One of the most significant consumer rights offered by the new California Consumer Privacy Act (CCPA) is what we call the “private right of action” afforded by the law. A private right of action under a law basically means...more
3/13/2020
/ California Consumer Privacy Act (CCPA) ,
Class Action ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Information Governance ,
Personal Data ,
Personally Identifiable Information ,
Privacy Laws ,
Private Right of Action ,
State and Local Government
It’s getting difficult to keep up with the jargon of all of the new digital scams. The SaaSes in the beginning became regular business terms, such as Software-as-a-Service (SaaS), and Business Processes-as-aService (BPaaS)....more
1/24/2020
/ Artificial Intelligence ,
Cyber Crimes ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data-Sharing ,
Health Insurance Portability and Accountability Act (HIPAA) ,
NIST ,
Online Platforms ,
Personal Data ,
PHI ,
Risk Management ,
SaaS
Some app developers know more about our health than our doctors do. Take, for instance, FitBit, which is attached to our wrist and measuring in real time our temperature, our heart rate, our steps and whether we have had...more
1/24/2020
/ 23andMe ,
Consumer Privacy Rights ,
Data Collection ,
Data Management ,
Data Protection ,
Data-Sharing ,
DNA ,
Electronic Medical Records ,
Fitbit ,
Genetic Materials ,
Genetic Testing ,
Health Care Providers ,
Health Information Technologies ,
Health Insurance Portability and Accountability Act (HIPAA) ,
Information Technology ,
Mobile Apps ,
Patients ,
Personal Data ,
Personally Identifiable Information ,
Telehealth ,
Telemedicine
The same week that the National Institute of Standards and Technology came out with its Privacy Framework [view related post], highlighting how privacy is basically a conundrum, news articles also highlighted a new...more
I don’t know much about dating apps. I met my husband decades ago, long before the Internet, and the old-fashioned way—in college. But I know people who have used them, have been happy with them, have found their life partner...more
1/16/2020
/ Ashley Madison ,
Consumer Privacy Rights ,
Cookies ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Dating Services ,
Internet ,
Mobile App Privacy Guidelines ,
Mobile Apps ,
Online Platforms ,
Personally Identifiable Information ,
Privacy Policy ,
State Attorneys General ,
Web Tracking ,
Websites
After much anticipation and trepidation, the California Consumer Privacy Act (CCPA) went into effect on January 1, 2020. Many companies are understandably still grappling with the details of the law, the amendments, and the...more
1/3/2020
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Deletion ,
Data Management ,
Data Privacy ,
Data Protection ,
Information Governance ,
Opt-In ,
Opt-Outs ,
Personal Data ,
Personally Identifiable Information ,
Popular ,
Privacy Laws ,
Right to Delete ,
Rulemaking Process ,
State and Local Government
An Illinois employee of Power Solutions International Inc. (Power Solutions) filed suit against his employer alleging violations of the Illinois Biometric Information Privacy Act (BIPA) when Power Solutions collected his...more
12/20/2019
/ Biometric Information ,
Biometric Information Privacy Act ,
Data Collection ,
Data Privacy ,
Employer Liability Issues ,
Fingerprints ,
Notice Requirements ,
Personally Identifiable Information ,
Preemption ,
Prior Express Consent ,
Statutory Interpretation ,
Workers Compensation Act ,
Workplace Injury
Holiday shopping is in full gear and everything seems to be an Internet of Things (IoT) device. It continues to amaze me how folks will buy IoT gadgets and plop them in their homes and have no idea that they include a speaker...more
12/12/2019
/ Biometric Information ,
Children's Products ,
Children's Toys ,
Connected Items ,
Data Collection ,
Data Protection ,
FBI ,
Federal Trade Commission (FTC) ,
Hackers ,
Holiday Gifts ,
Information Technology ,
Internet of Things ,
Mobile Device Management ,
Mobile Devices ,
Risk Management ,
Smart Devices ,
Vulnerability Assessments
Despite repeated warnings, companies continue to be hammered with class action lawsuits for violation of the Illinois Biometric Information Privacy Act (BIPA)....more
Security researchers Intezer and IBM X-Force have identified a new ransomware that is seriously vicious. It’s PureLocker—named because it is programmed in PureBasic language, which is apparently unusual.
