Data Privacy Compliance

News & Analysis as of

Tribute to David Bowie and VW’s Cooperation Posture

We interrupt this week’s Travel Edition blog posts to honor David Bowie, who died yesterday. To say his album Diamond Dogs was a revelation is simply because it is the only word which comes close. During my final semester in...more

2016 Trends #2: Transitioning to a More Global Center of Gravity for Ethics and Compliance

Today, many ethics and compliance professionals, no matter where we’re located, find it to be important to keep up-to-date on the latest news from the European Union courts, the U.K.’s Serious Fraud Office and international...more

Focus on China - October 2015

Welcome to the third issue of Focus on China Compliance for 2015. According to the FCPA Blog’s October 2015 Corporate Investigations List, China leads the countries reported to be involved in FCPA investigations with 29...more

Interview: Amy Much - Director, Global Compliance, Under Armour

Protect This House - Amy Much discusses building a compliance program from the ground up at a fast moving, international organization....more

Eye of the Storm: Be Prepared for Cross-Border Data Compliance Ahead of the January 1 Deadline

The eye at the center of a hurricane is the calmest part of the storm. Winds subside. Blue skies appear. A sense of relief falls over everyone because the immediate danger seems to have passed. But one of the biggest...more

[Webinar] Managing Risk in the Era of Cyber Insecurity - Oct. 27th, 1:00 CST

Join privacy and data security attorney Richard Martinez for this informative session that will break down the details of the 50 leading enforcement actions taken by the FTC to regulate data privacy and cyber security. By...more

OCR portal designed for medical mobile app developers

The Office for Civil Rights (OCR) of the Department of Health and Human Services has launched a web based portal so medical mobile app developers can ask their “burning” questions about HIPAA compliance....more

Privacy, Security, Risk: What You Missed At IAPP Conference

Earlier this month, privacy and security professionals from around the globe gathered for “Privacy. Security. Risk. 2015”—the second joint conference between the International Association of Privacy Professionals and the...more

OIG Reports Insufficient Oversight Of HIPAA Compliance

The HHS Office for Civil Rights (OCR) must improve its oversight and enforcement of patient information privacy and security rules by “covered entities” and their business associates under the Health Information Portability...more

Is Your HIPAA Compliance Program Ready for the FTC?

Everyone in healthcare knows that the next round of HIPAA audits is coming. Covered entities and business associates have long been advised to review and update their HIPAA security risk analyses, have business associate...more

Dodd-Frank Executive Compensation Update: SEC Adopts CEO Pay Ratio Disclosure Rules

The Securities and Exchange Commission (SEC) recently adopted final rules implementing one of the last four remaining executive compensation requirements under the Dodd-Frank Wall Street Reform and Consumer Protection Act. ...more

OCR announces launch of Phase 2 of HIPAA audits

Although the Office for Civil Rights (OCR) has indicated in the past that it would start its next round of HIPAA audits, apparently it means business now. In the wake of an Inspector General report that the OCR was merely...more

Evolving Litigation of Data Breach Claims

An Illinois circuit court judge has dismissed five of six claims in a consolidated class action against Advocate Health and Hospital Corporation arising from a data breach in July 2013. The judge’s dismissal with prejudice...more

OCR Enters into $750,000 Settlement with Physician Practice for HIPAA Violations

On September 2, the Department of Health and Human Services Office of Civil Rights (OCR) announced a settlement with Cancer Care Group, P.C., a thirteen-physician oncology practice in Indiana related to violations of the...more

Incident Response Practice Tip: Balance Meeting Breach Notification Deadlines With Securing Your Network

State breach notification statutes are being amended on almost a monthly basis. Several laws have, or will soon have, a mandatory notification deadline for notifying affected individuals after the discovery of the incident....more

Interim rule requires Department of Defense contractors to report cyber breaches

Companies doing business with the U.S. Department of Defense are facing new requirements for reporting data security breaches and for acquiring cloud computing services. The Interim Rule, effective August 26, 2015, amends the...more

Russia’s new data law

Russia’s new Data Localisation Law went live yesterday on 1 September. Many companies with operations in Russia are scratching their heads about how to comply. The Basics - The new law applies to businesses with a...more

9 Key Provisions of Outsourcing Contracts That Matter

Outsourcing, whether technical or process-centric, has become an increasingly important component of businesses of all sizes. Handing over the complexity of ever-changing systems that require increasing expertise can often...more

SEC Pay Ratio Rules — A Recipe for Compliance and Model Disclosure

The SEC recently adopted its final pay ratio disclosure rules. Commencing in early 2018, public companies[1] will have to disclose (i) their CEO's total annual compensation, (ii) the median total annual compensation of all...more

SEC Adopts Pay Ratio Rules

On August 5, 2015, the Securities and Exchange Commission (“SEC”) adopted rules, as directed by Congress in Section 953(b) of the Dodd-Frank Wall Street Reform and Consumer Protection Act (“Section 953(b)”), to require...more

Subject Access Request risk: limits in sight?

A recent High Court case took a very robust stance on the issue of DSARs (Data Subject Access Requests) being used to fuel litigation. An individual can make a DSAR to request access to any of his/her personal...more

Federal Trade Commission Continues Its Enforcement Campaign Against False Safe Harbor Claims

Reiterating its commitment to enforcing the U.S.-EU and U.S.-Swiss Safe Harbor Frameworks, the Federal Trade Commission announced on Monday that it has reached settlements with 13 companies alleged to have misled consumers...more

Seventh Circuit rules hospital system is not a Consumer Reporting Agency under FCRA

Is a hospital a “consumer reporting agency”? Can a health care provider be liable under the Fair Credit Reporting Act (FCRA) in the event of a data breach? The Seventh Circuit Court of Appeals recently considered these...more

FTC settles false safe harbor allegations with thirteen companies

The FTC has made it clear over the past year that it is serious about companies’ compliance with the US-EU and US-Swiss safe harbor programs, and has publicly stated that it is randomly reviewing company websites to ensure...more

The ABCs of COPPA Compliance

In today’s environment – when data breaches seem to be in the news nearly every day – the media, regulators and many others are hyper-focused on privacy issues. Schools and educational institutions are no exception when it...more

37 Results
|
View per page
Page: of 2
JD Supra Readers' Choice 2016 Awards

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×