V. John Ella writes: The Minnesota House of Representatives introduced a bill in late February to strengthen Minnesota’s current data breach notification law, Minnesota Statutes Section 325E.61. The bill, House File No. 2253, was authored by Representative Dan Schoen. It would require notification within 48 hours to all individuals whose unencrypted personal information has been breached. The current statute requires…
Category: Breach Laws
In The Data Breach Regulatory Derby – Kentucky Loses Out to Iowa
Mahmood Sher-jan writes: Put on your fancy hat and pour a mint julep: the annual spectacle of equestrian prowess and creative horse names is upon us. While this Saturday marks the 140th Kentucky Derby, another landmark event occurred earlier this spring in the bluegrass state: Kentucky entered the “data breach regulatory derby” and became the 47th state…
Ca: Inform customers of data breach or pay $100,000 per case: new privacy bill
Candice So reports: Businesses and organizations will be formally required to tell individual customers and the Privacy Commissioner of Canada if they’ve suffered a data breach – or pay up to $100,000 in fines for every individual not told, according to the new Digital Privacy Act, or Bill S-4, tabled in the Senate today. Read more on ITbusiness.ca
KY: Cyber-security breach notification bill goes to governor
Gregory A. Hall reports: The bill to require public agencies to notify people whose personal information has been compromised in a cyber-security breach got final approval from the House on Friday and now will go to Gov. Steve Beshear. The House concurred in the changes made by the Senate on House Bill 5, the cyber-security…
When to Disclose A Data Breach: How About Never?
Joel Schectman writes: When your company gets attacked by hackers, how much do you tell the public and when? Often the answers are nothing and never, according to an attorney assisting Target Corp. with legal issues arising from its December data breach. There was little consensus on when companies should report data breaches among business executives and officials…
Judge Refuses to Dismiss Confession, Evidence in Reuters Employee Hacking Case
Kim Zetter reports: A federal judge has refused to dismiss a recorded confession and computer evidence collected in the case of a former Reuters employee accused of conspiring with members of Anonymous to hack his former employer. Matthew Keys, 26, sought to throw out his confession on the grounds that he was on an antidepressant…