News & Analysis as of

Reporting Requirements Breach Notification Rule

Troutman Pepper

Amendments Align Pennsylvania’s Breach Notification Law With Majority of States

Troutman Pepper on

Earlier this year, Governor Josh Shapiro signed amendments to Pennsylvania’s Breach of Personal Information Notification Act (BPINA) into law, which go into effect on September 26. As part of the implementation of these...more

Health Care Compliance Association (HCCA)

Privacy Briefs: September 2024

The HHS Centers for Medicare & Medicaid Services (CMS) and Wisconsin Physicians Service Insurance Corporation (WPS) are notifying 946,801 people whose protected health information or other personally identifiable information...more

Jones Day

FTC's Final Health Breach Notification Rule: Expanded Scope, New Obligations, and Modified Reporting Requirements

Jones Day on

The Federal Trade Commission ("FTC") intends to "strengthen and modernize" the Health Breach Notification Rule with revamped and increased scrutiny on entities holding health information, including health apps, websites, and...more

Foley & Lardner LLP

Rolling With the Punches in a Networked World: CCOE Cybersecurity Panel Discussion

Foley & Lardner LLP on

Whether the game is football, baseball, hockey, or Indy Car racing, no team goes into their major championship matchup without training. Companies need to train as well if they intend to operate on the internet and expect to...more

Foley & Lardner LLP

SEC Tightens Cybersecurity Requirements with Regulation S-P Amendments

Foley & Lardner LLP on

Share on Twitter Print Share by Email Share Back to top “The basic idea for covered firms is if you’ve got a breach, then you’ve got to notify. That’s good for investors.” Those were among the remarks that U.S. Securities and...more

Alston & Bird

Data Breach Notification Requirements Under the Safeguards Rule Now in Effect

Alston & Bird on

For years, the Gramm-Leach-Bliley Act (GLBA) has required financial institutions to maintain reasonable safeguards for consumer data, but has only had limited breach-reporting requirements. To the extent financial...more

King & Spalding

FTC Announces Final Rule Sweeping Consumer Digital Health Tech Under the Health Breach Notification Rule

King & Spalding on

On April 26, the Federal Trade Commission (FTC) approved its Final Rule revising the Health Breach Notification Rule (HBNR) (“Final Rule”) by a 3-2 vote. The HBNR requires vendors of personal health records (PHR) and related...more

Carlton Fields

4 Tips for Health Tech Apps After the FTC’s Revised Breach Notification Rule

Carlton Fields on

On April 26, the Federal Trade Commission announced its final rule updating the health breach notification rule. According to the FTC, the update seeks to “clarify” the scope of the rule by adding new definitions and revising...more

Sheppard Mullin Richter & Hampton LLP

Utah Breach Notice Law Amended, Effective May 1

Utah, among other privacy laws it has enacted or modified recently, has also modified its breach notification law. This follows last year’s changes to the law, which among other things codified the state’s Cyber Center....more

Alston & Bird

HHS Final Rule Brings Sweeping, Complex Changes for Substance Use Records

Alston & Bird on

A new HHS Final Rule overhauls the federal Part 2 regulations on the confidentiality of substance use disorder (SUD) records. Our Heath Care Health Care and Privacy, Cyber & Data Strategy Groups unpack how the changes will...more

Davis Wright Tremaine LLP

LEAP, Don't Run, to Make this YEAR's Deadline: HIPAA Small Breach Notifications Due February 29

February 29, 2024, is the date by which HIPAA-covered entities must notify the U.S. Department of Health and Human Services Office for Civil Rights (OCR) of all "small" breaches of unsecured protected health information that...more

Woods Rogers

FCC Updates and Expands Data Breach Notification Rules

Woods Rogers on

The updated data breach notification rules broaden the definition of what is considered a breach and expand the scope of who must be notified when a data breach occurs. The Federal Communications Commission (FCC or...more

Pillsbury Winthrop Shaw Pittman LLP

FCC Updates Data Breach Notification Rules

At its December meeting, the Federal Communications Commission approved a Report and Order modifying its data protection rules. The order expands the scope of protected data to include personally identifiable information....more

Cooley LLP

FTC Adds New Data Breach Reporting Obligations Under Safeguards Rule

Cooley LLP on

On October 27, 2023, the Federal Trade Commission (FTC) unanimously approved an amendment to the Gramm-Leach-Bliley Act (GLBA) Safeguards Rule to require certain covered financial institutions to report a broad range of data...more

White & Case LLP

The SEC’s Charges Against SolarWinds and its Chief Information Security Officer Provide Important Cybersecurity Lessons for Public...

