minimum necessary

The RIPTA Data Breach May Provide Valuable Lessons About Data Collection and Retention

By Joseph J. Lazzarotti on January 12, 2022

Posted in Biometric Information, BIPA, California Consumer Privacy Act, Consumer Privacy, Data Breach Notification, Data Security, GDPR, HIPAA, Information Management, Information Risk, Record Retention and Destruction, Third Party Service Providers

Efforts to secure systems and data from a cyberattack often focus on measures such as multifactor authentication (MFA), endpoint monitoring solutions, antivirus protections, and role-based access management controls, and for good reason. But there is a basic principle of data protection that when applied across an organization can significantly reduce the impact of a data…

10 Steps for Tackling Data Privacy and Security Laws in 2020 for In-House Counsel and HR Pros

By Joseph J. Lazzarotti on December 29, 2019

Posted in ADA, California Consumer Privacy Act, Consumer Privacy, Data Breach Notification, Data Security, GDPR, HIPAA, Identity Theft, Information Management, International, Monitoring, Online Privacy, Third Party Service Providers, Written Information Security Program

After years of data breaches, mass data collection, identity theft crimes, and failed attempts at broad-based federal legislation, 2020 may be the year that state privacy and data security legislation begins to take hold in the U.S. For example, the California Consumer Privacy Act (“CCPA”) and the New York Stop Hacks and Improve Electronic Data…

Workplace Privacy, Data Management & Security Report

minimum necessary

Jackson Lewis

About Jackson Lewis