Late last year we reported Indiana Attorney General Greg Zoeller was seeking legislation which would better protect the online personal and financial information of Indiana residents. That legislation, S.B. 413, was unanimously passed by the Indiana Senate on February 24, 2015. Indiana’s bill follows similar efforts in New Jersey, New York and Oregon.
breach notification
New York Attorney General Seeks Stonger Data Breach Notification Law and Data Security Safeguards
Earlier this month, the New York Attorney General Eric T. Schneiderman announced a legislative proposal that would strengthen protections for private information by expanding the state’s breach notification law to cover e-mails, passwords and health data, require companies to implement data security measures, and notify consumers and employees in the event of a breach. If…
Top 15 for 2015 – Happy National Data Privacy Day
In honor of National Data Privacy Day, we provide the following “Top 15 for 2015.” While the list is by no means exhaustive, it does provide some hot topics for businesses to consider in 2015.
- Inside Threats for Healthcare Providers and Business Associates. While news reports of security risks often focus on hackings and breaches
…
NJ & NY Propose Amendments To Data Breach Laws
The New Jersey Assembly on December 15 unanimously approved, by a vote of 75-0, a bill designed to better protect consumers from identify theft. Bill A3146, if approved by the Senate, would expand the state’s law to include disclosure of a breach of security of online accounts.
FCC Seeks Comment on Exemption Petition Re: Breach Notification
Many of us have likely received a notification from our bank or credit card company concerning suspected fraud or improper charges. However, the legality of those messages is not always clear. To this end, on October 14, 2014, the American Bankers Association (Association) filed a petition for exemption requesting that the Federal Communications Commission (FCC)…
California District Court – “Under TCPA Autodialer Must Generate Numbers”
…
Video Interview: Discussing the FCC’s Recent Data Security Action with LXBN TV
Following up on our recent post on the subject, I had the opportunity to speak with Colin O’Keefe, Editorial Manager-LexBlog, on the FCC’s first foray into policing a cybersecurity incident. In the brief video interview, I explain what happened and what it could mean going forward. Special thanks to Colin, and LXBN TV, for…
FCC Issues First Data Security Fine
On October 24, 2014, the Federal Communications Commission (FCC) announced its intention to fine two telecom companies $10 million for several violations of laws protecting the privacy of phone customers’ personal information. This marks the FCC’s first data security case and the largest privacy action in the FCC’s history.
Data Breach Notification Deadline Extended 10 Days for Certain Healthcare Providers in California
While recent legislation has tended to tighten data breach notification requirements (e.g., Florida and California), Assembly Bill 1755 extended the breach notification deadline from five to 15 days for certain healthcare providers. More specifically, according to AB1755 which becomes effective January 1, 2015, the deadline to provide notification of a breach of medical information …
Prepare For Increased HIPAA Fines
Since mid-2013, the Department of Health and Human Services has recovered more than $10 million from numerous entities in connection with alleged violations of the Health Insurance Portability and Accountability Act (“HIPAA”). However, during a recent American Bar Association conference, Jerome B. Meites, a chief regional civil rights counsel at the Department of Health and…