Tanya Forsheit provides an analysis and commentary on the new breach notification requirements from the Connecticut Insurance Commission that I’ve mentioned on this blog previously (here) and clarified on PHIprivacy.net. You can read her analysis on InformationLawGroup.
Category: Breach Laws
Connecticut Insurance Commissioner Announces Data Breach Notification Mandate
Joseph Lazzarotti of Jackson Lewis writes: On August 18, 2010, the Connecticut Insurance Commissioner issued Bulletin IC-25 which mandates that entities within its jurisdiction notify the Department of Insurance of any “information security incident.” This post provides a brief summary of this new requirement. […] What is an “information security incident”? Under this Bulletin, an information security…
Data breach fines will not stop the rot
Over in the U.K., John E. Dunn discusses some hefty fines that have been levied following data breaches, but comments: The public gets to hear about the punishment but a lot is left behind a curtain of secrecy. This is wrong and possibly dangerous. What the UK lacks is not punishments but a basic data…
California passes notification content bill, but will Schwarzenegger sign it?
The California legislature passed an important breach notification bill authored by state Senator Joe Simitian this week, but will Governor Schwarzenegger veto this bill too, as he did the last time around in its previous incarnation? Senate Bill 1166 would mandate certain information about the breach be included in any notification. In a press release…
Yet Another Proposed Federal Data Security and Breach Notification Bill: Senators Rockefeller and Pryor Jump Into the Fray
Tanya Forsheit writes: Many of us have watched over the past few years as dozens of proposed federal data security and breach notification bills have been introduced, often with bipartisan support, but have failed to become law. This year has seen many of the usual proposals. For those of you keeping track, this year’s bills…
Possession of a skimmer now a felony in Minnesota
A new law went into effect in Minnesota today. As reported by Mark Sommerhauser: The Legislature moved to criminalize possession of “skimming” devices that can be used to steal someone’s identity. The new law makes it a felony to possess devices that allow unauthorized scanning and recording of personal information from the magnetic strip of…