Science, Computers & Technology Privacy Consumer Protection

Read Science, Computers & Technology updates, news, alerts, and legal analysis from leading lawyers and law firms:
News & Analysis as of

OCR to Focus More Investigative Resources on Smaller HIPAA Breaches with Less Than 500 Individuals Affected

The Department of Health & Human Services (DHHS) Office of Civil Rights (OCR) recently announced it will devote more resources to investigate smaller HIPAA breaches. Before this announcement, OCR typically opened...more

NAIC Task Force Releases Revised Draft Insurance Data Security Model Law

On August 17, the National Association of Insurance Commissioners (the NAIC) Cybersecurity (EX) Task Force (the Task Force) released for comment a revised draft Insurance Data Security Model Law (the Model Law). This Model...more

ICO Reminds Organisations of EU-U.S. Personal Data Transfer Obligations

The Interim Deputy Commissioner at the Information Commissioner’s Office (“ICO”), Steve Wood, has published a blog reminding organisations of their obligations when transferring personal data to the United States, pursuant to...more

Health Update - August 2016

Section 1332 Waivers: Will We See More State Innovation? - Editor's Note: In a new essay for the National Institute of Health Care Management (NIHCM), summarized below, Manatt Health examines Section 1332 waivers and the...more

Twitter Sued For Right of Publicity Violations Over Profile-Trading Game

A class action lawsuit was filed in California yesterday against Hey, Inc. and Twitter regarding Hey’s online trading game in which players collect profiles of (and use virtual currency to invest in) real-life people as if...more

Department Of Commerce Agency Seeks Standards For IoT Security

On August 2, the National Telecommunications and Information Administration (“NTIA”), an agency of the Department of Commerce, announced that it would form a multi-stakeholder group to increase transparency for the deployment...more

Eddie Bauer Latest Victim of POS Malware Attack

Last week the clothing retailer Eddie Bauer LLC issued a press release to announce that its point of sale (“POS”) system at retail stores was compromised by malware for more than six months earlier this year. The...more

Hackers Steal 600K Records from Health Care Firms – Could Your Wearable Device Be Next?

Security firm InfoArmor published a report in late July 2016 stating that a group of attackers infiltrated American health care institutions, stole at least 600,000 patient records and attempted to sell more than 3 terabytes...more

New York A.G. Announces $100k Settlement Over Data Breach

On August 5, New York Attorney General Eric T. Schneiderman announced a settlement with Provision Supply, LLC d/b/a EZcontactsUSA.com, imposing $100,000 in penalties and ongoing obligations to maintain certain security...more

Healthcare Records Held Hostage: When ransomware attacks

Imagine for a moment that your hospital or physician practice suddenly cannot access its electronic medical records. There hasn’t been a natural disaster. No, instead you are inexplicably staring at a computer screen from an...more

The Digital Download - Alston & Bird’s Privacy & Data Security Newsletter – August 2016

General Data Protection Regulation (GDPR) Published, Commencing Two-Year Countdown to Application. One of the most important EU legislative initiatives in recent years, and a landmark in privacy regulation worldwide, the GDPR...more

FCC and Federal Debt Collectors, More Restrictions under TCPA

In July we wrote about the exemption for robocalls made by the federal government (or its contractors) from the restrictions of the Telephone Consumer Protection Act (TCPA). Now, the Federal Communications Commission (FCC)...more

OCR to Increase Investigations of Smaller HIPAA Breaches

HHS Office for Civil Rights will cast a wider net and increase its investigations into smaller HIPAA privacy breaches starting this month. OCR announced a new initiative to increase its efforts examining breaches that affect...more

Location Data Poses Risks To Individual Privacy Says Irish Regulator

With the proliferation of location-based app services like traffic alerts and ride-sharing programs, the collection of consumers’ location information has exploded in recent years. It comes as no surprise, therefore, that...more

European Restrictions on Computer Profiling

On May 25, 2018, the EU General Data Protection Regulation (GDPR) will come into effect requiring companies that process personally identifiable information of EU residents to comply with a significant number of enhanced...more

The EU’s Data Transfer “Privacy Shield”—Full Body Armor or a Candle in the Wind?

With the August 1st start of the Privacy Shield, the European Commission’s new and long-awaited transatlantic data transfer agreement with the U.S., businesses that had previously relied on the invalidated Safe Harbor scheme...more

ICO Responds to the ePrivacy Directive Consultation

In April, we reported that the European Commission had opened a public consultation seeking the views of various stakeholders on the current wording of, and possible changes to, the Privacy and Electronic Communications...more

Lessons for Businesses from FTC’s Opinion on LabMD’s Data Security Practices

The Federal Trade Commission (FTC) has issued an Opinion and Final Order finding that the data security practices of LabMD, Inc. were unreasonable, and therefore constituted an unfair act or practice in violation of Section 5...more

App Developer Not Liable Under TCPA For User-Initiated Texts

A recent defense win out of the Northern District of California brings good news for messaging software developers facing TCPA claims. In Cour v. Life360, Inc., U.S. District Judge Thelton E. Henderson granted defendant...more

Recent Amendments To State Security Breach Notification Laws

Security breach notification obligations vary by state, including how a security breach is defined, the method for providing notice of the breach, and any requirements to notify state regulators. The following summarizes...more

Latest OCR HIPAA Settlement Provides Lessons for Covered Entities

Capping off a busy month of HIPAA settlements, on August 4, the Office for Civil Rights (“OCR”) announced a $5.55 million settlement with Advocate Health Care Network (“Advocate”), the largest fully-integrated healthcare...more

EU-US Privacy Shield Framework Formally Adopted

On July 12, 2016, the European Commission formally adopted the Privacy Shield, a new transatlantic framework for the transfer of personal data from the European Union (EU) and certain countries of the European Economic Area...more

FTC Expands Its Role In Cybersecurity Enforcement By Reviving LabMD Action

On Friday, July 29, 2016, the Federal Trade Commission (“FTC” or the “Commission”) overturned the decision of one of its administrative law judges (“ALJ”) from November 2015 in a suit against LabMD, Inc., now finding LabMD...more

EU-US Privacy Shield: How to Certify

Following formal approval of the EU-US Privacy Shield, US organizations will now be considering how to apply for Privacy Shield certification. On July 12, 2016, the European Commission formally approved and adopted the...more

University of Mississippi to Pay $2.75 Million for Alleged HIPAA Violations

On July 21, 2016, the Office for Civil Rights (OCR) at the Department of Health and Human Services (HHS) announced a settlement with the University of Mississippi Medical Center (UMMC), stemming from a 2013 breach of...more

3,354 Results
|
View per page
Page: of 135

Follow Science, Computers & Technology Updates on:

JD Supra Readers' Choice 2016 Awards

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×