Cynthia Larose

Cynthia Larose

Mintz Levin

Contact  |  View Bio  |  RSS

Latest Posts › Data Protection

Share:

Cloudbleed: Three Risk Management Lessons Learned 

Recently, a Google researcher discovered a serious flaw with the content delivery network (CDN) provided by CloudFlare. This vulnerability has now become known as Cloudbleed, in a nod to the earlier Heartbleed SSL...more

3/13/2017 - Cybersecurity Data Breach Data Protection Risk Management Vendors

It’s March 1: The Cybersecurity Goal Post Has Been Moved

In an effort to combat the growing prevalence of large-scale corporate cyberattacks, the New York Department of Financial Services (“NYDFS”) is rolling out a revamped cybersecurity regulation for financial services companies...more

3/1/2017 - CISO Cyber Attacks Cybersecurity Cybersecurity Framework Data Protection Financial Institutions Financial Services Industry NAIC NYDFS

FTC Takes Action Against D-Link for Deceptive Practices Endangering the IoT

The U.S. Federal Trade Commission (“FTC”) has filed a lawsuit against device manufacturer D-link for allegedly deceiving the marketplace about the security of its products and, in turn, unfairly placing customer privacy at...more

1/13/2017 - Cybersecurity Data Protection FTC Hackers Internet of Things Manufacturers NIST

3 Guidelines to Maximize Value of Data

Imagine you are the CEO of company sitting across from an interviewer. The interviewer asks you the age old question, “So tell me about your company’s strengths and weaknesses?” You start thinking about your competitive...more

10/24/2016 - Cybersecurity Data Breach Data Collection Data Protection Data Security

Colorado Student Data Privacy Bill – What EdTech software providers need to know

Colorado is the latest state to revisit, and expand upon, its laws pertaining to the use and protection of student data. Colorado Governor John Hickenlooper recently signed into law House Bill 16-1423 (the “Bill”) designed to...more

6/28/2016 - Cybersecurity Data Collection Data Protection Data Security Educational Institutions Personally Identifiable Information Public Schools Software Student Privacy

OCR Warns of HIPAA Risks in Third-Party Apps

The U.S. Department of Health and Human Services Office for Civil Rights (OCR) recently issued a warning regarding vulnerabilities in third-party applications used by entities covered by HIPAA. The OCR warning applies...more

6/22/2016 - Business Associates Covered Entities Data Protection Data Security Health Information Technologies HIPAA Mobile Health Apps OCR Risk Management Third-Party

Innocents Abroad: Privacy considerations for employees working abroad

Dear Ned, I understand that one of your employees will be engaging a six-month temporary assignment around Europe to scope market opportunities, and you’d like to have a better understanding of what to be thinking about...more

5/18/2016 - Data Protection EEA Employee Privacy Rights Employer Liability Issues International Data Transfers International Labor Laws Privacy Concerns Surveillance Traveling Employee

California by the Numbers (Part 1): 24 Million Compromised in 2015

California Attorney General Kamala Harris has released a report of the data breaches that have been reported to her office from 2012 until 2015. Although the California data breach notification law took effect in 2003,...more

2/27/2016 - Attorney Generals Cybersecurity Data Breach Data Protection Hackers Kamala Harris Malware Social Security Numbers

California by the Numbers (Part 2): How to Stay out of the 2017 Report

Receently, we reviewed the staggering numbers in California Attorney General Kamala Harris’ 2016 Data Breach Report. In addition to providing a comprehensive analysis of four years of data breaches, the report provides...more

2/26/2016 - Annual Reports Attorney Generals Cybersecurity Data Breach Data Protection Kamala Harris

Data Breach Planning in 10 Easy Steps: How to Think Like A Litigator

For the first Tuesday in November, we have 10 easy steps to make sure that your data breach incident response planning is viewed from that pesky point of view of a litigator....more

11/3/2015 - Cyber Incident Reporting Cybersecurity Data Breach Data Breach Plans Data Privacy Data Protection Data Security Email Policies Personally Identifiable Information Popular Tone At The Top Training

5 Popular Cybersecurity Writers to Follow Right Now

For your convenience, a short list of JD Supra writers covering the myriad issues raised surrounding Cybersecurity, date privacy and protection, and related matters. ...more

10/23/2015 - Corporate Counsel Cybersecurity Data Breach Data Protection Popular

More Dominos Fall on the Data Protection Table

As all of our readers know by now, as of October 6, the US-EU Safe Harbor Framework is no more. Safe Harbor was the mechanism on which thousands of US companies (and thousands of companies based in the European Union)...more

10/22/2015 - Data Privacy Data Protection Data Protection Authority Data Security EU EU Data Protection Laws European Court of Justice (ECJ) International Data Transfers Israel Model Contracts Personal Data SCC Schrems v Data Protection Commissioner Switzerland US-EU Safe Harbor Framework

