News & Analysis as of

Data Breach State and Local Government

Sheppard Mullin Richter & Hampton LLP

Pennsylvania Amends Data Protection Requirements with Revised Breach Notification Act

On June 28, Pennsylvania took a significant step to enhance its data protection framework by updating the Breach of Personal Information Notification Act through the enactment of SB 824. This new legislation revises the older...more

Sheppard Mullin Richter & Hampton LLP

Mid-Year Recap: Think Beyond US State Laws!

Much of the focus on US privacy has been US state laws, and the potential of a federal privacy law. This focus can lead one to forget, however, that US privacy and data security law follows a patchwork approach both at a...more

Foley Hoag LLP - Security, Privacy and the...

In Wake of Healthcare System Cyberattack, 22 State Attorneys General Call for Further Action of Data Privacy

On April 25, 2024, the attorneys general of 22 states issued a letter encouraging UnitedHealth Group and its subsidiary, Change Healthcare, to take additional steps to respond to a massively disruptive cyberattack. The broad,...more

Foley Hoag LLP - State AG Insights

State Attorneys General Take Action on Artificial Intelligence

The evolving use of artificial intelligence (AI) across different industries has thrust states into a difficult and rapidly developing regulatory arena. State Attorneys General have and will continue to play an essential role...more

Shook, Hardy & Bacon L.L.P.

Florida Legislature Passes Data Breach Immunity Legislation

The Florida legislature passed a bill that provides immunity to companies that suffer a data breach. The immunity is conditioned on the company: (1) complying with the notice requirements of Florida’s data breach notification...more

Perkins Coie

CT Attorney General Highlights Key Areas of Enforcement, Suggests Legislative Changes

Perkins Coie on

Connecticut was one of the first U.S. states to pass a comprehensive data privacy law back in May 2022. Today, a total of 13 states have passed similar laws, and dozens of other states are proposing legislation to do so as...more

Sheppard Mullin Richter & Hampton LLP

Eye on Privacy: 2023 Year in Review

ARTIFICIAL INTELLIGENCE - What is the Privacy Impact of the White House AI Order for Businesses? Posted November 28, 2023 Biden’s sweeping AI Executive Order sought to have artificial intelligence used in accordance...more

Bradley Arant Boult Cummings LLP

Florida Bill Proposes Safe Harbor Against Breach Suits to Businesses Maintaining Recognized Cybersecurity Programs

A recently introduced bill in the Florida Legislature would provide businesses operating in Florida, including health care providers, with a legal defense to data breach lawsuits if they maintain robust cybersecurity measures...more

Spilman Thomas & Battle, PLLC

Promissory Notes - Banking & Finance Insights: V 3, Issue 8, November 2023

FTC Amends Safeguards Rule to Require Non-Banking Financial Institutions to Report Data Security Breaches - “Amendment will require non-bank financial institutions to report when they discover that information affecting...more

Bradley Arant Boult Cummings LLP

Data Breach 911: Five Immediate Steps to Take

For many, responding to an incident feels chaotic — questions swirling, uncertainties piling up, and no clear direction. Even when prepared with a well-rehearsed incident response plan, a data security incident places a...more

Davis Wright Tremaine LLP

New Iowa Legislation Creates Cybersecurity Safe Harbor

Iowa becomes the fourth U.S. state to provide an affirmative defense for companies that adopt a cybersecurity framework - Iowa is the fourth state—following Ohio, Connecticut, and Utah—to provide a statutory incentive for...more

Skadden, Arps, Slate, Meagher & Flom LLP

Privacy & Cybersecurity - June 2023

In our June Privacy & Cybersecurity Update, we review new data privacy laws in Colorado, Connecticut, Florida and Montana; Verizon’s annual Data Breach Investigations Report; AM Best’s report on cyber insurance trends; and...more

Health Care Compliance Association (HCCA)

Privacy Briefs: May 2023

Five former Memphis-based hospital employees and another man have pled guilty to unlawfully disclosing patient information in violation of HIPAA, U.S. Attorney for the Western District of Tennessee Kevin Ritz announced....more

Sheppard Mullin Richter & Hampton LLP

May 2nd Marks Effective Date of Pennsylvania Breach Law Amendments

As we wrote in November, Pennsylvania amended its data breach notification laws last year, and those changes go into effect tomorrow (May 2, 2023). Beginning tomorrow, if a breach of username/email accounts and their...more

Houston Harbaugh, P.C.

