Breach notification laws in most states would be preempted if legislation approved by the Senate Judiciary Committee Thursday becomes law. But that’s a big if, at least as it now stands. The 10 Democrats and eight Republicans on the committee split along party lines in approving the three different, but related measures, with overlapping provisions, aimed at strengthening privacy…
Category: Breach Laws
Hong Kong Introduces a Personal Data (Privacy) Amendment Bill
Cross-posted from PogoWasRight.org. Gabriela Kennedy and Heidi Gleeson write: The Personal Data (Privacy) Amendment Bill (the “Bill“) was introduced into the Legislative Council on 13 July 2011. The Bill is the culmination of a lengthy consultation process into the reform of the Personal Data (Privacy) Ordinance (the “Ordinance“) which commenced in 2009. The Bill aims…
California Strengthens its Data Breach Notification Law
Joseph Lazzarotti writes: As we suspected, California’s current governor, Edmund G. “Jerry” Brown, Jr. (D), signed into law S.B. 24, which adds some additional protections to the state’s current data breach notification requirements. The champion of this law and its recent enhancements, State Sen. Joe Simitian (D-Palo Alto), has finally succeeded after a number of prior attempts to pass this measure…
Kr: Report on hacking incidents to be required of companies
All listed and financial companies must report a security breach, with the scope of disclosure on major management issues including M&As being expanded to hacking incidents. The Knowledge Economy Ministry said Thursday that as early as 2014, companies must inform whether they have been hacked and how they can cope with such incidents on either…
France Introduces Data Security Breach Notification Requirement for Electronic Communication Service Providers
On August 24, 2011, France’s new law concerning electronic communications (Ordonnance n° 2011-1012 du 24 août 2011 relative aux communications électroniques, or the “Ordinance”) came into force. The Ordinance implements the provisions of the revised EU Directive 2002/58/EC (the “e-Privacy Directive”) with respect to the French Data Protection Act of 1978, the French Postal and Electronic Communications…
Steelie Neelie: ‘Help us form Brussels data breach policy’
John Oates reports: The European Commission is asking for feedback on practical rules to ensure that anyone in Europe who has their private data breached will be told. New rules across Europe mean that telcos are meant to tell you if they lose your data. But what is needed now is feedback on how the…