Ertuğrul Can Canbolat LL.M., Baran Can Yildirim, LL.M. and S. İrem Akin of Actecon write: Article 12 of the Turkish Data Protection Law No. 6698 (“TurkishData Protection Law“) entitled “Obligations Regarding Data Security” deals with the obligations of the data controller. Article 12/1 of the Turkish Data Protection Law states the data controller shall take…
Category: Breach Laws
California Consumer Privacy Act: The Challenge Ahead – The CCPA’s “Reasonable” Security Requirement
Bret Cohen, Paul Otto, Nathan Salminen, and Morgan Perna (law clerk) of Hogan Lovells write: ….This installment of the Hogan Lovells’ CCPA series explains the CCPA’s security requirement and consequences for non-compliance, and describes security controls that most organizations can implement to mitigate this risk. Available statutory penalties The CCPA allows consumers to sue businesses…
NYCUA to pursue state law on data security
Eric Reinhardt reports that the board of directors of the Albany–based New York Credit Union Association (NYCUA) has approved its 2019 state legislative priorities. And one of those priorities is data security. NYCUA says it would like to see legislation that would require all entities that handle consumer information to comply with comprehensive data-security standards…
UK: Leave.EU and Eldon Insurance fined over data law breach
Oliver Wright reports: The Brexit campaign group Leave.EU and an insurance company run by its founder Arron Banks are facing fines of £120,000 for data protection breaches. The Information Commissioner’s Office (ICO) is to fine Leave.EU £15,000 for unlawfully using Eldon Insurance customers’ details to send 300,000 political marketing messages, and a further £45,000 for…
North Carolina AG re-introduces legislation to protect against identity theft
Back in January, 2018, North Carolina Attorney General Josh Stein and state Rep. Jason Saine (R) introduced legislation called “Act to Strengthen Identity Theft Protections.” In January, 2019, they’ve reintroduced it. A press release from the Attorney General explains: Attorney General Josh Stein and Rep. Jason Saine today unveiled legislation to strengthen North Carolina’s laws to prevent…
Massachusetts Enacts Significant Changes to Its Data Breach Notification Law
David M. Brown of Baker Hostetler writes: On Jan. 10, 2019, Massachusetts Gov. Charlie Baker signed legislation that will significantly amend the state’s data breach notification law. The amendments become effective on April 11, 2019. One of the significant changes includes a new requirement to provide an offer of complimentary credit monitoring for “a period…