governance policy implemented feels a lot like Groundhog Day. Yes, the one with Bill Murray. Let's take a closer look.
October 01, 2022Ben Schmidt and Nathan Curtis
