Philip Yannella

Philip Yannella

Ballard Spahr LLP

Contact  |  View Bio  |  RSS

Latest Publications

Share:

Class Certification Improper in Data Breach Case, PA Appellate Court Finds

The Pennsylvania Superior Court has affirmed a trial court's decision denying class certification in a data breach case against two health plans, reversing its own earlier ruling in the same case that the plaintiff did not...more

5/5/2016 - Class Action Class Certification Corporate Counsel Data Breach Data Security Health Insurance Insurance Industry Personally Identifiable Information PHI

European Parliament Adopts EU General Data Protection Regulation; 12 Steps Businesses Should Take Now

The European Parliament has voted to adopt the draft text of the General Data Protection Regulation (GDPR), which imposes enhanced requirements on organizations processing personal data in the European Union and transferring...more

4/21/2016 - EU EU Data Protection Laws General Data Protection Regulation (GDPR) International Data Transfers Personal Data Policies and Procedures Popular

EU-U.S. Privacy Shield Framework Text Published: Imposes New Obligations on U.S. Entities that Seek Data Transfers from the EU

The European Commission (EC) has released details of the EU-U.S. Privacy Shield, a new framework under which personal data may be transferred from the European Union (EU) to the United States. The Privacy Shield replaces the...more

3/9/2016 - Data Protection Data Protection Authority EU EU-US Privacy Shield European Commission FTC International Data Transfers Personal Data

CFPB Initiates Its First Data Security Enforcement Action

The Consumer Financial Protection Bureau (CFPB) has announced its first data security enforcement action. Since the 1990s, the Federal Trade Commission (FTC) has primarily taken on the role as the de facto federal regulator...more

3/4/2016 - CFPB Data Security Dwolla Enforcement Actions Gramm-Leach-Blilely Act Online Payments PCI-DSS Standard UDAAP

California Data Breach Report Defines “Reasonableness” Standard for Data Protection

Nearly three in five Californians were victims of a data breach in 2015, according to a report released by state Attorney General Kamala D. Harris. The report adopts minimum standards of ''reasonable security'' for personal...more

3/4/2016 - Cyber Attacks Data Breach Data Security Personally Identifiable Information PHI Popular Risk Management

President Obama Gives EU Citizens Judicial Redress for Privacy Violations

The Judicial Redress Act (Act), signed into law on February 24, 2016, by President Obama, extends the privacy protections offered to U.S. citizens under the Privacy Act of 1974 to citizens of ''covered countries'' overseas....more

3/2/2016 - EU EU-US Privacy Shield International Data Transfers Judicial Redress Act Personal Data US-EU Safe Harbor Framework

President Creates Cybersecurity National Action Plan and Commission on Enhancing National Cybersecurity

President Obama's Cybersecurity National Action Plan (CNAP), a comprehensive plan to address the nation's cybersecurity challenges through increased funding, a more robust cybersecurity workforce, and education initiatives,...more

2/25/2016 - CISO Cybersecurity Cybersecurity National Action Plan (CNAP) Data Protection Executive Orders Information Technology Obama Administration Popular

DOJ/DHS Issue Interim Guidance on Implementation of Cybersecurity Information Sharing Act

The Department of Homeland Security (DHS) and the Department of Justice (DOJ) have released Interim Guidance Documents (Guidance Documents) to implement the Cybersecurity Information Sharing Act of 2015 (CISA). The Act...more

2/24/2016 - Cybersecurity Cybersecurity Information Sharing Act (CISA) DHS DOJ Information Sharing Interim Guidance NCCIC Popular

From Safe Harbor to Privacy Shield: New EU-U.S. Agreement for Transatlantic Data Flows

The European Commission (EC) and the U.S. Department of Commerce have reached an agreement to create a framework for transfers of personal data from the European Union to the United States. The framework, named the EU-U.S....more

2/10/2016 - Article 29 Working Party (WP29) CJEU Data Protection Authority EU EU-US Privacy Shield FTC International Data Transfers Personal Data Safe Harbors Schrems v Data Protection Commissioner

FDA Issues Draft Guidance on Cybersecurity for Postmarket Medical Devices

The Food and Drug Administration's (FDA) most recent draft guidance focuses on cybersecurity in postmarket medical devices and makes recommendations for identifying, assessing, and responding to cybersecurity vulnerabilities....more

1/28/2016 - Cybersecurity FDA Medical Devices

Use of Big Data May Violate Federal Consumer Protection Laws, FTC Report Warns

A new Federal Trade Commission (FTC) report, "Big Data: A Tool for Inclusion or Exclusion? Understanding the Issues," warns that certain uses of big data consisting of consumer information may implicate various federal...more

1/27/2016 - Analytics Big Data Discrimination ECOA FCRA FTC Popular

LifeLock to Pay $100 Million to Settle Charges it Violated 2010 Court Order

The Federal Trade Commission (FTC) recently approved a $100 million settlement with LifeLock, Inc. to resolve allegations that it violated a 2010 federal court order by failing to take steps required to protect its users’...more

12/28/2015 - Contempt Data Protection False Advertising FTC LifeLock Settlement Unfair or Deceptive Trade Practices

FTC Takes Action against App Developers on COPPA Allegations Involving Persistent Identifiers

