Personally Identifiable Information Data Breach

News & Analysis as of

Ransoming Sensitive Personal Information: Will OPM’s Data Breach Trigger Your Insider Threats?

Perhaps it’s the books I’ve been reading or the television shows I’ve been watching, but my mind can’t seem to stop linking the recent barrage of cybersecurity attacks with those ne’er-do-wells that plagued the Caribbean from...more

Oregon Expands Data Breach Law

The modified law will expand the definition of personal information to include medical information and physical characteristics, and require notification to the state Attorney General. Businesses with customers in Oregon...more

Cybersecurity: Where Does the Buck Stop?

Over the last few months, we’ve been talking about cybersecurity issues for employers. We’ve discussed the responsibilities and risks associated with personally identifiable information and the wave of lawsuits resulting...more

Hack Attack?

Breathing a sigh of relief that he neither works for U.S. agencies requiring security clearances nor do his hiring policies require the details of mental illnesses, drug and alcohol use, past arrests, bankruptcies, Joe Hyre...more

PIPEDA Amendments In-Force

Amendments to Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) are frequently proposed but just as frequently die on the order paper. Bill S-4, which proposed the most significant amendments to...more

FINRA Fines Financial Firm for Failing to Encrypt Customer Data on Lost Laptop

Like other federal agencies exercising regulatory power in the data privacy and security arena, the Financial Industry Regulatory Authority (“FINRA”) is cracking down on firms that fail to meet required data security...more

Advocate Health data breach class action suit dismissal upheld by Appellate Court

In August of 2013, four computers of Advocate Health and Hospitals Corporation (Advocate Health) were stolen from one of its offices. The computers contained the names, dates of birth, Social Security numbers, health...more

Medical Informatics Engineering discloses data breach

Electronic health record (EHR) vendor Medical Informatics Engineering and its subsidiary, NoMoreClipBoard, which is a personal health record (PHR) product, notified its EHR clients and PHR individuals that it has been the...more

California’s Data Breach Laws

Almost all U.S states have laws about data security and what to do when there’s a data breach. California’s was the landmark law, first taking effect in 2003. Here is what California requires. Who The Laws Apply To....more

The U.S. Office of Personnel Management suffers largest breach in U.S. government history

The United States Office of Personnel Management (“OPM”) disclosed that it was the target of what has been described as the largest breach in U.S. government history, affecting the personal information of up to 14 million...more

Republican Senators Sought To Tie Cybersecurity Measure To Defense Bill

In the wake of the recent public disclosure of the massive breach into the Office of Personnel Management compromising the personal information of approximately 4 million individuals, Senators were hoping to tie a...more

Nevada Federal District Court Follows National Trend, Dismisses Data Breach Class Action for Lack of Standing

In granting a motion to dismiss a data breach putative class action lawsuit, the District of Nevada joined the majority of federal district courts in holding that plaintiffs whose personal information was stolen lack Article...more

District Court Dismisses Data Breach Class Action Against GameStop, Inc.

The US District Court for the District of Minnesota recently dismissed a data breach class action against GameStop, Inc. and Sunrise Publications, Inc. (d/b/a Game Informer) for lack of constitutional standing because the...more

Connecticut Supreme Court Affirms No Coverage under CGL Policy for Damages Arising from Lost Computer Tapes

The Supreme Court of Connecticut recently affirmed the lower court’s finding that no coverage obligation exists for insurers in Recall Total Info. Mgmt. v. Fed. Ins. Co., 2015 Conn. LEXIS 150 (Conn. May 26,...more

Illinois Appellate Court Finds Non-Injured Plaintiffs Lack Standing To Pursue Claims For Technical Violations Of State Consumer...

In Maglio v. Advocate Health and Hosps. Corp., 2015 IL App (2d) 140782-U (Ill. App. Ct. June 2, 2015), the Illinois Appellate Court was asked to decide whether individuals have standing to bring suit for violations of...more

Connecticut May Become First State to Require Identity Theft Protection

A bill currently before Connecticut Governor Dannel P. Malloy would make the state the first in the nation to require identity theft protection for data breach victims. Senate Bill 949 was approved by both the Connecticut...more

Employees Who Suffer Only Economic Losses From a Data Breach Cannot Sustain a Negligence Claim Against Their Employer

Creating a private cause of action in negligence for data breaches could result in the filing each year of possibly hundreds of thousands of lawsuits by persons whose confidential information may be in the hands of third...more

Zappos proposed data breach class action litigation dismissed

Continuing the growing trend of dismissing data breach cases when there is no evidence of actual harm, the United States District Court for the District of Nevada last week dismissed a class action case filed against Zappos...more

Heartland Payment Systems suffers another data breach

Heartland Payment Systems suffered one of the largest breaches in history in 2008, when over 100 million credit and debit cards issued by hundreds of financial service companies were stolen from their payroll payment...more

Pennsylvania Court Dismisses Data Breach Claims

In 2014, the University of Pittsburgh Medical Center’s computer system was hacked, resulting in the disclosure of sensitive personal information of current and former employees, including names, addresses, birthdates, social...more

Connecticut Requires Free Credit Monitoring for Certain Breaches

For nearly a decade, the Connecticut Attorney General (“AG”) has requested or encouraged companies to provide at least two years of free credit monitoring to Connecticut residents following breaches involving information...more

New 2015 Laws Update Data Breach and Identity Theft in Washington and Oregon - Both States Set New Requirements for Notifying...

Washington and Oregon both recently updated laws that define data security and incident response requirements for breaches of consumers’ personal information. Details of these new requirements for each state are...more

Data Breach Negligence Claims Not Recognized in Pennsylvania

In an important and well-reasoned 12-page decision, Judge Wettick of the Court of Common Pleas of Allegheny County refused to create a common law duty to protect and secure confidential information. The decision was issued in...more

Pennsylvania Court Refuses to Create a Duty of Care to Protect Confidential Personal Data

On May 28, 2015, Judge R. Stanton Wettick, Jr. refused to create a new cause of action sounding in negligence allowing a claim for damages resulting from improper disclosure of confidential personal and financial...more

Lack of Typicality and Adequacy of Representation Prevents Class Certification in Health Care Data Breach

The opinion from the Philadelphia Court of Common Pleas reinforces lack of standing as a defense for companies facing data breach–related class actions. On March 25, the Philadelphia Court of Common Pleas provided...more

265 Results
|
View per page
Page: of 11

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:

Sign up to create your digest using LinkedIn*

*With LinkedIn, you don't need to create a separate login to manage your free JD Supra account, and we can make suggestions based on your needs and interests. We will not post anything on LinkedIn in your name. Or, sign up using your email address.
×