Personally Identifiable Information

News & Analysis as of

NY Attorney General To Propose Bill To Strengthen Cybersecurity

New York Attorney General Eric Schneiderman is proposing an "overhaul [of] New York's data security law [that would] require new and unprecedented safeguards for the personal data of consumers." The proposal would create new...more

New York Will Consider Increasing Data Security Laws

New York’s Attorney General, Eric T. Schneiderman, plans to propose new data security legislation this year which, if enacted, could result in New York having one of the strongest data breach laws in the country....more

Data Breach Notification Law Even Applies to You, California Employer

Months before the well-publicized Sony catastrophe, California passed Assembly Bill 1710, which was signed into law on September 30, 2014, and became effective on January 1, 2015. The most discussed part of this new law...more

Dealing with High Risk Data

When people think of high risk data, most think of Personal Health Information and Personally Identifiable Information as it relates to HIPAA and the health care industry, but Steve Shebest’s very informative article “High...more

Time to Get Rid of Those Post-it Notes with All Your Passwords!!!

This month, Governor Chris Christie signed into law a New Jersey bill requiring health insurance carriers (e.g., insurance companies, health service corporations, hospital service corporations, medical service corporations,...more

N.Y. AG Seeks To Have the 'Strongest, Most Comprehensive' Data Security Law in Nation

Last week, New York Attorney General Eric Schneiderman announced that he would propose a new data security law in his state that would require companies to take increased safeguards for the protection of personal information....more

New York Attorney General Proposes Stiffer Data Security and Breach Notification Laws

New York State Attorney General Eric Schneiderman has proposed legislation that would make the state’s data security law the strongest in the country and require “unprecedented safeguards” for personal data....more

New York Attorney General Announces Proposal to Revamp State Data Security Laws

On January 15, 2015, New York Attorney General Eric Schneiderman indicated that he plans to propose legislation to update New York’s information security laws, including by revising the definition of “private information”...more

Proposed Federal Breach Notification Law: Panacea Or Flash in the Pan?

The Obama Administration has just released the proposed text of the Personal Data Notification & Protection Act as the latest step in its uniform federal breach notification initiative. Similar legislative efforts in the past...more

4 Things You Must Know About the New York Attorney General’s New Data Security Proposal

Fast on the heels of President Obama’s proposal to create a national data breach notification standard, yesterday, New York Attorney General, Eric Schneiderman announced that he will propose legislation that would...more

President Obama Proposes Legislation Requiring Businesses to Notify Customers of Data Security Breaches Within 30 Days

In a speech given before the Federal Trade Commission (FTC) on Monday, January 12, President Obama proposed federal legislation that would impose a nationwide standard on companies that experience a data security breach. The...more

FTC Charges Data Broker With Facilitating Theft Of Millions From Consumer Accounts

On December 23, 2014, the Federal Trade Commission ("FTC") announced the filing of a complaint charging a data broker with selling the sensitive personal information of hundreds of thousands of consumers to third parties that...more

Hong Kong Cross-Border Data Transfers

Although the restrictions for transfer of personal data outside of Hong Kong set out in section 33 of the Personal Data (Privacy) Ordinance (the Ordinance) are currently not yet in force, the Hong Kong Privacy Commissioner...more

State Data Breach Notification Laws

The general definition of “personal information” or “PI” used in the majority of statutes is: An individual’s first name or first initial and last name plus one or more of following data elements: (i) Social Security number,...more

Bill 3 Amendments to Alberta's Privacy Legislation Now in Force

Amendments to Alberta's Personal Information Protection Act (PIPA), originating in Bill 3, came into force on December 17, 2014. As discussed in our November 2014 Blakes Bulletin: Privacy Exceptions for Picketing: Alberta's...more

Recent legal actions highlight issues of children’s online privacy

Companies with online sites and services that expressly target a young audience, such as websites and mobile apps providing entertainment, games or educational enrichment specifically oriented toward children, should already...more

Indiana Joins States' Trend Toward Tougher Privacy and Data Protection

On December 22, 2014, Indiana became the latest state to propose legislation that will provide greater safeguards for personal and financial information online. The move in Indiana follows similar moves in California, New...more

California Data Breaches Require Identity Protection Services

California has long set the standard for protection of its residents’ personal information. California’s constitution explicitly recognizes a right to individual privacy and California’s legislature has been on the forefront...more

Newly-Adopted Privacy Standards for Cloud Service Providers

The International Standards Organization’s new cloud standard, ISO 27018, strives to ensure that public cloud service providers (such as Amazon, Google, and Rackspace) “offer suitable information security controls to protect...more

Protecting A Family’s Most Valuable Asset – Privacy

Each day, family offices receive, relay, and manage a family’s private information. Depending on the family and the role of the family office, the information managed can be voluminous and include financial information, tax...more

Employee Class Actions Mounting against Sony after “The Interview” Hacking Attack

Since December 15, 2014, six putative class actions have been filed against Sony Pictures Entertainment, Inc., asserting claims by current and former employees whose personal information was allegedly stolen during the...more

California’s Northern District Bucks Standing Trend in Data Breach Class Action

A recent California federal district court order may prove a massive boon to data breach class action plaintiffs. The Northern District of California order, issued in In re Adobe Systems, Inc. Privacy Litigation, denied...more

Federal District Court Judge Orders Compulsory Mediation In FTC v. Wyndham Worldwide Corp.

In 2012, the FTC sued Wyndham and three of its subsidiaries after hackers broke into Wyndham’s corporate computer system as well as systems at several of its individual hotels from 2008 to early 2010, resulting in exposure of...more

Bernstein Shur Business and Commercial Litigation Newsletter #47

We are pleased to present the 47th edition of the Bernstein Shur Business and Commercial Litigation Newsletter. This month, we highlight a case that addresses claims against Facebook based on the U.S. Wiretap Act, a case...more

Consumer Claims Survive Motion to Dismiss in Target Data Breach Class Action

A recent ruling by Federal District Judge Paul Magnuson will permit most of the consumer claims in the Target data breach litigation to survive Target’s motion to dismiss. This most recent ruling follows on the heels of the...more

602 Results
|
View per page
Page: of 25