Consumer Protection General Business Privacy

Read Consumer Protection updates, news, and legal commentary from leading lawyers and law firms:
News & Analysis as of

April Brings Amendments to Washington and North Dakota Breach Notification Requirements

April saw amendments to Washington State's and North Dakota's breach notification statutes. In a prior Orrick Alert, we discussed some of the implications from the proposed data breach notification amendments in...more

Guidance for Incident Response Plans  

Organizations are preparing for data incidents and breaches by developing, updating, implementing, and testing incident response plans. This article provides a checklist of key components of an incident response...more

What The Nomi Case Could Mean For Retail Tracking

In law school, everybody learns the adage that hard cases make bad law. When it comes to the Federal Trade Commission, a better aphorism might be, “easy cases make new law.” The FTC’s recent settlement with Nomi Technologies...more

The DOJ’s New Cyber Security Best Practices — Creating a Standard of Care?

On April 29, 2015, the U.S. Department of Justice Computer Crime and Intellectual Property Section (“DOJ”) issued version 1.0 of its “Best Practices for Victim Response and Reporting of Cyber Incidents.” It draws on “lessons...more

The Data Breach Notification That Cried Wolf: How Connecticut’s Overbroad Data Breach Notification Statute Undermines the...

Connecticut’s data breach statute is a wolf in sheep’s clothing. That statute’s definition of “breach of security” is overbroad, encourages over-notification, and undermines the goal of protecting consumers from identity...more

Quirky Question #260, Data breach incident response plans

Question: For data breach preparation, what guidance have federal and state regulators issued regarding incident response plans? Originally published on IRMI.com....more

Patriot Act Reauthorization Debate Delays Cybersecurity Legislation

In This Issue: - Industry Liability Protections and Standards - Legislative Timeframe - Additional Notification Bill Expected - Conclusion - For More Information - Excerpt from Industry...more

The Cost of a Data Breach

In 2014, the Ponemon Institute published the 2014 Cost of Data Breach Study that includes interesting cost information related to remediation efforts undertaken by 61 companies that operate in the United States....more

[Webinar] Compliance Agility: Managing Privacy in a Dynamic Environment - June 9, 1:00-2:00 pm Eastern

Privacy risk, legislation, and regulation is growing at an exponential rate. Organizations – themselves in constant states of change – are struggling to keep up and fearful because a single organizational change, be it...more

2015 BakerHostetler Incident Response Report Deeper Dive—Retailer Liability Arising from Stolen Payment Cards

We released the inaugural BakerHostetler Data Security Incident Response Report, which provides insights generated from the review of more than 200 incidents that our attorneys advised on in 2014. Over the next four weeks, we...more

Guidance for Incident Response Plans

Organizations are preparing for data incidents and breaches by developing, updating, implementing, and testing incident response plans. This article provides a checklist of key components of an incident response...more

New Release for Spring 2015: The Annual Verizon Data Breach Investigations Report

It’s that time of year again. Spring is in the air, flowers are in bloom, and Verizon’s annual Data Breach Investigations Report (DBIR) has been released. As in years past, this year’s numbers shed some light into, not only...more

New Washington State Data Breach Amendments Mandate Notice to Consumers Within 45 Days of Breach

On April 23, Gov. Jay Inslee signed amendments to Washington state’s data breach notification law. The amendments strengthen protections to consumers and mandate a new time frame and reporting requirements for alerting...more

King & Spalding Lawyers Attend DOJ Cybersecurity Industry Roundtable On Data Breaches

On Wednesday, April 29, King & Spalding Partner Phyllis Sumner and Counsel Nick Oldham participated in DOJ’s first Cybersecurity Industry Roundtable regarding data breaches. The Roundtable included several notable DOJ and law...more

DOJ Releases Best Practices for Victim Response and Reporting of Cyber Incidents

Last week, the Cybersecurity Unit of the Department of Justice (DOJ) issued a list of “best practices” for companies concerning preparing for and responding to cyber-attacks. The report details the lessons federal prosecutors...more

Spotlight on Vendor Management: “Brother’s Keeper” Enforcement Pattern Becoming the Norm

Two regulatory enforcement matters announced in April offer a view into the current mindset of regulators in the ever-evolving world of vendor management. First, the Federal Communications Commission (FCC) announced a $25...more

NAIC Planning to Require Cybersecurity Insurance Data Submission

The National Association of Insurance Commissioners’ (“NAIC’s”) Cybersecurity Task Force and Property and Casualty Insurance Committee are jointly considering whether to require a cybersecurity insurance coverage supplement...more

California’s Song-Beverly “Consumer Perception Test” in Jeopardy — Will Retailers in California Be Barred from Requesting Any...

On May 5, 2015, the Ninth Circuit certified for the California Supreme Court the issue of whether the Song-Beverly Credit Card Act (“the Act”) prohibits retailers from requesting a customer’s personal information at the...more

The Colorado Data Breach Law

Almost all U.S. states have laws about data security and what to do when there’s a data breach. Here is the Colorado law, which is codified at C.R.S. § 6-1-716, Who the law applies to. An individual or commercial...more

Update on State Breach Notification Laws - May 2015

In the first few months of 2015, a number of states have introduced data breach notification bills and proposed legislative amendments designed to enhance consumer protection in response to increasingly high profile data...more

Important Breaking Development: California’s Song-Beverly “Consumer Perception Test” in Jeopardy — Will Retailers in California Be...

On May 5, 2015, the Ninth Circuit certified for the California Supreme Court the issue of whether the Song-Beverly Credit Card Act (“the Act”) prohibits retailers from requesting a customer’s personal information at the...more

A Primer on FTC Expectations for Your Partner and Vendor Relationships: Enforcement Shows You Are Your Brother’s Keeper

With all of the privacy and data security enforcement actions brought by the Federal Trade Commission in recent years, and with all of the guidance distributed by the FTC in that time frame, it is easy to get caught up in...more

Department of Justice Issues Best Practices Guidance on Cyber Incidents

On Wednesday, April 29, the US Department of Justice released guidance titled “Best Practices for Victim Response and Reporting of Cyber Incidents.” The guidance outlines steps companies should take before, during, and after...more

Planning for Breach Notification Requirements in Your Customer Contracts

At the San Francisco “Exchange” Data Privacy and Cyber Security Forum on April 26, a spirited debate arose whether a federal breach notification law will/should be enacted to bring uniformity to the patchwork of breach...more

Data Breach Legislation – Creating a Federal Standard

Whatever your political viewpoints may be on the dividing line between federal and state responsibilities, or the interpretation of the 10th Amendment to our Constitution, there is no question the Framers saw an important...more

693 Results
|
View per page
Page: of 28

Follow Consumer Protection Updates on:

All the intelligence you need, in one easy email:

Great! Your first step to building an email digest of JD Supra authors and topics. Log in with LinkedIn so we can start sending your digest...

Sign up for your custom alerts now, using LinkedIn ›

* With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name.
×