News & Analysis as of

Breach Notification Rule

Equifax Breach: 3 Immediate Steps Leading Companies Are Taking To Respond

by Fenwick & West LLP on

Equifax, one of the three nationwide credit bureaus that track and rate the financial history of consumers, announced in September that it had suffered a data breach exposing personal information of up to 143 million...more

GDPR Update Data breaches and notifications (Dutch)

by Dentons on

Under the GDPR, data security plays a prominent role and the GDPR imposes strict obligations on data controllers and data processors regarding security. While the Dutch Data Protection Act (DDPA) already includes a data...more

GDPR Update: Data Breaches and Notifications

by Dentons on

Under the GDPR, data security plays a prominent role and the GDPR imposes strict obligations on data controllers and data processors regarding security. While the Dutch Data Protection Act (DDPA) already includes a data...more

Data protection and breach notification legislation strengthens across the Asia-Pacific region

by Hogan Lovells on

In this hoganlovells.com Q&A, Hogan Lovells partner Mark Parsons discusses data privacy and cybersecurity trends and the evolution of laws and regulations in the Asia-Pacific region....more

Equifax Breach Affects 143M: If GDPR Were in Effect, What Would Be the Impact?

by Foley & Lardner LLP on

The security breach announced by Equifax Inc. on September 7, 2017, grabbed headlines around the world as Equifax revealed that personal data of roughly 143 million consumers in the United States and certain UK and Canadian...more

Equifax Breach: Three Takeaways from the First Four Days

by Mintz Levin on

On September 7, 2017, Equifax, one of the three large credit reporting bureaus, announced a cybersecurity incident impacting approximately 143 million U.S. consumers. According to Equifax, the breach occurred mid-May through...more

Data Breach Exposing 143 Million Americans' Personal Information Hits Equifax

by Benesch on

Equifax, the international credit reporting agency, confirmed that a data breach exposed the personal information of approximately 143 million U.S. consumers. The breach occurred from May through July of this year. Breached...more

Compliance with Initial New York DFS Cybersecurity Rules Now Mandatory

As of August 28, 2017, insurance companies, banks, and other financial services companies regulated by the New York Department of Financial Services (“DFS”) must comply with an initial wave of new cybersecurity requirements...more

Government of Canada publishes proposed “Breach of Security Safeguards Regulations”

by DLA Piper on

On September 2, 2017, the Government of Canada published proposed “Breach of Security Safeguards Regulations”. The proposed regulations relate to the provisions in Canada’s Personal Information Protection and Electronic...more

NAIC Insurance Data Security Model Law to Be Presented for Adoption

by Baker Donelson on

Insurers and organizations regulated by state insurance departments need to be prepared to meet the requirements of the model data security law, which may be finalized this year. In late 2014, the National Association of...more

Delaware Updates Data Breach Notification Obligations

by Morgan Lewis on

On August 17, 2017, Delaware Governor John Carney signed into law an act to amend Title 6 of the Delaware Code relating to breaches of security involving personal information. The amended law and the new obligations it...more

Proposed Changes to Singapore Personal Data Protection Act 2012

by Morgan Lewis on

The Personal Data Protection Commission is holding a public consultation exercise on its proposed changes to the Personal Data Protection Act 2012....more

Privacy & Cybersecurity Update - August 2017

Ninth Circuit Finds in Spokeo Remand That Certain Statutory Violations Can Satisfy Article III’s Standing Requirement - In a highly anticipated decision, the Ninth Circuit ruled that violations of the Fair Credit Reporting...more

Maryland and Delaware to Roll Out Changes to Data Breach Laws in 2018

by Baker Donelson on

States continue to amend their Data Protection and Breach Notification Requirements. Maryland and Delaware are the most recent states to pass legislation designed to bring additional precision to an organization's...more

Delaware Expands Data Security Laws

by King & Spalding on

On August 17, 2017, Delaware Governor John Carney signed into law an Act (“Act”) amending the Delaware Code (“Code”) as it relates to security breaches involving personal information. The Act revises the definition of what...more

Delaware Amends Data Breach Notification Law to Require Reasonable Data Security and Expand the Scope of Personal Information...

by Reed Smith on

On August 17, 2017, Delaware Governor John Carney signed into law House Substitute 1 for House Bill 180, making the first significant amendment to Delaware’s data breach notification law since 2005. The bill, scheduled to go...more

Delaware: The Latest State To Amend Its Data Breach Notification Law

by Jackson Lewis P.C. on

Delaware joins the growing number of states that recently amended their data breach notification law. On August 17th, Delaware amended its data breach notification law with House Bill 180, the first significant change since...more

Lessons Learned from 2017 OCR HIPAA Enforcement Actions

by Foley & Lardner LLP on

So far 2017 is proving to be an active year for Health Insurance Portability and Accountability Act (HIPAA) enforcement. This comes on the heels of 2016, which saw an unprecedented level of enforcement actions, with 13 total...more

Can Procurement Law Slow Down Data Breach Response? A Closer Look.

What happens when state and local governments respond to significant data breaches? They often turn to the private sector for breach response capabilities in order to mitigate damages. Speed is the name of the game, and...more

Is It Too Late for a Uniform State Approach to Data Breach Notification?

by McGuireWoods LLP on

Privacy professionals have long lamented the myriad of approaches each state takes when it comes to data breach notification requirements. According to the National Conference of State Legislatures, 48 states, the District of...more

New York State Enforces Data Breach Notification Law

Earlier this month, New York Attorney General Eric Schneiderman announced his state had entered into a settlement with CoPilot Provider Support Services, Inc. (CoPilot)—a settlement resulting from CoPilot’s violation of the...more

CoPilot Provider Support Services Settles with NYAG for $130,000 for Late Breach Notification

CoPilot Provider Support Services, Inc. (CoPilot), which provides health care companies with billing and insurance support services, has settled allegations by the New York Attorney General of failing to notify individuals of...more

Health Update - June 2017

HIPAA and Emerging Technologies - Editor’s Note: According to a HIMSS Mobile Technology Survey of healthcare provider employees, about 90% say they are using mobile devices to engage patients in their healthcare—and 36%...more

New HHS Cybersecurity Preparedness Checklist

by Carlton Fields on

The Department of Health and Human Services’ Office of Civil Rights (OCR) recently published a checklist to guide HIPAA-covered entities and business associates through an appropriate response to a ransomware or cybersecurity...more

OCR Issues Reminder on Security Incidents

Following the frequent and varied ransomware attacks on health care entities over the past few years, the Office for Civil Rights (OCR) published guidance last summer to the health care industry reminding it that a ransomware...more

514 Results
|
View per page
Page: of 21
Cybersecurity

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.