Jennifer Baker reports: The UK’s data protection watchdog has said issuing fines “left, right and centre” is not the way to ensure privacy. However, Information Commissioner Christopher Graham added that this doesn’t mean his office shouldn’t have those exact powers at its disposal. “The obligation laid on data protection authorities always to fine data controllers…
Category: Breach Laws
Nevada expands definition of PI for purposes of the state’s breach and safeguards laws
Morrison & Foerster LLP write: Nevada’s recently amended law will, among other things, create the first state mandate to encrypt online account credentials. Specifically, on May 13, 2015, Nevada Governor Sandoval approved a bill (“AB 179”) to expand the definition of “personal information” for purposes of the state’s security breach notification and personal information safeguards…
Data Breach: SC ID Theft Laws May Keep Consumers in the Dark
Christine Scarpelli reports: …. A 7 On Your Side investigation found that South Carolina has no specific requirements for when a business has to warn you of a data breach. Companies can wait weeks, or even months, before telling customers their personal and financial information is in the hands of thieves. 7 On Your Side learned…
Why Alabama data breach law won’t apply to banks
Michael Seale reports: Alabama lawmakers are considering a bill that would require businesses and government entities to notify the Alabama Attorney General and impacted individuals about a data security breach. If passed, the bill would make Alabama the 48th state to have a form of data breach notification law. But one group not included in…
Senator Leahy introduces Consumer Privacy Protection Act; federal data breach notification law
Eric Chabrow reports: Privacy advocates in the Senate have unveiled a national data breach notification bill that would allow states to keep their own laws if they provide more stringent reporting and privacy protections than offered by the federal government. The Consumer Privacy Protection Act, introduced April 30, is sponsored by Sen. Patrick Leahy of Vermont…
‘Aaron’s Law’ focuses penalties on malicious hackers
Cory Bennett reports: Aaron’s Law is back in Congress. Named for Aaron Swartz — the programmer and digital activist who took his life while facing data theft charges — the bill would ease punishments stemming from the law under which Swartz was charged, the Computer Fraud and Abuse Act (CFAA). Rep. Zoe Lofgren (D-Calif.) is backing…