Center for Internet Security

Subscribe to Center for Internet Security

Connecticut Enacts Safe Harbor from Punitive Damages in Data Breach Cases

By Joseph J. Lazzarotti & Jason C. Gavejian on July 23, 2021

Posted in Consumer Privacy, Data Breach Notification, Data Security, Identity Theft, Information Management, Information Risk, Third Party Service Providers, Written Information Security Program

Effective October 1, 2021, Connecticut becomes the third state with a data breach litigation “safe harbor” law (Public Act No. 21-119), joining Utah and Ohio. In short, the Connecticut law prohibits courts in the state from assessing punitive damages in data breach litigation against a covered defendant that created, maintained, and complied with…

Reasonable Data Security Defined by California AG

By Jason C. Gavejian & Damon W. Silver on February 24, 2016

Posted in Data Security

Last week, California Attorney General, Kamala D. Harris – who has been mentioned as a potential nominee to fill Justice Antonin Scalia’s recently vacated seat on the U.S. Supreme Court – issued the California Data Breach Report (Report). The Report provides an analysis of the data breaches reported to the California AG from 2012-2015.…

Workplace Privacy, Data Management & Security Report

Center for Internet Security

Connecticut Enacts Safe Harbor from Punitive Damages in Data Breach Cases

Reasonable Data Security Defined by California AG

Jackson Lewis

About Jackson Lewis