White & Case LLP on

On October 30, 2023, the US Securities and Exchange Commission ("SEC") announced that it filed charges against SolarWinds Corp. ("SolarWinds" or the "Company") and its Chief Information Security Officer ("CISO") in connection...more

Jaburg Wilk

New FTC Rule Expands Reach of Data Breach Notification Requirement to Non-Banking Financial Institutions

Jaburg Wilk on

In an amendment to the Safeguards Rule of the Gramm-Leach-Bliley Act (GLBA), which was officially announced on October 27, 2023, the Federal Trade Commission (FTC) will mandate that a wide array of nonbank financial...more

Jackson Lewis P.C.

Federal Trade Commission Expands Rule Regarding Reporting of Data Security Breaches

Jackson Lewis P.C. on

The Federal Trade Commission (FTC) has approved an amendment to its Safeguards Rule that will require non-banking financial institutions to report certain data breaches (or “notification events”) to the FTC (not affected...more

McDermott Will & Emery

FTC Finalizes GLBA Safeguards Rule Amendments Requiring Data Breach Notification

McDermott Will & Emery on

On October 27, 2023, the Federal Trade Commission (FTC) finalized an amendment to the Safeguards Rule that will impose data breach reporting requirements on nonbanking financial entities subject to the Gramm-Leach-Bliley Act...more

Constangy, Brooks, Smith & Prophete, LLP

Critical HIPAA Reporting Deadline

A significant HIPAA reporting deadline is fast approaching for all covered entities. For small breaches (affecting fewer than 500 individuals), a covered entity must notify the OCR within 60 days of the calendar year in...more

Perkins Coie

2022 Breach Notification Law Update: State and Federal Requirements Continue To Evolve

Perkins Coie on

Cyberattacks continue to plague businesses, making the fallout of data breach notification and response as critical as ever. This year, like 2021, has been relatively quiet as it relates to state updates to breach...more

Dechert LLP

Dechert Cyber Bits - Issue 16

Dechert LLP on

On June 21, 2022, legislation, The American Data Privacy and Protection Act (“ADPPA”), was introduced. The bipartisan measure is currently scheduled for markup by the House Energy and Commerce Committee on June 23, 2022. ...more

Manatt, Phelps & Phillips, LLP

GDPR: EDPB’s New Breach Guidelines Present Additional Challenges for Legal & Security Professionals

To close out 2021, the European Data Protection Board (EDPB) adopted additional General Data Protection Regulation (GDPR) data breach notification guidelines in Guidelines 01/2021 on Examples regarding Personal Data Breach...more

Pillsbury Winthrop Shaw Pittman LLP

Federal Regulators Adopt New Computer-Security Incident Notification Requirements for Banks and Service Providers

In response to increasingly frequent and sophisticated cybersecurity attacks on banks and bank service providers, the federal prudential banking regulators—the Office of the Comptroller of the Currency (OCC), the Board of...more

Alston & Bird

The Digital Download – Alston & Bird’s Privacy, Cyber & Data Strategy Newsletter – November 2021

Alston & Bird on

Selected Developments in U.S. Law - Department of Defense Suspends the CMMC Pilot Program and CMMC Requirements in DoD Solicitations Pending Major Changes for CMMC 2.0. On November 5, 2021, the Department of Defense...more

Jackson Lewis P.C.

FTC Issues Final Rule Amending the Standards for Safeguarding Customer Information – Data Breach Notification Obligations to...

Jackson Lewis P.C. on

On October 27, 2021 the FTC issued a final rule (the “Final Rule”) amending 16 CFR Part 134, Standards for Safeguarding Customer Information (“Safeguards Rule”), after a period of notice and comment. While the existing...more

42 Results
 / 
View per page
Page: of 2

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide