Breach Laws – Page 14 – DataBreaches.Net

Important Notice about FIPPA – Mandatory Breach Notification and Privacy Management Program Requirements Coming into Effect on February 1, 2023

Posted on December 9, 2022 by Dissent

Jeff Holowaychuk and Abigail Choi of Clark Wilson write: Starting from February 1, 2023, public bodies in BC will be required to comply with the mandatory privacy breach notification and privacy management program provisions of the Freedom of Information and Protection of Privacy Act. These new provisions were part of a package of FIPPA amendments introduced…

HIPAA Security Rule Security Incident Procedures

Posted on October 27, 2022 by Dissent

HHS OCR’s October newsletter begins: Every October, in recognition of National Cybersecurity Awareness Month, the federal government and its partners work to educate stakeholders on cybersecurity awareness and how best to protect the privacy and security of confidential data. Within the health care industry, the HIPAA Security Rule1 applies to covered entities2 and their business associates3 (“regulated entities”)…

New York Department of Financial Services settles charges against EyeMed with a $4.5 million penalty and remedial cybersecurity plan

Posted on October 19, 2022 by Dissent

In January 2022, DataBreaches reported that New York announced a $600,000 agreement with EyeMed that resolved a 2020 phishing incident that compromised the personal information of approximately 2.1 million consumers nationwide, including 98,632 in New York. But that was not the end of enforcement action and monetary penalties for EyeMed. Now the state’s Department of…

Covering Up Cyber Breaches

Posted on October 7, 2022 by Dissent

I was researching something and stumbled across a post in r/sysadmin on Reddit that begins: I wanted to make this post for a few months now because I know we all have horror stories on this topic. It seems the only way to stop this is to make sure more IT admins are aware of…

Indonesia finally passes personal data protection law

Posted on September 20, 2022 by Dissent

Eileen Yu reports: Indonesia finally has passed its personal data protection law that has been in discussions since 2016. The government believes the new Bill will be critical amidst a spate of data security breaches in the country. Indonesia’s House of Representatives earlier this month approved the Personal Data Protection (PDP) Bill, paving the way…

Facebook-Cambridge Analytica data breach lawsuit ends in 11th hour settlement

Posted on August 28, 2022 by Dissent

Mark Townsend reports: Facebook has dramatically agreed to settle a lawsuit seeking damages for allowing Cambridge Analytica access to the private data of tens of millions of users, four years after the Observer exposed the scandal that mired the tech giant in repeated controversy. A court filing reveals that Meta, Facebook’s parent company, has in principle settled for an…