The Federal Court of Australia in Australian Securities and Investments Commission v FIIG Securities Limited [2026] FCA 92 has ordered FIIG Securities Limited (FIIG) to pay a penalty of AUD 2.5 million plus AUD 500,000 in costs in response to proceedings brought by the Australian Securities and Investment Commission (ASIC) in March 2025 for cyber security failures in breach of FIIG’s general Australian Financial Services Licence (AFSL) obligations between March 2019 and June 2023.

The Data Protection Supervisory Authorities (“DPAs”) for the German states of Lower Saxony and Bavaria recently announced (related information can be found here and here) that they will carry out random audits to check compliance with the GDPR. In July 2018, the DPA for Lower Saxony reached out to about…

What are the rules protecting data in Asia Pacific? What can you do to recover information if you have been hacked? The Cybersecurity Counter-offensive Asia Pacific Guide has been launched in response to a wave of new cybersecurity legislation throughout the Asia Pacific region to regulate and monitor cybersecurity.

The White House issued a “Fact Sheet” summarizing the outcome of the meetings between President Xi and President Obama with respect to areas in which the United States and Chinese governments agreed “to work together to constructively manage our differences” and decided “to expand and deepen cooperation.”

The SEC’s ongoing battle against cybersecurity issues continued this week. On September 22, 2015, the SEC sanctioned registered investment adviser R.T. Jones Capital Equities Management, Inc. for failing to adopt written policies and procedures reasonably designed to safeguard consumer information in violation of the SEC’s Safeguards Rule (Rule 30(a) of Regulation S-P).