The FTC has announced enforcement actions against two app developers that allegedly violated the Children’s Online Privacy Protection Act (COPPA) by using persistent identifiers to serve advertising to children. The...more

12/28/2015 - COPPA Data Collection Enforcement Actions FTC Mobile Apps Online Safety for Children Persistent Identifiers Popular

ACC releases largest study of its kind on cybersecurity preparedness among in-house counsel

The Association of Corporate Counsel Foundation (ACC) released a State of Cybersecurity report on December 9, 2015. Ballard Spahr was the only law firm that served on the advisory board for the study and helped to formulate...more

12/10/2015 - Corporate Counsel Cybersecurity Framework In-House Perspective

ACC Foundation Releases Largest Study of its Kind on Cybersecurity Among In-House Counsel Study Underwritten by Ballard Spahr

The Association of Corporate Counsel Foundation (ACC) released a State of Cybersecurity report underwritten by Ballard Spahr on December 9, 2015. The report provides valuable insights on cybersecurity issues from more than...more

12/10/2015 - Corporate Counsel Cybersecurity Framework Data Breach FTC In-House Perspective

President Signs Bill Creating Exception to GLBA Annual Notice Requirement

An amendment creating an exception to the annual privacy notice delivery requirement for financial institutions has been signed into law by President Obama as part of the “Fixing America’s Surface Transportation Act” (FAST...more

12/9/2015 - Financial Institutions Fixing America’s Surface Transportation Act (FAST Act) Gramm-Leach-Blilely Act Privacy Notice Rule Regulatory Oversight

Company Prevails in Challenge to FTC Data Security Complaint

A recent decision by the Federal Trade Commission (FTC) Chief Administrative Law Judge (ALJ) dismissed the FTC’s complaint against LabMD, Inc. (LabMD) asserting the company’s alleged failure to protect consumer data in two...more

12/1/2015 - ALJ Data Protection FTC LabMD Personally Identifiable Information Popular

NY DFS Proposes New Cybersecurity Regulations for Financial Institutions

The New York Department of Financial Services (NYDFS) has distributed a letter to various federal and state regulatory agencies and associations proposing the development of new cybersecurity regulations for financial...more

11/24/2015 - Cybersecurity Framework FFIEC Financial Institutions NYDFS Regulatory Oversight

California Updates Data Breach Notification Statute

Three bills that will update California’s data breach notification requirements have been signed into law by Governor Jerry Brown. The bills impose specific requirements on providing breach notification to consumers, add a...more

10/20/2015 - Automatic License Plate Readers Breach Notification Rule Compliance Cyber Attacks Cyber Crimes Data Breach Encryption Hackers New Legislation Personal Data Personally Identifiable Information Posting Requirements Privacy Laws Surveillance

Pennsylvania Data Breach Class Action Survives Motion to Dismiss

A federal judge in Pennsylvania has allowed a data breach class action against Coca-Cola and several bottling companies to proceed, finding that the plaintiff has Article III standing even though he had left Coca-Cola’s...more

10/7/2015 - Article III Civil Conspiracy Clapper v. Amnesty International Class Action Coca Cola Data Breach Fraudulent Charges Identity Theft Injury-in-Fact Misrepresentation Motion to Dismiss Personally Identifiable Information Standing

European Court of Justice May Invalidate Safe Harbor Framework

In a landmark decision that threatens to undo the process by which American companies handle personal data flowing from the European Union, the Advocate General (AG) of the European Court of Justice (ECJ) issued an advisory...more

10/1/2015 - Advocate General Better Business Bureau Cybersecurity Data Protection Data Security Data Transfers Edward Snowden EU Data Protection Laws European Court of Justice (ECJ) Facebook FTC NSA Personal Data PRISM Program Safe Harbors U.S. Commerce Department US-EU Safe Harbor Framework

NIST Guide Highlights Cybersecurity Considerations for Utilities and Manufacturing Companies

In 2013 alone, the U.S. Department of Homeland Security (DHS) and its Industrial Control Systems Cyber Emergency Response Team (ICS-CERT) responded to more than 256 cyber-incident reports—more than half of them in the energy...more

8/24/2015 - Aerospace Automotive Industry C-Suite Executives Critical Infrastructure Sectors Cyber Attacks Cyber Crimes Cybersecurity Data Breach Data Protection Data Security DHS Energy Sector Hackers Information Technology Internet Manufacturers NIST Oil & Gas Pharmaceutical Industry Popular Transportation Corridor Wastewater Water

Seventh Circuit Green Lights Data Breach Class Action Against Neiman Marcus

An increase in data breach class actions could be the result of a recent decision of the Seventh Circuit holding that allegations of future harm stemming from a data breach can establish Article III standing. The majority of...more

7/29/2015 - Adobe Article III Class Action Credit Cards Cyber Attacks Cyber Crimes Data Breach Hackers Identity Theft Invasion of Privacy Negligence Neiman Marcus Standing

DOJ Cracks Down on Cyber Criminals

The Department of Justice (DOJ) recently announced the largest coordinated international law enforcement effort ever directed at an online cyber-criminal forum. Financial institutions and other companies should consider...more

7/24/2015 - Best Practices Criminal Prosecution Cyber Crimes Cybersecurity DOJ Enforcement Actions FBI Financial Institutions Hackers Malware New Guidance NIST

49 Results
|
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×