Breach of Personal Information Notification (BPIN) Act Amendment

Houston Harbaugh, P.C. on

Important amendments to Pennsylvania’s data breach law – the Breach of Personal Information Notification Act (the “Act”) – will take effect May 3, 2023. This is an important update to Pennsylvania data privacy laws as the...more

Sheppard Mullin Richter & Hampton LLP

Utah Amends Data Breach Law, Creates Cyber Center

Utah’s breach notification requirements will change on May 3, 2023. The recently amended data breach notification law now requires companies to notify the Attorney General for a breach involving 500 or more state residents....more

Skadden, Arps, Slate, Meagher & Flom LLP

Privacy & Cybersecurity Update - January 2023

In this month’s Privacy & Cybersecurity Update, we analyze recent fines against Meta and their impact on the future of behavioral advertising, the timeline for the California Privacy Rights Act’s regulations to become...more

Perkins Coie

FCC Proposes To Strengthen Data Breach Notification Rules for Telecom Operators

Perkins Coie on

In response to the increased frequency and severity of data breaches in the telecommunications industry, the Federal Communications Commission recently published a Notice of Proposed Rulemaking that seeks to strengthen and...more

Perkins Coie

2022 Breach Notification Law Update: State and Federal Requirements Continue To Evolve

Perkins Coie on

Cyberattacks continue to plague businesses, making the fallout of data breach notification and response as critical as ever. This year, like 2021, has been relatively quiet as it relates to state updates to breach...more

Bradley Arant Boult Cummings LLP

Cybersecurity Basics Are Key to Combating Ransomware

The onslaught of ransomware attacks by cybercriminals increases unabated every year, affecting everyone from mom and pop shops on Main Street to corporate lions of Wall Street. Hackers infiltrate an organization's computer...more

Sheppard Mullin Richter & Hampton LLP

Maryland Amends Data Security and Breach Notice Obligations

Maryland recently passed two companion bills amending the state’s Personal Information Protection Act. The bills modify the data breach notification requirements and scope of businesses subject to the data security...more

Jackson Lewis P.C.

North Carolina Prohibits Public Sector Entities from Paying Ransom in a Ransomware Cyberattack

Jackson Lewis P.C. on

Organizations attacked with ransomware have a bevy of decisions to make, very quickly! One of those decisions is whether to pay the ransom. Earlier this year, I had the honor of contributing to a two-part series, entitled...more

Sheppard Mullin Richter & Hampton LLP

Indiana Breach Notification Law Amended, Changes Effective July 1, 2022

Indiana has made a minor amendment to its data breach notification law. Starting July 1, companies who are obligated to notify under the law must do so (to affected individuals and the Indiana Attorney General) without...more

ArentFox Schiff

Privacy Report: Utah Will Soon Publish US’s Latest Comprehensive State Privacy Law

ArentFox Schiff on

US News - Utah Will Soon Publish US’s Latest Comprehensive State Privacy Law - The Utah Consumer Privacy Act, also known as Senate Bill 227, recently cleared the Senate and the House. Though there are a few more steps...more

Sheppard Mullin Richter & Hampton LLP

States Catch Health Care Entities Taking the Bait in Phishing Attacks

The State Attorneys General in New York and New Jersey recently settled with four companies over alleged HIPAA noncompliance following phishing attacks. The New Jersey settlements were brought against three NJ-based cancer...more

252 Results
 / 
View per page
Page: of 11

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide