Here are some perspectives by law firms. From SheppardMullin: Tennessee has joined a handful of other states to provide certain safe harbors in the cybersecurity realm. Unlike others, the law sites beside -but does not modify- the states’ data breach notification law. Also unlike others, the safe harbor is very narrowly tailored, and is not triggered by…
Category: Breach Laws
FCC Enforcement Bureau Settles With Liberty Latin America for Data Breach Notification Violations
Full Title: In the Matter of Liberty Latin America Limited, Liberty Mobile Puerto Rico Inc., Liberty Mobile USVI Inc. Document Type: Consent Decree Order Bureau(s): Enforcement Description FCC EB settles with Liberty for $100K civil penalty resolving an investigation into whether Liberty failed to report a data breach in a timely manner as required and failed…
Malaysia’s government to amend Personal Data Protection Act to require notification of data breaches
The Sun reports: The government is planning to amend the Personal Data Protection Act of 2010 to include breach notification requirements that compel companies to inform authorities when a data breach happens in commercial transactions, said Digital Minister Gobind Singh Deo. Gobind said his ministry proposes to table the amendment at the next sitting of…
Ca: New online breach reporting forms for federal institutions and businesses
From the Office of the Privacy Commissioner of Canada, May 24: The Office of the Privacy Commissioner of Canada (OPC) has launched a new online breach reporting form for federal institutions subject to the Privacy Act as well as updated its online breach reporting form for businesses subject to the Personal Information Protection and Electronic Documents Act (PIPEDA). The new online form for…
Utah Updates to Breach Notification Requirements Take Effect
Dorothy Parson McDermott of JacksonLewis writes: On May 1, 2024, amendments to Utah’s cybersecurity and data breach notification law took effect. The state’s cybersecurity and data breach notification law requires an organization that conducts business in the State of Utah to prevent the unlawful use or disclosure of personal information collected by the organization. Under…
Singapore Cybersecurity Update Puts Cloud Providers on Notice
Robert Lemos writes: Lawmakers in Singapore updated the nation’s cybersecurity regulations on May 7, giving more power to the agency responsible for enforcing the rules, adopting definitions of computer systems that include cloud infrastructure, and requiring that critical information infrastructure (CII) operators report any cybersecurity incident to the government. The Cyber Security Act amendment takes…