News & Analysis as of September 19, 2024

Notice Requirements

+ Follow

Compliance programs typically refer to formalized institutional procedures within corporations and organizations to detect, prevent and respond to indvidual and widespread instances of regulatory violations. In response to many corporate scandals evidencing rampant unethical business practices, many nations, including the United States, began passing strict regulatory frameworks aimed at curbing these abuses. Notable pieces of legislation in this area include the U.S. Foreign Corrupt Practices Act (FCPA), Sarbanes-Oxley (SOX), and the U.K. Bribery Act, to name a few. The foregoing statutes and the severe penalties often associated with them form the basis of many modern institutional compliance programs. less -

Personal Data Sharing: What Information About Recipients Do We Need to Provide to Individuals Under the GDPR?

Mayer Brown on 9/13/2024

Sharing personal data is necessary for most organisations, but it also entails certain data protection risks. Controllers who share personal data with others must, among other obligations, ensure that they comply with the...more

3 New State Privacy Regulations Take Effect on July 1, 2024, With Federal Legislation Still on the Horizon: Are You Ready to...

Hinshaw & Culbertson - Privacy, Cyber & AI... on 6/26/2024

With state privacy laws continuing to increase, will the federal American Privacy Rights Act be adopted? Over 18 states have now enacted comprehensive state privacy laws, three of which go into effect on July 1, 2024, in...more

Texas Data Privacy and Security Act – An Overview

Davis Wright Tremaine LLP on 7/7/2023

The Texas Data Privacy and Security Act (TDPSA) became law on June 16, 2023. Texas becomes the 11th state to enact a comprehensive consumer data privacy law, joining California, Virginia, Colorado, Connecticut, Utah, Iowa,...more

The Colorado Privacy Act applies to non-profits - is your non-profit ready?

BCLP on 6/9/2023

To date, US non-profit organizations have enjoyed an exemption from the state omnibus privacy laws. That’s about to change. Unlike the California Privacy Rights Act (CPRA), the Virginia Consumer Data Protection Act (VCDPA),...more

Iowa Governor Signs Data Privacy Act into Law

Bass, Berry & Sims PLC on 3/30/2023

On March 28, Iowa Governor Kim Reynolds signed into law an Iowa consumer privacy act (SF 262), making the state the sixth to adopt what is generally considered a comprehensive consumer privacy law. The law takes effect on...more

Are You a Financial Institution? GLBA Law & Compliance

Oberheiden P.C. on 6/15/2021

The Gramm-Leach-Bliley Act (GLBA) is a federal law that establishes various legal requirements for companies that qualify as “financial institutions” under the Act. The GLBA’s definition of a “financial institution” is...more

After a Breach Is Too Late: Ensure BA, Subcontractor Compliance Now

Health Care Compliance Association (HCCA) on 3/25/2021

Report on Patient Privacy 21, no. 3 (March 2021) - Sometime during the fall, a worker for a subcontractor of Humana Inc. decided to share actual member information from medical records via a Google document with people he...more

A Quick Compliance Checklist Before the July 1 Enforcement of the CCPA

Payne & Fears on 6/26/2020

The window for getting up to speed on California Consumer Privacy Act requirements is rapidly closing. The state Attorney General’s final version of the regulations goes into effect on July 1. This article provides a...more

Energy Newsletter - April 2020

King & Spalding on 4/17/2020

Developing Contingency Plans: The NYDFS Mandate on Licensed Virtual Currency Businesses - The events surrounding COVID-19 have increased the use of fintech products, both out of necessity and convenience. Shelter-in-place...more

New York Dept of Financial Services (NYDFS) Extends Cybersecurity Compliance Deadline

Mintz - Privacy & Cybersecurity Viewpoints on 4/1/2020

The NYDFS has announced that it has extended the deadline for compliance with certain cybersecurity requirements due to the coronavirus emergency. The announcement from the Superintendent of Financial Services of the State...more

California’s privacy law went into effect Jan. 1; have you spoken to IT yet?

