General Business Privacy Science, Computers & Technology

Read need-to-know updates, commentary, and analysis on General Business issues written by leading professionals.
News & Analysis as of

Connecticut Supreme Court’s Insurer-Friendly Decision on Data Breach Incident

On January 27, 2014, the Sedgwick Insurance Law Blog posted the following summary entitled, “ Highway Data Dump – Who are You Going to Call to Recover $6 Million?,” addressing the appellate decision in Recall Total Info....more

Will Your Cyber Insurance Respond When You Need It Most?

On May 7, Columbia Casualty Company, an insurance company, filed one of the first lawsuits by an insurer seeking to deny coverage for a privacy class action under a cyber insurance policy. Why is this significant? As the...more

Failure to Obtain Required Retailer Approval Scuttles Target-MasterCard Data Breach Settlement

Target’s attempt to resolve claims of MasterCard-issuing banks through a $19 million private settlement with MasterCard has been terminated for failure of issuers of 90% of the affected cards to accept the settlement by the...more

Blue Pill/Red Pill: How Officers and Board Members Can Swallow the Red Pill and See the Real World of Cybersecurity

Trying to understand how a hacker thinks can twist your brain around – while you normally think about how to make something work or why something is not working, hackers think how to get something to work in ways that it is...more

BIS Proposes Broad New Licensing Requirements for Exports Involving Cybersecurity Technology

In December 2013, members of the Wassenaar Arrangement, a group of 41 countries, which includes the United States, agreed to broaden its list of dual-use controls to include certain cybersecurity items. The new items added to...more

Data Breach Insurance: Does Your Policy Have You Covered?

Recent developments in two closely watched cases suggest that companies that experience data breaches may not be able to get insurance coverage under standard commercial general liability (CGL) policies. CGLs typically...more

Federal Trade Commission Signals Intensified Focus on Security-By-Design and the Internet of Things With New Start with Security...

The Federal Trade Commission (FTC) recently launched a new Start with Security initiative that aims to provide businesses with resources, education and guidance on best practices for data security. Announced by FTC Consumer...more

Data breach coverage denial upheld by Connecticut Supreme Court

In a 3 page per curiam decision issued this week, the Connecticut Supreme Court upheld a lower court’s decision holding in Recall Total Information Management, Inc., et. al v. Federal Insurance Company, that Federal Insurance...more

April Brings Amendments to Washington and North Dakota Breach Notification Requirements

April saw amendments to Washington State's and North Dakota's breach notification statutes. In a prior Orrick Alert, we discussed some of the implications from the proposed data breach notification amendments in...more

Connecticut Affirms Personal Injury Coverage for Data Breach Requires Actual Publication

As expected, the Connecticut Supreme Court has affirmed decisions by both the trial court and intermediate appellate court that personal injury liability coverage for a business’s data loss or theft requires publication as a...more

Guidance for Incident Response Plans  

Organizations are preparing for data incidents and breaches by developing, updating, implementing, and testing incident response plans. This article provides a checklist of key components of an incident response...more

What The Nomi Case Could Mean For Retail Tracking

In law school, everybody learns the adage that hard cases make bad law. When it comes to the Federal Trade Commission, a better aphorism might be, “easy cases make new law.” The FTC’s recent settlement with Nomi Technologies...more

Cyber Resilience for Financial Services Entities

In March this year, the Australian Securities and Investments Commission (ASIC), issued Report 429 Cyber resilience: Health check (REP 429). The report aims to highlight the importance of cyber resilience for entities...more

Connecticut Supreme Court Affirms No Coverage for Lost Tapes Absent Publication of Data

In Recall Total Information Mgmt., Inc. v. Federal Ins. Co., SC19201 (Conn. May 18, 2015), the Connecticut Supreme Court held that where there was no factual support that anyone ever actually accessed private information...more

The DOJ’s New Cyber Security Best Practices — Creating a Standard of Care?

On April 29, 2015, the U.S. Department of Justice Computer Crime and Intellectual Property Section (“DOJ”) issued version 1.0 of its “Best Practices for Victim Response and Reporting of Cyber Incidents.” It draws on “lessons...more

Cybersecurity: Integral to Overall Risk Management for Insurers and TPAs

Recent data breaches have brought cybersecurity to the attention of insurance companies, and serve as a reminder to third party administrators ("TPAs") that cybersecurity issues are a serious compliance and regulatory...more

Explaining the Implications for Merchants of EMV and the Liability Shift

The EMV liability shift is coming. Sounds ominous, but what does it really mean? And how can retailers and merchants determine the potential impact of the shift on their business? Like many issues in the payment card...more

Mobile Privacy Rules to Be Enforced Starting September 1, 2015

All businesses acting in the mobile ecosystem—including app developers, analytics companies, advertising networks, app platform providers, and providers of devices and related services—should be aware that the Digital...more

Target Court Refuses to Block MasterCard Settlement Reached Prior to Class Certification

In another development in the multi-faceted litigation arising from Target’s December 2013 data breach, Defendant Target announced a tentative $19 million settlement with non-party MasterCard, to resolve claims of...more

U.S. SEC Division of Investment Management Issues Cybersecurity Guidance

The Division of Investment Management (Division) of the U.S. Securities and Exchange Commission (SEC) issued a Guidance Update on April 28, 2015 (Guidance) relating to the cybersecurity of registered investment companies and...more

The Data Breach Notification That Cried Wolf: How Connecticut’s Overbroad Data Breach Notification Statute Undermines the...

Connecticut’s data breach statute is a wolf in sheep’s clothing. That statute’s definition of “breach of security” is overbroad, encourages over-notification, and undermines the goal of protecting consumers from identity...more

Quirky Question #260, Data breach incident response plans

Question: For data breach preparation, what guidance have federal and state regulators issued regarding incident response plans? Originally published on IRMI.com....more

Patriot Act Reauthorization Debate Delays Cybersecurity Legislation

In This Issue: - Industry Liability Protections and Standards - Legislative Timeframe - Additional Notification Bill Expected - Conclusion - For More Information - Excerpt from Industry...more

The Cost of a Data Breach

In 2014, the Ponemon Institute published the 2014 Cost of Data Breach Study that includes interesting cost information related to remediation efforts undertaken by 61 companies that operate in the United States....more

[Webinar] Compliance Agility: Managing Privacy in a Dynamic Environment - June 9, 1:00-2:00 pm Eastern

Privacy risk, legislation, and regulation is growing at an exponential rate. Organizations – themselves in constant states of change – are struggling to keep up and fearful because a single organizational change, be it...more

1,405 Results
|
View per page
Page: of 57

Follow General Business Updates on:

All the intelligence you need, in one easy email:

Great! Your first step to building an email digest of JD Supra authors and topics. Log in with LinkedIn so we can start sending your digest...

Sign up for your custom alerts now, using LinkedIn ›

* With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name.
×