The following is cross-posted from PHIprivacy.net: In September, I posted an excerpt from a thought-provoking commentary by attorney Benjamin Wright. In discussing a fine levied against Lucile Salter Packard Hospital for late notification under California’s breach notification law, he had written, in part: The California Legislature made clear it wants notices to be issued quickly. However,…
Category: Breach Laws
US data laws spur encryption take-up
John E Dunn reports: Data security laws are now the main reason US companies take up encryption, for the first time surpassing even anxiety over data breaches, a new report by the Ponemon Institute on behalf of Symantec has found. Reporting for its fourth year in 2010, US Enterprise Encryption Trends found that regulations were…
Credit Unions Ask Congress To Help With Security Breaches
Maya Jackson Randall reports: Credit unions are asking U.S. lawmakers this holiday shopping season to help address identity theft and fraudulent charges, saying the new financial overhaul makes it harder to offset the cost of such security breaches. […] Credit unions, which issue payment cards for consumers, often charge-off fraud-related losses and also spend money…
Bill Would Give Cities, Towns and Schools Same e-Banking Security Guarantees as Consumers
Brian Krebs reports: In response to a series of costly online banking heists perpetrated against towns, cities and school districts, Sen. Charles Schumer (D-NY) has introduced legislation that would extend those entities the same protections afforded to consumers who are victims of e-banking fraud. Under “Regulation E” of the Electronic Funds Transfer Act (EFTA) consumers are not…
ICO: data crooks should face jail
… Responding to a Ministry of Justice call for evidence on the current data protection legislative framework, the privacy watchdog said that the greatest threat to information security in organisations is individuals. But it said the Data Protection Act “only provides for a fine for those individuals who knowingly or recklessly obtain or disclose personal…
German Government Moves on Draft Law Regarding Employee Data Protection
On August 25, 2010, the German government approved a draft law concerning special rules for employee data protection, originally proposed by the Federal Ministry of the Interior. A background paper on the draft law was published on August 25, 2010. The draft law would amend the German Federal Data Protection Act (theBundesdatenschutzgesetz or “BDSG”) by adding provisions that…