Society of Corporate Compliance and Ethics... on 1/13/2020

Report on Supply Chain Compliance 3, no. 1 (January 9, 2020) - California’s new data privacy law went into effect Jan. 1, 2020, but the date is largely symbolic. Companies should already have a data management plan in...more

Proposed CCPA Regulations: The Attorney General's Expectations for Businesses Subject to the CCPA

McDermott Will & Emery on 10/15/2019

On October 10, 2019, the California Attorney General released proposed regulations to implement the California Consumer Privacy Act (CCPA), including substantial new requirements not included in the CCPA. Here we offer a...more

[Webinar] Response and Recovery Planning: Corporate Ethics and Compliance Failure - August 11, 1:00pm Central

Robins Kaplan LLP on 8/4/2015

Most companies have a plan for disaster recovery related to technology, physical location, and data – but what happens when you must respond to allegations of a violation of customer trust or compliance? Does your...more

BBB Warns Advertisers and Web Publishers to Take Responsibility for Behavioral Advertising Disclosures

Proskauer - Privacy & Cybersecurity on 12/16/2013

The Better Business Bureau (“BBB”) and the Direct Marketing Association (“DMA”) are in charge of enforcing the ad industry’s Self Regulatory Principles for Online Behavioral Advertising (“OBA Principles”), which regulate the...more

HIPAA Rules Overhaul Ups Compliance Ante

Pullman & Comley, LLC on 2/15/2013

Originally posted in Hartford Business Journal on February 11th, 2013. Attention all medical providers, hospitals and any other covered entity or business associate under HIPAA. On Jan. 17, the U.S. Department of Health...more

A Detailed Analysis of Changes to HIPAA and the Implications for Healthcare Providers and Others in the Healthcare Industry: HIPAA...

Womble Bond Dickinson on 2/6/2013

Changes to the HIPAA Enforcement Rule - Background: On October 30, 2009, HHS issued an interim final rule revising the Enforcement Rule to incorporate provisions of the HITECH Act. The NPRM then proposed a number of...more

New HIPAA Rules Expand Breach Notification Requirements

Pierce Atwood LLP on 2/4/2013

If your company is subject to HIPAA, new rules published by the Department of Health and Human Services (“HHS”) will require changes in your policies and practices regarding data breaches....more

Health Law Alert: HHS Publishes Long-Awaited Final HIPAA Omnibus Rule

Stinson LLP on 1/29/2013

On Friday, January 25, 2013, the U.S. Department of Health and Human Services (HHS) published the long-awaited final HIPAA Omnibus Rule, modifying the HIPAA Privacy, Security, Enforcement and Breach Notification Rules under...more

HIPAA and HITECH Privacy and Security Rule Update: Final Omnibus Rule

Bradley Arant Boult Cummings LLP on 1/28/2013

The Office of Civil Rights (“OCR”) of the Department of Health and Human Services (“HHS”) published today the much anticipated final omnibus rule implementing the Health Information Technology for Economic and Clinical Health...more

OCR Issues Long-Awaited Omnibus HIPAA/HITECH Rules: Significant Changes for Business Associates and Breach Analysis

King & Spalding on 1/25/2013

The wait is finally over. On January 17, 2013, the U.S. Department of Health & Human Services (HHS), Office for Civil Rights (OCR), issued the final “omnibus” rule modifying the HIPAA Privacy, Security, Breach Notification...more

A Comprehensive Summary of the Final Omnibus HIPAA/HITECH Rules: Key Provisions and What They Mean for You

Poyner Spruill LLP on 1/25/2013

Executive Summary - On January 25, 2013, the Federal Register will publish final omnibus rules written by the U.S. Department of Health and Human Services (HHS) to modify the HIPAA Privacy, Security, Breach...more

One Week to Get Business Associate Agreements Executed Under HIPAA Omnibus Rule’s Grandfather Clause

Davis Wright Tremaine LLP on 1/21/2013

On Jan. 17, 2013, the long-awaited HIPAA “Omnibus Rule” went on display at the Federal Register, finalizing changes to the HIPAA Privacy, Security, Breach Notification, and Enforcement Rules....more

HITECH Omnibus Rule Basics

Mintz - Privacy & Cybersecurity Viewpoints on 1/18/2013

As we pore through the 562-page HITECH Omnibus Rule released by the Department of Health and Services late yesterday afternoon, here are some top line bullet points...more

Finally! HHS Office of Civil Rights Releases HIPAA Omnibus Rule With Sweeping Changes to Compliance Requirements and Enforcement

Mintz - Privacy & Cybersecurity Viewpoints on 1/18/2013

The final regulations from Department of Health and Human Services Office of Civil Rights (OCR) containing modifications to the HIPAA Privacy, Security, Enforcement, and Breach Notification Rules (Omnibus Rule) have finally...more

The HIPAA/HITECH Final Rule Has Been Released

BakerHostetler on 1/18/2013

The long awaited HIPAA/HITECH Final Rule is out. The final rule is effective March 26, 2013, but covered entities (CEs) and business associates (BAs) will have 180 days beyond the effective date to come into compliance....more

25 Results

View per page

Page: of 1

Compliance › Data Protection › Notice Requirements

"My best business intelligence, in one easy email…"