Legal News and Events

The Network and Information Security Directive 2022/2555, otherwise known as NIS2, is a European Union (EU) directive designed to improve the security of network and information systems in the EU.

The Digital Operational Resilience Act (“DORA”) was adopted on 27 December 2022. It is a European Union regulation designed to increase the cybersecurity requirements for financial institutions (“FSIs”- Financial Services Industries) and their information and communication technology (“ICT”) service providers.

IRAP is an Australian Government initiative managed by the Australian Signals Directorate (ASD) designed to help ensure that information and communications technology (ICT) systems meet the requirements of the Australian Government Information Security Manual (ISM).  By meeting IRAP control requirements, organizations can have confidence that Proofpoint maintains the security controls necessary to securely protect government systems and information.

The Digital Operational Resilience Act (“DORA”) was adopted on 27 December 2022. It is a European Union regulation designed to increase the cybersecurity requirements for financial institutions (“FSIs”- Financial Services Industries) and their information and communication technology (“ICT”) service providers.

On October 30, 2023, the Biden administration issued an Executive Order (EO) on the Safe, Secure and Trustworthy Development and Use of Artificial Intelligence (AI) (“Order”).

On September 21, 2003, the UK announced the establishment of the UK-US data bridge (the “Bridge”), which is also known as the UK Extension to the EU-U.S. Data Privacy Framework (the “DPF”).

On July 10, 2023, the European Commission adopted its adequacy decision facilitating cross-border transfers of personal data under the EU-U.S. Data Privacy Framework (the “DPF”) in compliance with EU law.

On October 7, 2022, President Joseph Biden signed the Executive Order Number 14086 Enhancing Safeguards for United States Signals Intelligence Activities (the “EO”).

On June 4, 2021, the European Commission issued its implementing decision on standard contractual clauses (SCCs) for the transfer of personal data from the European Union to “third countries” such as the United States pursuant to Regulation (EU) 2016/679 (European Commission Decision (EU) 2021/914).

On March 25, 2022, the U.S. and European Commission Presidents announced their agreement in principle to the Trans-Atlantic Data Privacy Framework (the “Framework”), that is meant to replace the invalidated EU-U.S. Privacy Shield and foster trans-Atlantic data flows.