...more
11/15/2019
/ Biometric Information ,
California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Management ,
DNA ,
Facial Recognition Technology ,
Fingerprints ,
Genetic Materials ,
Genetic Testing ,
Hackers ,
Microsoft ,
Personal Data ,
Ransomware ,
Vulnerability Assessments
Microsoft announced this week that it would extend the consumer rights currently given to California consumers through the California Consumer Privacy Act to all consumers—no matter where they reside....more
11/15/2019
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Microsoft ,
Personal Data ,
Personally Identifiable Information ,
Policy Statement ,
Popular ,
Privacy Laws ,
Privacy Policy
Biometric information is unique to each of us, including our fingerprints, voice, face, iris, and DNA. We can’t replace our biometric data like we can a credit card. If it is compromised, it is compromised forever. It is uber...more
11/14/2019
/ Algorithms ,
Biometric Information ,
Data Collection ,
Data Privacy ,
Facial Recognition Technology ,
Federal Trade Commission (FTC) ,
Fingerprints ,
Government Investigations ,
Hiring & Firing ,
Job Applicants ,
Personal Data ,
Personally Identifiable Information
Cyberliability insurance provider Beazley Insurance Company has analyzed its internal breach response data and determined that in its experience, there has been a thirty-seven percent (37%) increase in ransomware attacks this...more
11/8/2019
/ California Consumer Privacy Act (CCPA) ,
Civil Monetary Penalty ,
Criminal Investigations ,
Cyber Attacks ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Databases ,
Department of Health and Human Services (HHS) ,
DMV ,
DNA ,
Drones ,
Federal Aviation Administration (FAA) ,
Genetic Materials ,
Hackers ,
Health Insurance Portability and Accountability Act (HIPAA) ,
HIPAA Breach ,
Law Enforcement ,
Managed Service Providers (MSPs) ,
Personal Data ,
Personally Identifiable Information ,
Prescription Drugs ,
Ransomware ,
Social Security Numbers
In delving deeply into the California Consumer Privacy Act (CCPA), the Amendments recently signed by the California Governor, and the proposed Regulations issued by the California Attorney General, there are some details that...more
11/8/2019
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
Employee Privacy Rights ,
Exemptions ,
Hiring & Firing ,
Information Governance ,
Job Applicants ,
New Amendments ,
Notification Requirements ,
Personal Data ,
Personally Identifiable Information ,
Privacy Laws ,
Rulemaking Process ,
State and Local Government
Reporter Kashmir Hill from The New York Times (NYT) published an informative piece this week about our secret consumer scores. We all know that retail companies monitor our clicks on their websites, sell our data not...more
The California Department of Motor Vehicles (DMV) announced on November 5, 2019, that it allowed the Social Security numbers (SSNs) of 3,200 California drivers to be accessed by unauthorized individuals in other state and...more
Energy Sector’s Reliance on IoT Increases Cyber Vulnerabilities -
CyberX recently released its 2020 Global IoT/ICS Risk Report (Report), which compiles survey questions and answers from 1,821 production networks of...more
11/4/2019
/ Cyber Attacks ,
Cyber Crimes ,
Cyber Threats ,
Cybersecurity ,
Data Collection ,
Data Privacy ,
Data Protection ,
Energy Sector ,
FBI ,
Internet of Things ,
New Legislation ,
Personal Data ,
Personally Identifiable Information ,
Ransomware ,
Veterans ,
Vulnerability Assessments ,
Vulnerable Victims
The pace at which data privacy and security laws are changing continues to move at warp speed. Back in the day, I would keep track of all privacy and security bills in state legislatures and Congress; about 10 years ago, I...more
Everyone should be aware that October is National Cybersecurity Awareness Month. TechNewsWorld is urging all users to “Own IT,” which “means staying safe on social media, updating privacy settings, and keeping tabs on apps....more
Last week was a busy week for the California Consumer Privacy Act (CCPA), as Attorney General Xavier Becerra released draft regulations on October 10 and Governor Newsom signed several pending CCPA amendments into law on...more
10/14/2019
/ California Consumer Privacy Act (CCPA) ,
Consumer Privacy Rights ,
Cybersecurity ,
Data Collection ,
Data Management ,
Data Privacy ,
Data Protection ,
New Legislation ,
Personal Data ,
Personally Identifiable Information ,
Privacy Laws ,
Rulemaking Process ,
State and Local Government
Consistent with our experience, security firm McAfee has confirmed in a report that ransomware attacks have doubled in 2019. Medical providers have been hit hard this year, and one provider, Wood Ranch Medical, located in...more
10/7/2019
/ Biometric Information ,
Biometric Information Privacy Act ,
Cyber Attacks ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Department of Health and Human Services (HHS) ,
Drones ,
Energy Sector ,
Facial Recognition Technology ,
Fraud Alerts ,
GAO ,
Genetic Testing ,
Google ,
Hackers ,
Health Care Providers ,
Information Technology ,
Personally Identifiable Information ,
Popular ,
Power Grid ,
Ransomware ,
Scams ,
Spam ,
Unmanned Aircraft Systems
Another day, another suit against a brand name for allegations of violation of the Illinois Biometric Information Privacy Act (BIPA). Plaintiffs’ attorneys are having a field day filing class action lawsuits based on BIPA....more
Many cities in the United States utilize a self-pay portal for residents to pay bills online, known as Click2Gov. Click2Gov was compromised in 2017 and 2018, when hackers were able to access over 300,000 payment cards and...more
9/30/2019
/ Biometric Information ,
California Consumer Privacy Act (CCPA) ,
Cybersecurity ,
Data Breach ,
Data Collection ,
Data Privacy ,
Dating Services ,
Drones ,
Enforcement Actions ,
False Advertising ,
Federal Trade Commission (FTC) ,
Fraudulent Marketing ,
Hackers ,
Medical Devices ,
Online Banking ,
Personally Identifiable Information ,
Popular ,
Social Networks ,
Unmanned Aircraft Systems ,
Vimeo
While on a plane last week, I read a great Wall Street Journal (WSJ) article called “How to Keep Your Mobile Banking Safe.” Although I question whether anyone can keep their online bank account completely safe, it was a good...more
Vimeo, Inc. was sued last week in a class action case alleging that it violated the Illinois Biometric Information Privacy Act by “collecting, storing and using Plaintiff’s and other similarly situated individuals’ biometric...more