Think that tips have to stay with front-of-house staff?
Well, it may be time to think again.
On December 22, 2020, the Department of Labor (DOL) issued a final rule allowing employers who do not take a tip credit against their minimum wage obligations to implement mandatory tip pools in which employees who traditionally have not been able to participate in tip pools—such as cooks and dishwashers—may now receive a portion of the tips left by guests. However, employers, managers, and supervisors still cannot participate in the tip pool, regardless of whether the employer takes a tip credit.
The Department of Labor (DOL) recently announced a final rule regarding the Fair Labor Standards Act’s (FLSA) overtime exemption for certain employees in retail and service industries who are paid primarily on commissions. Issued without the typical notice-and-comment rulemaking, the final rule withdraws two provisions from the regulations about the “retail concept.” These provisions listed industries that the DOL viewed as either having “no retail concept” or “may be recognized as retail,” impacting whether certain industries asserted whether they had a retail concept and had workers that were subject to the exemption. By eliminating the lists, certain industries and businesses have more flexibility in determining whether they qualify as an establishment with a retail concept.
Last week, the New York Attorney General’s office offered guidance regarding credential stuffing, a common and costly attack on businesses and consumers, in which threat actors repeatedly attempt to log in to online accounts using usernames and passwords stolen from other online services. Credential stuffing takes advantage of three aspects of the online ecosystem: (1) most online accounts utilize usernames and passwords; (2) a steady flow of data breaches has resulted in billions of stolen credentials being leaked onto the dark web for other threat actors to exploit; and (3) consumers tend to reuse the same passwords across multiple online services.
Corporate policyholders, insurers and courts continue to grapple with the question of whether traditional “non-cyber” business insurance policies provide coverage for losses from cyberattacks. The most recent decision addressing this “silent cyber” issue came last month in EMOI Services, LLC v. Owners Insurance Company, 2021 -Ohio- 3942, 2021 WL 5144828 (Ohio App. 2 Dist., Nov. 5, 2021). In EMOI Services, an Ohio Court of Appeals panel reversed a trial court’s grant of summary judgment in favor of an insurer that found no coverage for a ransomware attack under a property insurance policy.