When you rub the magic lamp and are offered three wishes for your digital advertising program, how can you use those wishes to avoid €50,000,000 fines from the French CNIL?
Transparency: You need to disclose clearly the...more
New study finds dramatic increases in threats and awareness of threats to knowledge assets — the confidential information that is most strategic to a company’s business — and remarkable strides by high-performing...more
On April 12, 2018, Kilpatrick Townsend hosted the International Association of Privacy Professionals (IAPP) Atlanta KnowledgeNet Chapter Meeting. With more than 80 IAPP members in attendance, Jon Neiditz and Amanda Witt,...more
The State of New York’s response to two large cybersecurity breaches may fuel the transformation of the state regulation of corporate cybersecurity in the U.S. Unlike typical state data breach statutes which focus on...more
The State of New York’s response to two large cybersecurity breaches may fuel the transformation of the state regulation of corporate cybersecurity in the U.S. Unlike typical state data breach statutes which focus on...more
The United States District Court for the District of Columbia recently endorsed private citizens bringing data breach claims directly against a government contractor where the contractor failed adequately to safeguard the...more
In a remarkable opinion with potentially wide-ranging implications, the United States District Court for the District of Columbia recently allowed a member of the public to sue a federal government contractor directly for...more
The Argentine Data Protection Authority recently issued a new regulation approving two sets of model contractual clauses (controller-to-controller and controller-to-processor) for the international transfer of personal data....more
As 2016 has come to a close, now is a good time to take stock of new disclosure obligations for website privacy policies introduced over the course of the year. It is likely that if your company’s privacy policy has not been...more
On Thursday, August 4, 2016, the U.S. Department of Health & Human Services, Office of Civil Rights (OCR) announced the largest settlement ever with a single entity for multiple potential Health Insurance Portability and...more
8/8/2016
/ Breach Notification Rule ,
Business Associates ,
Covered Entities ,
Data Breach ,
Data Security ,
Department of Health and Human Services (HHS) ,
Health Insurance Portability and Accountability Act (HIPAA) ,
OCR ,
PHI ,
Risk Management ,
Risk Mitigation ,
Settlement
Some of the biggest threats to cybersecurity involve controlling, damaging and interrupting systems, denying access to critical data and destroying data; “breach” not so much. Organizations need to make sure that their...more
1. Beyond Breaches -
With ransomware, cybersecurity in healthcare has gone far beyond HIPAA compliance, breaches of PHI or identity theft. For the unprepared healthcare provider not able to prevent ransomware or...more
You know how important data is to your business and you have been hearing about data breaches for more than a decade, but where do you find a simple, straightforward summary of how to protect your company? That is a question...more
3/10/2016
/ Confidential Information ,
Customer Lists ,
Cyber Insurance ,
Cybersecurity ,
Data Breach ,
Data Loss Prevention ,
Encryption ,
Passwords ,
Payroll Records ,
Personal Data ,
Privacy Policy ,
Trade Secrets ,
Vendors
Yesterday the European Commission released a draft “adequacy decision” on the protection provided by the EU-U.S. Privacy Shield together with the texts that will constitute the EU-U.S. Privacy Shield framework. Once adopted...more
3/1/2016
/ Complaint Procedures ,
Contract Terms ,
Corporate Counsel ,
Data Protection Authority ,
EU ,
EU-US Privacy Shield ,
Federal Trade Commission (FTC) ,
International Data Transfers ,
Personal Data ,
Popular ,
Self-Certification ,
U.S. Commerce Department ,
US-EU Safe Harbor Framework ,
Young Lawyers
Global organizations need a resilient strategy and actionable plans for dealing with the two worlds of privacy, cybersecurity, and data protection and governance: the world of rights and the world of harm. Emanating from...more
Sectoral regulation of privacy and information security in the United States has created a complex system for tech innovation, because new products and services transcend the traditional sectoral boundaries and because...more