From Out-Law.com: In a recently published judgment, the Court said that the Data Protection Act (DPA) does not oblige businesses to pay individuals compensation for distress that causes damage where the distress caused is not attributable to a breach of the Act. Under section 13 of the DPA a person is generally entitled to compensation…
Category: Breach Laws
California Senate passes amendment to breach law to incorporate access to online accounts
California continues to lead the way in protecting consumers whose data have been breached. By a vote of 37-0-1 last week, the Senate passed S.B. 46, a bill introduced by Senator Ellen Corbett. The bill amends existing law to expand required notification to situations involving access to an online account. The law would still incorporate…
New guidance on data breaches in Belgium
I’ve been looking for an English language report on the new breach guidelines in Belgium and finally found one. Cédrine Morlière and Ludo Deklerck of Bird & Bird write: When the data breach results in a “public incident” (when a data breach results in a public leakage of private data), according to the guidance, the…
Pennsylvania on data breach – shoot first, ask questions later
Blaine Kimrey of Lathrop & Gage LLP has a commentary on a breach notification law that passed the PA Senate. As noted previously on this blog, the bill extends existing data breach notification responsibilities to state agencies, but also requires notification of those affected within seven days. Kimrey writes: After a series of embarrassing governmental…
Missouri bill could require notification if data breach
Cross-posted from PogoWasRight.org. Associated Press reports: State agencies could be required to notify Missourians if personal data such as concealed gun permits and credit card numbers are accessed by someone who is not authorized to have that information. The proposal comes from Republican House member Kurt Bahr, of St. Charles. It comes after the Missouri…
AU: Supplementary Policy on Data Breach Notification Legislation Submitted by APF
The Australian Privacy Foundation has submitted additional comments on proposed data breach notification regulations in Australia. You can read their supplement here. Not surprisingly, I remain in substantive agreement with their recommendations.