The Rise of Internet of Things Security Laws – Part II

Pratt’s Privacy & Cybersecurity Law Report

This is the second part of a two-part article examining the enactment of California’s Internet of Things (“IoT”) security law, and the wave of similar IoT laws expected to follow close behind in 2020. The first part of this article, which appeared in the June 2020 issue of Pratt’s Privacy & Cybersecurity Law Report, discussed the current legal landscape as it relates to the security of connected devices and took a closer look at California’s new IoT security law – which went into effect at the start of the year. This second part provides tips and strategies for IoT device manufacturers to comply with the IoT security regulations expected to begin to blanket the country.

In the blink of an eye, Internet of Things (“IoT”) technology – which connects household and consumer items to the internet – brought about advanced capabilities that were just years ago thought to be matters of science fiction. Notable examples include connected cars, smart homes, and wearable tech, just to name a few.

At the same time, IoT technology also presents a unique set of risks and challenges – particularly around data security. Because of security vulnerabilities inherent in smart devices, and as IoT technology continues to be applied in numerous new and creative ways, legislators have responded with laws specifically geared toward regulating such connected devices.

Consequently, manufacturers of connected devices must find a way to address the mounting security threat posed by hackers and other cyber criminals, while also complying with the growing body of law governing smart technology. Fortunately, there are several actionable steps IoT manufacturers can take to produce IoT devices with enhanced features and functionality in a manner that complies with the law and provides robust security controls to combat cyber risk.

To read the full article, please click here.

“The Rise of Internet of Things Security Laws – Part II,” by Jeffrey N. Rosenthal and David J. Oberly was published in the July‒August 2020 edition of Pratt’s Privacy & Cybersecurity Law Report (Vol. 6, No. 6), an A.S. Pratt Publication, LexisNexis. Reprinted with permission.