Late last month, the Federal Communications Commission adopted new privacy rules for broadband Internet service providers (ISPs). We first discussed this topic in March when the proposal was introduced by the FCC Chairman. The rules are intended to protect the privacy of consumers and to provide customers with meaningful choice, greater transparency, and strong security
Sharing of Passwords Under Certain Circumstances Unlawful
Many companies have experienced the departure of an employee and the elimination of that former employees access to the company’s computers and networks. In the recent case of USA v. Nosal, D.C. No. 3:08-cr-00237-EMC-1 (July 5, 2016), the Ninth Circuit Court of Appeals was presented with the following facts: Nosal, a former employee of
Pokémon GO – Next Stop: Regulation & Litigation
As everyone is aware, the Pokémon GO craze has taken the world by storm in the past month. Reports estimate there have been over 75 million downloads of the digital game since the program became available on July 6. Apple has not issued any concrete numbers, but has confirmed that it was the most downloaded
Illinois Enacts Amendments to the Personal Information Protection Act
Last month, Illinois Governor Bruce Rauner signed into law a number of amendments to the State’s Personal Information Protection Act (“PIPA”) that expand the definition of protected personal information and increase certain data breach notification requirements. The amendments, highlighted below, take effect January 1, 2017.
Currently, “personal information” is limited to an individual’s first name
EEOC Files Suit Targeting Employment Application “Health History”
On March 22, 2016, the Equal Employment Opportunity Commission (“EEOC”) filed suit in the United States District Court for the Western District of Missouri against Grisham Farm Products, Inc. alleging that its employment application violated the Americans With Disabilities Act (“ADA”) and the Genetic Information Non-Discrimination Act (“GINA”). Equal Employment Opportunity Commission v. Grisham Farm
FCC Chair Proposes New Broadband Rules
One year ago, in March 2015, the Federal Communications Commission (“FCC”) reclassified broadband Internet access service as a common carrier Telecommunications Service subject to regulation under Title II of the Communications Act. At that time, however, the FCC recognized that the then-current rules were not well suited to broadband privacy. On March 10, 2016, the
Connecticut State Contractors, Health Insurance Industry Businesses Subject to Enhanced Significant Data Security Mandates
In June, Connecticut’s governor signed into law Senate Bill 949 which amended the State’s breach notification statute. The requirement that covered businesses must provide one year of identity theft protection services for certain breaches, easily the most popular aspect of the legislation, may have diverted attention from some significant aspects of this new law.
New York Attorney General Seeks Stonger Data Breach Notification Law and Data Security Safeguards
Earlier this month, the New York Attorney General Eric T. Schneiderman announced a legislative proposal that would strengthen protections for private information by expanding the state’s breach notification law to cover e-mails, passwords and health data, require companies to implement data security measures, and notify consumers and employees in the event of a breach. If
Healthcare Employer’s Termination Letter Provides Basis For Court to Allow Discovery of Patient Contact Information
Employers faced with the inevitable task of terminating an employee’s employment often inquire whether to provide the employee with written reasons for the termination; or, if they are required to provide an explanation of the termination, they ask what should be included in the explanation. Except in a limited number of states (and except where
Court Denies Access To Employee Social Media Accounts
If the intersection of social networking and workplace privacy laws piques your attention, you may find an article written by my colleague Michael Frankel particularly interesting. He writes about a recent case, Pecile v. Titan Capital Group, LLC out of New York, where the court refused to grant the defendants’ request for access to the