News & Analysis as of

Data Protection Data Breach

Healthcare Providers Beware: HIPAA Isn’t Your Only Concern Following a Data Breach–State Law Matters

by McGuireWoods LLP on

Healthcare service provider CoPilot Support Services (“CoPilot”) recently agreed to pay a $130,000 settlement after it waited over a year to notify patients of a data breach, in violation of New York’s breach notification...more

Significant Rise In Data Privacy Breach Fines In The UK In 2016

by King & Spalding on

A report by professional services firm PwC, using figures from the UK’s Information Commissioner’s Office (“ICO”), confirmed that the number of fines handed out for breaking UK data protection laws almost doubled last year,...more

Strengthening Data Security Through Human Resources And Information Technology Teamwork

by Jackson Lewis P.C. on

Human Resources (“HR”) and information technology (“IT”) departments play unique and important roles within an organization. With instances of data breaches on the rise, however, companies should be mindful of the importance...more

Northern District of Illinois Dismisses Barnes & Noble Data Breach Lawsuit

by Alston & Bird on

Earlier this month, the United States District Court for the Northern District of Illinois entered an order dismissing with prejudice a putative class action concerning a security breach affecting PIN pad devices at numerous...more

My Entity Just Experienced a Cyber-Attack! What Do We Do Now?

by Balch & Bingham LLP on

On June 9, 2017, the U.S. Department of Health and Human Services (HHS), Office of Civil Rights (OCR) released a cyber-attack “Quick Response” checklist (the Checklist) for the benefit of HIPAA covered entities and business...more

Companies Using IoT Being Hit with Security Breaches

A new survey released by Altman Vilandrie & Company, which surveyed 400 IT personnel who have purchased Internet of Things (IoT) security products, shows that 46 percent of companies that buy IoT security admitted they have...more

U.S. Court Upholds Privilege Claim Respecting Report Prepared Following Data Breach

Those following developments in the data breach litigation space will be interested in the recent decision, In re Experian Data Breach Litigation (In Re Experian), where the California District Court upheld a privilege claim...more

Data Gets Personal

by Conduent on

The average total cost per data breach for a U.S. company is $4 million, not to mention reputational damage to the brand and possible litigation1 . No entity is immune from ransomware gangs, careless employees exposing...more

OCR Publishes Checklist and Infographic for Cyber Attack Response

OCR released a simple checklist and infographic last week to assist Covered Entities and Business Associates with responding to potential cyber attacks. As cybersecurity remains a pressing concern for health care entities,...more

IoT Cybersecurity and Data Privacy Trends in Asia: Be Ready

by Hogan Lovells on

In this hoganlovells.com interview, Hong Kong-based Hogan Lovells partner Mark Parsons talks about the regulatory environment in Asia as it relates to cybersecurity, data privacy, and the Internet of Things (IoT)....more

Yet another Target settlement highlights data breach costs

by Thompson Coburn LLP on

In what appears to be the closing act of the saga that is the Target data breach, on May 23 the retailer announced it had reached a settlement agreement with a coalition of 47 states’ attorneys general. Pursuant to the...more

Target Settles For $18.5M Over 2013 Customer Data Breach

by King & Spalding on

On May 23, 2017, Target Corp. reached a settlement with 47 states and the District of Columbia, agreeing to pay $18.5 million to resolve the states’ investigation into Target’s 2013 customer data breach. The resolution...more

Protecting Breach Investigation Reports in Litigation – Key Actions

by Baker Donelson on

A recent opinion from the District Court for the Central District of California in In re Experian Data Breach Litigation offers some examples of best practices for establishing the work-product privilege over certain...more

Consumer Financial Data Aggregation & the Potential for Regulatory Intervention

A confluence of regulatory activity and policy debates seems to be laying the groundwork for future regulation of consumer financial data aggregation activities. The outcome of these activities could significantly affect how...more

Business Litigation Alert: "Expect More. Pay More. No Sale for Target After Paying Out Over $60M in Data Breach Settlements"

by Porter Hedges LLP on

Last week, Target announced that it reached a settlement of $18.5 million with attorney generals in 47 states and the District of Columbia over the massive security breach it suffered in 2013....more

New Mexico Passes Data Breach Notification Law

by Selman Breitman LLP on

New Mexico recently became the 48th state to enact some type of legislation requiring companies to notify individuals of data breaches involving their personally identifiable information, leaving only Alabama and South Dakota...more

Home Depot Settles Data Breach Suit for $25M

As a result of a $25 million settlement reached with the remaining banks and credit unions, the litigation against Home Depot stemming from its 2014 data breach will finally end....more

(Un)Protected Health Information Held for Ransom

by Snell & Wilmer on

Recent experiences of major health care companies offer a reminder of the importance of data security and following a well-written policy for compliance with the HIPAA Privacy Rule....more

Funds Talk: June 2017 - Incident Response Plans Form an Essential Part of Cybersecurity Frameworks

Cybersecurity has increasingly moved into the spotlight in recent years, with regulators and financial firms alike clambering to keep pace with rapidly changing demands as threats continue to evolve....more

Court Applies Work Product Protection to Breach Investigation Reports

One of the most significant questions in data security law is whether reports created by forensic firms investigating data breaches at the direction of counsel are protected from discovery in civil class action lawsuits. ...more

Global Privacy & Cybersecurity Update Vol. 14

by Jones Day on

New York Attorney General Announces Record Number of Data Breach Notices in 2016 - On March 21, 2017, the New York Attorney General's Office announced that it received 1,300 reported data breaches in 2016—a 60 percent...more

Record-Setting Target Settlement Changes Expectations for Institutional Data Security

On May 24, 47 state attorneys general settled with Target for $18.5 million regarding its 2013 data breach. The implications of the agreement may be more far-reaching than many companies realize. The fact that nearly all...more

GDPR Compliance Update: Which Government Authorities Have Issued Official GDPR Guidance?

This post provides an update as to the current status of official GDPR-related guidance. With a little under a year remaining until the European Union’s General Data Protection Regulation (GDPR) becomes enforceable, companies...more

Privacy & Cybersecurity Update - May 2017

In this edition of our Privacy and Cybersecurity Update, we take a look at the Trump administration's executive order outlining its cybersecurity plans, Acting FTC Chairwoman Maureen Ohlhausen's comments on the possible...more

Deeper Dive: Vendor Management Crucial for Data Protection

by BakerHostetler on

In our 2017 Data Security Incident Response Report, we found that of the 450+ incidents we worked on last year, network attacks that succeeded due to vendor wrongdoing were significantly more common (15 percent) than those...more

1,085 Results
|
View per page
Page: of 44
Cybersecurity

"My best business intelligence,
in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up using*

Already signed up? Log in here

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.