Cybersecurity may be a top concern for legal counsel, but the shifting waters of global cybersecurity law are becoming increasingly difficult to navigate. With recent changes in cybersecurity law across the globe, the cybersecurity legal realm is no longer as uniform as it once was, while rules are becoming tougher across the board.
Take, for instance, the differences between Europe, Asia and the U.S. trial attorneys. Thomas Mahlum and Melissa Goodman of Robins, Kaplan, Miller & Ciresi L.L.P. wrote on InsideCounsel in August, the European Union (EU) has one completely codified set of rules for what counts as personally identifiable information (PII), with the EU Data Protection Directive and the Organization for Economic Cooperation and Development Guidelines. The Asian-Pacific Economic Cooperation, however, takes a less strict view of PII in the APEC Framework. The U.S., meanwhile, has a number of guidelines to abide by, including the Video Privacy Protection Act, the Cable Television Protection and Competition Act, the Children's Online Privacy Protection Act, and the Stored Communications Act.