This course will focus on the fundamental principles of privacy and cybersecurity.
Privacy topics covered will include: (a) why privacy matters; (b) the fundamental principles implemented in a wide range of privacy laws; (c) a scope of “privacy law;” (d) U.S. Federal privacy laws (including HIPAA, COPPA, GLB, FCRA); (e) key State privacy laws (including CalOPPA, Massachusetts’s Data Security Regulation, and an overview of breach notification laws); (f) an overview of foreign privacy regimes, with a focus on European Union’s evolving privacy laws; (g) the restrictions and methods to accomplish trans-border data transfers in light of varying laws (e.g. Privacy Shield, Model Contracts); and (h) key enforcement bodies and selected enforcement decisions.
The cybersecurity discussion will focus on a non-technical overview of key cybersecurity concepts and principles. Topics covered will include: (a) the definition and key components of “security” in accordance with current best practices; (b) an overview of common attack vectors; (c) an overview of available security controls; (d) discussion of key non-technical security measures; and (e) the integration of these principles into existing and prospective legal frameworks.