The Australian Privacy Foundation has submitted additional comments on proposed data breach notification regulations in Australia. You can read their supplement here. Not surprisingly, I remain in substantive agreement with their recommendations.
Category: Breach Laws
AU: Data breach notification bill revealed
Darren Pauli reports: The Australian Government’s plans for a data breach notification scheme have been shared with a small number of key stakeholders as a draft exposure bill, marked as Confidential. The Exposure Draft Privacy Amendment (Privacy Alerts) Bill 2013, obtained by SC, was the strongest sign to date that current Government plans to bring mandatory data…
Amendment to PA data breach notification statute passes, requires notification within 7 days of discovery
By a vote of 49-0, the Pennsylvania Senate passed Senate Bill 114, amending the state’s data breach notification law. Section 1. Section 3 of the act of December 22, 2005 (P.L.474, No.94), known as the Breach of Personal Information Notification Act, is amended by adding subsections to read: Section 3. Notification of breach. (a.1) Notification…
Florida bill criminalizing possession of others’ ID information passes, heads to Governor’s desk
WJHG reports: It took less than a minute Friday for the Florida Senate to pass legislation to curb identity fraud. Now the bill is headed to the Governor. The legislation was drafted in response to news reports that police were arresting people carrying dozens of IDs that don’t belong to them, but had to let…
‘Hacker’ convicted by US court despite never hacking
Matt Brian has an interesting take on the conviction of David Nosal, which I reported yesterday on this blog: After more than a year of bouncing between appeals courts, the hacking case involving David Nosal has ended with a conviction. Wired reports that Nosal was yesterday found guilty of conspiracy, stealing trade secrets, and violating the Computer Fraud and Abuse…
Belgium: Update on Personal Data Security Breaches
Patrick Van Eecke writes: Following several recent widely publicized data breaches in Belgium, the Privacy Commission issued a new recommendation on security measures and data breaches. The recommendation builds further on its previously issued security reference measures and details specific security requirements regarding a.o. IT architecture and development and production environments. Remarkably, the Privacy Commission…