Personally Identifiable Information

News & Analysis as of

Massachusetts Appeals Court Set to Consider Scope of Employer Liability for Employee Data Breaches

Many of the highest-profile and headline-catching data breaches involve external breaches of a company’s electronic systems. But the reality that these headlines obscure is the fact that internal data breaches are generally...more

Privacy Tuesday – August 2015

While you enjoy what is left of the summer of 2015, we will kick off your week with a few privacy and security bits and bytes....more

Seventh Circuit Court of Appeals Reverses Dismissal of Data Breach Class Action – Finds Standing

The Seventh Circuit Court of Appeals’ recent ruling in Remijas v. Nieman Marcus, 2015 U.S. App. LEXIS 12487 (7th Cir. July 20, 2015), reversed the lower court and held that customers of luxury retailer Neiman Marcus had...more

Netflix Defeats Video Privacy Class Action

In Mollett, et al. v. Netflix, Inc., No. 12-17045 (9th Cir. July 31, 2015), the Court of Appeals for the Ninth Circuit affirmed the dismissal of a putative class action filed against Netflix, Inc. for alleged violations of...more

Amendment to the Personal Information Protection Act Passed in the National Assembly July 6, 2015

On July 6, 2015, the Korean National Assembly passed a bill containing several amendments to the Personal Information Protection Act (PIPA). This bill (the Amendment Bill) combines a number of major provisions from nine...more

OPM Data Breach Update

The Senate Appropriations Committee has approved funding to provide the 22 million individuals affected by the OPM data breaches with 10 years of credit monitoring services and $5 million in liability protection for damages,...more

HIPAA Security Requirements Aren't Cloudy, Especially to Whistleblowers

Earlier this month, the U.S. Department of Health and Human Services Office for Civil Rights (HHS OCR) announced that it had entered into a settlement agreement with St. Elizabeth's Medical Center (SEMC) in Brighton,...more

NIST releases draft guide for use of mobile devices for medical providers

The National Institute of Standards and Technology (NIST) cybersecurity center released a draft guide last week for health IT professionals to use to bolster security for the use of mobile devices in the health care industry....more

LifeLock Inc. sued by FTC for allegedly violating order and misleading customers

In 2010, LifeLock Inc. entered into a settlement with the Federal Trade Commission (FTC) and 35 state attorneys general for $12 million for allegations involving false promises and lack of security. The settlement was...more

Member information accessed through Healthfirst’s online portal during fraud scheme

On July 25, 2015, Healthfirst Inc. notified approximately 5,300 of its members that their information may have been compromised during a criminal fraud scheme perpetrated against it. The fraudulent scheme was discovered by...more

Nevada, Washington and North Dakota Expand Data Breach Definition and Notice Requirements

Continuing the trend of states expanding their data privacy laws, companies that store and transmit personal information about residents of Nevada, Washington and North Dakota must now take note of additional data-element...more

Getting More Personal: California Amends Data Security Law

California’s data security statute will get a little more “personal” as of January 1, thanks to a recently-passed amendment revising the definition of covered personal information. On July 14 California expanded the...more

Health Canada Releases Guidance for Industry on Its Reporting Obligations

Recently, Health Canada released guidance to help companies understand their reporting obligations under section 14 of the Canada Consumer Product Safety Act, which requires that sellers, distributors, importers, and...more

State Law Roundup: Legislatures Across the U.S. Revamp Data Breach Notification Laws

As the number of highly publicized data breaches continues to skyrocket and proposals for a federal data breach notification law stagnate, state legislatures around the country have been busy amending their own breach...more

Federal Data Breach Bill Stalled in Congress

A key distinguishing feature of U.S. data privacy laws is their patchwork nature. There are industry-specific data privacy laws at the federal level (think HIPAA or the GLBA), yet there are no comprehensive federal standards...more

Oregon Amends Data Breach Law — Companies Can Expect More Enforcement Actions

Oregon Gov. Kate Brown recently signed into law amendments to the state’s data breach law. These amendments recognize the growing definition of data, expand the role of the Attorney General in addressing data breaches,...more

Remijas v. Neiman Marcus: Seventh Circuit Affords Broad Standing To Sue Over Consumer Data Breaches

When hackers breach a business’s systems, class actions are sure to follow. Often, however, these suits have faltered right out of the starting gate. Citing the Supreme Court’s 2013 decision in Clapper v. Amnesty...more

Class action filed against UCLA following data breach

We previously reported that UCLA suffered a data breach affecting 4.5 million patients. Days following the announcement of the breach, plaintiffs filed a proposed class action lawsuit against UCLA, alleging that UCLA should...more

HR Has More Important Things To Do

On Tuesday, Salon published an article titled “5 Ways Corporate HR Departments Monitor Your Movements – Even When You’re Not Working.” Because we’re always interested in the subject of employee monitoring, we eagerly clicked...more

“Life is short. Have an affair.”® And have your data hacked and leaked

Hackers calling themselves “The Impact Team” announced on July 15th that it has compromised the extramarital affair site AshleyMadison.com, and companion sites Cougar Life and Established Men, including absconding with up to...more

This Is Not Your Father's Oldsmobile: Car Hacking and the SPY Car Act

Not coincidentally, on July 21, 2015, Wired Magazine published an article with groundbreaking evidence of hacking a car wirelessly, and Senators Edward Markey (D-Mass.) and Richard Blumenthal (D-Conn.) introduced legislation...more

Seventh Circuit Holds That Risk of Future Fraudulent Charge on Credit Card Sufficient to Withstand Motion to Dismiss

During the 2013 holiday season, Neiman Marcus, like many other retailers, discovered that its payment card systems had been compromised and customers’ credit and debit card information was potentially stolen....more

Did the 7th Circuit Just Ease the Way for Consumer Data Breach Lawsuits?

On July 20, 2015, a federal appeals court in Chicago issued what could be a watershed ruling in favor of consumers pursuing class action lawsuits against retailers and other companies following data breaches that involve the...more

GAO Issues Report Citing Shortcomings In Federal Government Cybersecurity

On July 8, 2015, the Government Accountability Office (“GAO”) issued a report finding that agencies across the federal government continue to have shortcomings in preventing, detecting, and responding to cyber threats. The...more

Internet-Based Document Sharing Applications Scrutinized

On July 8, 2015, the U.S. Department of Health and Human Services, Office for Civil Rights (OCR) and St. Elizabeth’s Medical Center (SEMC) located in Boston, Massachusetts entered into an agreement following an investigation...more

845 Results
|
View per page
Page: of 34

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×