“International Security Breach Notification Survey” is a new resource prepared by Foley & Larnder LLP and Eversheds LLP, November 2009. The report summarizes and compares the laws in various countries in tabular format, with comparisons based on: Notice Requirements (to who – (i)individual and (ii)regulator?), Timing of Disclosure (does it have to be done in…
Category: Breach Laws
UK: Consultation paper on monetary penalties for data breaches
In Parliament yesterday, the Minister of State, Ministry of Justice, Mr. Michael Wills said: I am today publishing a consultation paper entitled “Civil Monetary Penalties, Setting the Maximum Penalty”. The paper explains the Government’s proposal to set the maximum penalty for civil monetary penalties at £500,000. Civil monetary penalties, as set out under sections 55A-E…
EU: Breach notification laws get green light
David Neal reports: The EU has announced that “nothing stands in the way” of its ePrivacy Directive, paving the way for stronger rules surrounding data breaches and other privacy issues. The EU said that, since the telecoms reform package had been approved, any work left to do on its rules was just a formality, with…
Senate Panel Clears Data Breach Bills
Eric Chabrow reports: The Senate Judiciary Committee Thursday approved two companion bills that would require businesses and government agencies to notify individuals of security breaches involving sensitive personally identifiable information. Both bills go to the Senate for consideration. The Personal Data Privacy and Security Act, or S. 1490, designates as fraud unauthorized access of sensitive…
EU: Telcos’ data breach notification amendment is passed
From Out-Law.com: The European Council has approved a data breach notification rule for Europe’s telecoms firms. The amendment to an EU Directive will force telcos to tell customers if they lose their data. The European Parliament and Commission have already approved the amendments, which will become law after it has been published in the EU’s…
FTC extends enforcement deadline for Red Flags rule to 2010
From the why-am-I-not-surprised dept: At the request of Members of Congress, the Federal Trade Commission is delaying enforcement of the “Red Flags” Rule until June 1, 2010, for financial institutions and creditors subject to enforcement by the FTC. The Rule was promulgated under the Fair and Accurate Credit Transactions Act, in which Congress directed the…