David M. Stauss and Gregory Szewczyk of Ballard Spahr LLP write: As we first reported in our January 22, 2018, alert, the Colorado legislature is considering legislation that, if enacted, would significantly change Colorado privacy and data security law. On Wednesday, February 14, 2018, the bill’s sponsors submitted an amended bill that addresses issues raised by numerous stakeholders, including Ballard…
Category: Breach Laws
House Draft Data Security Bill Preempts Stronger State Safeguards
From EPIC.org: Rep. Luetkemeyer (R-MO) and Rep. Maloney (D-NY) circulated a draft bill, the “Data Acquisition and Technology Accountability and Security Act,” that would set federal requirements for companies collecting personal data and require prompt breach notification. The Federal Trade Commission, which has often failed to pursue important data breach cases, and state Attorneys General…
Data breach notification expected to become mandatory in NZ
Rob O’Neill reports: Privacy Commissioner John Edwards expects data breach notification to become mandatory in New Zealand as part of changes to the Privacy Act now being drafted by the Ministry of Justice. “Government has already agreed to bring our law up to speed with many of our comparative jurisdictions,” Edwards said. “It’s now well…
PH: House okays measure declaring credit-card fraud as heinous crime
Jovee Marie de la Cruz reports on a Philippine bill working its way through their legislature: The House of Representatives on Monday approved on third and final reading a measure declaring hacking of bank systems and stealing 50 or more ATM or credit-card details as economic sabotage. Voting 224-0, lawmakers passed House Bill (HB) 6710,…
Nebraska personal information bill wins initial approval
AP reports: A bill designed to protect consumers from identity theft has won first-round approval from Nebraska lawmakers. Senators voted 34-0 on Thursday to advance the measure to the second of three required votes. The proposal would prevent credit reporting companies from charging a fee to impose or lift a security freeze on a consumer’s…
AU: Notifiable Data Breaches scheme takes effect on 22 February 2018
Sylvia Ng, Steph Baker and Rohan Shukla of PwC Australia write: In brief The Notifiable Data Breaches scheme (NDB Scheme), as enacted by the Privacy Amendment (Notifiable Data Breaches) Act 2017 (Cth) (Act) comes into effect on 22 February 2018. Under the NDB Scheme, organisations covered by the Privacy Act 1988(Cth) (Privacy Act)willbe required to…