News & Analysis as of

WEBINAR: Breach, Enforcement and Beyond: HIPAA Breach Notification Analysis and OCR Enforcement Activities

The Office for Civil Rights of the US Department of Health and Human Services revised the breach notification regulations last year in order to make the analysis of whether a breach occurred more objective. In addition, OCR...more

The Trend of Stricter State Data Breach Laws Continues with Florida

Florida’s new Florida Information Protection Act, Fl. Stat. § 501.171, became effective July 1, 2014. The new law repeals and replaces Florida’s existing data breach notification requirements (Fl. Stat. § 817.5681) with more...more

September 22, 2014: Quickly approaching deadline to amend business associate agreements

The HIPAA Omnibus Rule, enacted last year, made a number of changes to the HIPAA privacy, security and breach notification rules. Some of these changes affected business associate provisions of the HIPAA privacy and security...more

Amendments to California’s security breach notification bill head to governor: key action points for businesses

In what has become almost an annual ritual, California is poised to tweak its security breach notice law. Last year, in language DLA Piper lawyers helped to draft on behalf of the State Privacy & Security Coalition, the...more

Quirky Question #240, Breach Notification Laws

Question: Our company has employees and operations in multiple states, and I’m concerned about complying with data breach laws in the various locales. What’s the status of the law on data break...more

Changes in State Breach Notification Laws

As data breaches continue to occur, breach notification laws are being amended or enacted. In the United States, state and federal breach notification laws should be monitored carefully regarding changes, as should breach...more

Data Breach Notification, Helpful or Harmful?

Some IT professionals are debating whether they would issue a data breach notification in the event of a hack. Their rationale is that such a notification makes them a target for other hackers and that most of the incidents...more

Eye on Privacy Newsletter - July 2014

In this issue: - Proposed California Law Would Impose Data Breach Liability on Retailers and Create More Stringent Data Security Requirements for Businesses - FTC Continues Its Aggressive FCRA Enforcement and...more

Florida Information Protection Act of 2014 - Florida Means Business When It Comes to Protecting Customers' Personal Information

On June 20, 2014, Governor Rick Scott signed into law the Florida Information Protection Act of 2014 ("FIPA"), which became effective July 1, 2014. FIPA expands the obligations of businesses and government entities that...more

2014 Intelligence Authorization Act Imposes Cyber Breach Reporting Requirement on Intelligence Community Contractors - Many...

The federal government must publish new procedures 90 days after the 2014 Intelligence Authorization Act is signed. These procedures will become effective upon publication. Intelligence community contractors will be...more

Florida’s Strict New Data Breach Notification Law Takes Effect

The new law sets up one of the most robust data protection regimes in the United States and is relevant to any business that collects personal information nationwide....more

Tips For Navigating U.S. and International Data Breaches

Navigating today’s complex legal and regulatory framework surrounding data breaches can be a daunting process for even the most sophisticated organization. In the United States, there is not currently a national uniform data...more

Security Breach Notification Chart - Revised June 2014

Perkins Coie's Privacy & Security practice maintains a comprehensive chart that summarizes state laws regarding security breach notification. The chart is for informational purposes only and is intended as an aid in...more

Hot Topics Roundtable for Fund Managers - Cybersecurity, Valuation, and More [Video]

Representatives from Pepper Hamilton, Duff & Phelps and Freeh Group International Solutions (FGIS) led a fast-paced, interactive discussion of some of the hottest topics in the fund managing world. This podcast is a recording...more

SEC Requires Greater Disclosure of Cyber Events

Cyber is still a relatively young risk and the various stakeholders in cyber-risk are at times, still trying to determine their particular role. This includes the officers and/or directors of companies for establishing...more

Moving forward after going public with a data breach: Managing ongoing messaging

The time period between the discovery of a data breach and a company’s public announcement is never stress-free, even if you have managed the responses to other data breaches and your company has a preplanned response...more

“Cha-Ching” – HIPAA Settlement Reaches New Heights and Signals More To Come

In the largest HIPAA enforcement action to date, the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) extracted $4.8 million from two leading New York institutions, New York-Presbyterian Hospital...more

The Next Generation of Data Breach Notice Law — Florida’s Information Protection Act of 2014

In a harbinger of data-breach-laws to come, the Florida State Legislature just passed a new Florida Information Protection Act, which establishes tough new notification requirements for businesses and governmental entities....more

Kentucky Enacts Data Breach Notification Laws

On April 10, 2014, Kentucky became the 47th state to enact data breach notification laws. The new Kentucky law applies to “Information Holder[s],” defined as a persons or business entities that conduct business in Kentucky,...more

White House Issues Two Big Data Reports; Florida Legislature Passes Revamped Breach Notification Law

Yesterday, May 1, was a big day for privacy in the news. The White House issued 2 reports on the privacy implications of Big Data, and the Florida legislature overhauled the state’s security breach notification law,...more

Kentucky Enacts Data Breach Notice Law That Adds Extra Protection for Student Information while inBloom Withers

The world of the 1987 movie Robocop largely remains science fiction – except, perhaps the central character’s ability to access massive amounts of confidential personal data through the strike of a keyboard or even his helmet...more

State Data Security Breach Notification Laws

The general definition of “personal information” or “PI” used in the majority of statutes is: An individual’s first name or first initial and last name plus one or more of following data elements: (i) Social Security number,...more

Trendy “Cybersecurity” Versus Traditional “Information Security” Two Sides of the Same Security Coin

Cybersecurity has become a dominant topic of the day. The Snowden revelations, the mega-data breaches of 2013, the pervasiveness of invisible online “tracking” and the proliferation of “ data broker” trading in personal data...more

Kentucky Enacts Data Breach Notification Law - New Law Limits Cloud Service Providers’ Collection of Student Data

Kentucky is the 47th state, along with the District of Columbia, Guam, Puerto Rico and the Virgin Islands, to enact a data breach notification law requiring business entities to notify individuals of security breaches...more

Get your updated Mintz Matrix!

As our readers know, we maintain a summary of the US state data breach notification laws, which we refer to as the “Mintz Matrix.” We update the Mintz Matrix on a quarterly basis, or more frequently if developments dictate....more

77 Results
|
View per page
Page: of 4