Privacy Tuesday – August 2015

While you enjoy what is left of the summer of 2015, we will kick off your week with a few privacy and security bits and bytes....more

8/4/2015 - Cyber Threats Cybersecurity Data Privacy Data Protection Data Security FDA Hackers Healthcare Facilities Hospitals Medical Devices NAIC Nursing Homes Personally Identifiable Information

Privacy Monday – July 2015

Welcome to the dog days of summer 2015. Three privacy & security bits and bytes to start your week (if you are reading this on vacation … good for you!) 1. ICYMI: Massive Data Breach at OPM Claims Victim — The Director...more

7/14/2015 - China Cyber Attacks Cyber Threats Cybersecurity Cybertheft Data Breach Data Protection Office of Personnel Management (OPM) Personally Identifiable Information Russia Third-Party United Nations

Privacy Tuesday – June 2015

It’s appropriate that the “boys of summer” feature prominently in today’s post. Strike three for the St. Louis Cardinals? On another summer Privacy Monday in 2014, we made note of a reported hack into the Houston...more

6/23/2015 - Books & Records Cyber Attacks Cybersecurity Data Breach Data Protection Home Depot Houston Astros

New Hampshire Establishes Privacy Protections for Student Online Personal Information

California again has provided a model of privacy legislation for other states to follow. New Hampshire Governor Maggie Hassan recently signed into law House Bill 520 (the “Bill”), a bipartisan effort to establish guidelines...more

6/18/2015 - Data Collection Data Protection De-Identification Internet Mobile Apps Student Privacy Students

Connecticut Amends Data Breach Notification Law

In the absence of any meaningful moves in Congress to enact uniform data breach notification, the states continue to make adjustments to existing laws to better protect affected residents in their states. Connecticut is...more

6/16/2015 - Breach Notification Rule Cyber Attacks Cybersecurity Data Breach Data Protection

Privacy Tuesday – June 2015 – Courts Affirm Insurers’ Denial of Coverage for Electronic Data Claims  

In the last month, both a federal and state court denied coverage for claims relating to an insured’s handling of electronic data. In the first case, a federal court held that there was no coverage under a cyber insurance...more

6/2/2015 - Commercial General Liability Policies Credit Cards Cyber Insurance Cybersecurity Data Protection Duty to Defend Electronically Stored Information Errors and Omissions Policy IBM Security Risk Assessments Travelers Property Casualty Co.

CNA Denies Cyber Insurance Claim

Key takeaway: The insurance applications and underwriting questionnaires prepared in connection with cyber insurance do matter. Cyber security, and cyber insurance, have dominated the industry headlines for several...more

5/20/2015 - Class Action CNA Cyber Insurance Cybersecurity Data Breach Data Protection Insurance Industry Liability Insurance Policy Exclusions

Privacy Monday – May 18, 2015

It’s Monday morning — do you know your privacy/security status? Here are a few bits and bytes to start your week. SEC to Registered Investment Advisers and Broker-Dealers: It’s Your Turn to Pay Attention to...more

5/18/2015 - Advertising Broker-Dealer Brokers China Cyber Attacks Cybersecurity Data Protection Digital Advertising Alliance Investment Adviser Investment Companies Mobile Apps Penn State SEC

Privacy Tuesday – April 2015 #3

Some privacy & security bits and bytes to start your week: FCC to Hold Public Workshop on Broadband Consumer Privacy Tomorrow - Over the last several months, the Federal Communications Commission has taken on a...more

4/28/2015 - Broadband Customer Proprietary Network Information (CPNI) Cybersecurity Data Collection Data Protection FCC Federal Communications Act Internet Mobile Broadband Services Mobile Devices SEC

California May Limit Law Enforcement’s Warrantless Data Collection

Eager to retain its spot among the principal laboratories for domestic privacy legislation, California’s legislature is set to debate Senate Bill 178, legislation restricting state law enforcement agencies from requesting...more

2/18/2015 - Data Collection Data Protection Law Enforcement Legislative Agendas Search Warrant

The Anthem Data Breach: The Fallout and What’s Next

By now (unless you have been under a snow drift), you have likely heard about the apparent intrusion into a database at the nation’s largest health insurer, Anthem, Inc. Rather than reiterate the facts as currently known...more

2/11/2015 - Anthem Blue Cross Corporate Counsel Cyber Attacks Cybersecurity Data Breach Data Protection Health Insurance Insurance Industry Personally Identifiable Information Popular Risk Mitigation

Privacy Tuesday - January 2015

Good Tuesday – The East Coast prepares for Apocalypse (Sn)ow. In the meantime, here are three privacy-related tidbits for your day. Privacy Concerns Cause Scale Back of Release of HealthCare.gov Data - We...more

1/27/2015 - Australia CMS Data Protection Encryption Health Insurance Healthcare.gov PHI Privacy Concerns

80 Results
|
View per page
Page: of 4

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×