Personally Identifiable Information Data Breach

News & Analysis as of

New Mexico comes late to data breach party, requires promptness

Thirteen years after the first state data breach notification law was enacted, New Mexico has finally decided to join the other 47 states with such laws, sending HB15 in mid-March to Gov. Susana Martinez for signature...more

New Mexico and its New Data Breach Notification Law

We are almost to a point where all 50 states and the District of Columbia will have some form of data breach notification law on their books to protect residents’ personally identifying information (PII) in the event of a...more

New Mexico On the Brink of Passing Data Breach Law

On March 15, 2017, New Mexico's Senate passed H.B. 15, which would create the state's first data breach notification law. New Mexico is currently one of only three states (including Alabama and South Dakota) without a data...more

Recent Circuit Court Opinions Offer Guidance on Challenging the Standing Requirement for Plaintiffs in Data Breach Cases

By following trends and monitoring successful defenses in data breach litigation, companies can often avoid the reputational harm caused by making headlines. For most companies,it is not a question of whether they have been...more

Veteran Class-Action Suits Following Data Breaches Dismissed for Lack of Standing

In a decision consolidating two cases involving two veterans and two separate incidences of data breaches at the Veterans Affairs Medical Center (VAMC) in South Carolina, the US Court of Appeals for the Fourth Circuit...more

New Mexico Set to Become 48th State To Enact Data Breach and Safeguards Law

Last week, the New Mexico Legislature passed The Data Breach Notification Act (“Act”). Once the Act is signed by Governor Susana Martinez, New Mexico will join 47 other U.S. states (along with D.C., Guam, Puerto Rico, and the...more

Marijuana and Privacy: A Primer

Legal marijuana is America’s fastest-growing industry. According to ArcView Market Research, cannabis revenue is expected to exceed $22 billion by 2020—nearly double that of the NFL. This past year, Colorado saw its sales...more

Know the Risks of a Cyberattack on Your Third-Party Service Providers

Names, emails, credit card numbers, and home addresses: chances are good that your business collects client data with information that is valuable to hackers on the black market. A hacker will at some point try to access...more

New Mexico Passes Data Breach Notification and Protection Bill

Then there were two. On March 16, 2017, the New Mexico state legislature passed a bill requiring that New Mexico residents be notified if their “personal identifying information” was affected by a breach of electronic...more

Privacy Tip #78 – Cybersecurity Aids for Small Businesses

I frequently get complaints from small businesses that they don’t have the resources or resilience to properly address cybersecurity and that it is overwhelming to them. Well, it is. We frequently tell businesses that...more

New Mexico, One of the Last Holdouts, Sends Data Breach Notification Law to Governor

New Mexico is one of the few remaining states to not have a law requiring companies to notify consumers when their information is part of a data breach. This, however, might change very soon. Last Wednesday, the New Mexico...more

Data Breach 101, Part I: Data Breach Notification Laws

In 2017, there are few words that make companies – and their counsel – shudder more than “data breach.” Recent high-profile breaches and the resulting litigation have shown that breaches can be embarrassing, harmful to a...more

Federal Agencies Hit with 30,899 Cyberincidents in 2016

The Office of Management and Budget (OMB) released a report this week indicating that federal agencies experience almost 31,000 cyberincidents in 2016. The Federal Deposit Insurance Corporation was responsible for 10 of 16...more

Cardiology Group Hard Drive Stolen

Denton Heart Group, located throughout Dallas, has notified 21,665 patients that their protected health information has been compromised as a result of the theft of a hard drive from a locked closet....more

Three Lessons All Companies Can Learn from the Data Breaches that Cost Yahoo $350 Million

Yahoo Inc. recently disclosed three massive data breaches, which compromised the personal information of 1.5 billion users and cost Yahoo $350 million in its acquisition by Verizon Communications Inc. Additionally, the...more

Air Force Security Clearance Files Compromised on Unsecured Backup Drive

Security researchers have discovered that an unsecured backup drive has compromised thousands of U.S. Air Force documents, including personnel files and sensitive forms filled out by senior and high-ranking officials. These...more

Global Privacy & Cybersecurity Update Vol. 13

On December 28, 2016, the New York Department of Financial Services ("DFS") released a revised version of a proposed regulation that would require banks, insurance companies, and other financial services institutions...more

West Virginia University Medicine University Healthcare Patients Victims of Identity Theft

West Virginia University Medicine University Healthcare (WVUM) has confirmed that it is sending notification letters to over 7,400 of its patients seen at Berkeley Medical Center as a result of an unauthorized access to their...more

Yahoo Breaches Cost Shareholders $350 Million From Lowered Purchase Price, CEO Forfeits $14 Million in Compensation

Yahoo’s troubles for failing to timely disclose security breaches provides rare insight into quantifying the financial and other costs to a company’s shareholders and leadership when a security breach occurs and is...more

Yahoo incident reinforces vital role of counsel in cybersecurity

It has widely been reported that Yahoo has experienced significant legal and business impacts as a result of several cybersecurity breaches. On 1 March, Yahoo disclosed the findings of an independent board committee and...more

Cybersecurity Threats: What Retirement Plan Sponsors and Fiduciaries Need to Know – and Do

What is the Risk? The loss of employee personal information due to a cyber breach is an ever-increasing concern to all employers. After years of work to put into place protocols to comply with HIPAA’s requirements on...more

Plaintiffs in Horizon Breach Win Key Article III Ruling at 3rd Circuit

Recently, the Third Circuit Court of Appeals overturned a United States District Court for the District of New Jersey dismissal of a class action filed in the aftermath of a data breach at Horizon Healthcare Services Inc.,...more

Horizon BCBS of New Jersey Pays State $1.1 million for HIPAA violations

We often forget that state AG’s have jurisdiction under the HIPAA Omnibus Rule to levy fines and penalties against HIPAA covered entities for violations. This is because the Office for Civil Rights has traditionally taken the...more

Vanderbilt University Medical Center PHI Breached by Patient Transporters

Vanderbilt University Medical Center (VUMC) has announced that it will be sending breach notification letters to over 3,000 patients as a result of unauthorized access to PHI by two patient transporters....more

Subject Access Requests in the UK - An Update

This OnPoint reports on the Court of Appeal judgment in Dawson-Damer & Ors v Taylor Wessing LLP, handed down on 16 February 2017, which addresses two key aspects of the legislation enabling individuals to lodge subject access...more

752 Results
|
View per page
Page: of 31
Cybersecurity

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*By using the service, you signify your acceptance of JD Supra's Privacy Policy.

Already signed up? Log in here

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×