Chris Roark reports: Several bills authored by Texas State Sen. Jane Nelson, R-Flower Mound, that bolster state cybersecurity, expand the cyber workforce and better protect sensitive data have been signed into law by Gov. Greg Abbott. These bills will take effect on Sept. 1. The remainder of this news article has information on SB 64,…
Category: Breach Laws
AG James Backs Data Breach Protection Act Passed by Legislature
Jason Grant reports: State lawmakers have passed legislation that would “modernize” and update consumer data protections and expand New York Attorney General Letitia James’ oversight of data breaches affecting New Yorkers, according to a news release issued by James “applauding” the act’s passage. Called the “Stop Hacks and Improve Electronic Data Security Act,” or SHIELD…
Maryland Amends Data Breach Law
Hunton Andrews Kurth writes: Maryland Governor Larry Hogan recently signed into law House Bill 1154 (the “Bill”), which amends the state’s data breach notification law. Among other obligations, the amendments expand the required actions a business must take after becoming aware of a data security breach. Under the existing data breach notification law, a business…
Oregon Amends Data Breach Notification Law to Include Vendor Obligations; Expanded Definition of Personal Information
Daniel J. Moses of JacksonLewis writes: As we recently noted, Washington state amended its data breach notification law on May 7 to expand the definition of “personal information” and shorten the notification deadline (among other changes). Not to be outdone by its sister state to the north, Oregon followed suit shortly thereafter—Senate Bill 684 passed unanimously in both legislative…
Understanding When Business Associates Are Directly Liable Under HIPAA
Aimee Jachym and Samantha A. Kopacz of Miller Canfield PLC write: New guidance issued by the U.S. Department of Health & Human Services (HHS) Office for Civil Rights (OCR) reaffirms that business associates must have proper HIPAA compliance practices, safeguards and documentation in place in order to avoid costly penalties. OCR recently released a Fact…
Ca: Alleged HIV/AIDS privacy breach in 2016 could become class-action suit against Positive Living Society of British Columbia
Jeremy Hainsworth reports: A Vancouver-based HIV/AIDS organization is facing a class-action suit for breach of privacy after an alleged release of email addresses of 800 of its members via a September 2016 mass email. And, said a BC Supreme Court ruling released May 1, a staff member of Positive Living BC had warned the organization…