Bill Brenner writes: A federal cybersecurity law edged closer to reality late last week when the Senate Judiciary Committee approved a bill to protect the personal data of Americans. The bill is a bipartisan effort sponsored by Chairman Patrick Leahy, D-Vt., and co-sponsored by former Chairman Orrin Hatch, R-Utah, that would, among other things, force…
Category: Breach Laws
NSW unveils new ID theft laws
Karen Dearne reports: The NSW government plans to create three new identity offences – trafficking in identity data, possession with intent to commit a crime, and possession of equipment for the purpose of identity theft – in an overhaul of the state’s Crimes Act. The new laws will apply to offences committed offline and online….
Resource: Comparing breach notification laws
“International Security Breach Notification Survey” is a new resource prepared by Foley & Larnder LLP and Eversheds LLP, November 2009. The report summarizes and compares the laws in various countries in tabular format, with comparisons based on: Notice Requirements (to who – (i)individual and (ii)regulator?), Timing of Disclosure (does it have to be done in…
UK: Consultation paper on monetary penalties for data breaches
In Parliament yesterday, the Minister of State, Ministry of Justice, Mr. Michael Wills said: I am today publishing a consultation paper entitled “Civil Monetary Penalties, Setting the Maximum Penalty”. The paper explains the Government’s proposal to set the maximum penalty for civil monetary penalties at £500,000. Civil monetary penalties, as set out under sections 55A-E…
EU: Breach notification laws get green light
David Neal reports: The EU has announced that “nothing stands in the way” of its ePrivacy Directive, paving the way for stronger rules surrounding data breaches and other privacy issues. The EU said that, since the telecoms reform package had been approved, any work left to do on its rules was just a formality, with…
Senate Panel Clears Data Breach Bills
Eric Chabrow reports: The Senate Judiciary Committee Thursday approved two companion bills that would require businesses and government agencies to notify individuals of security breaches involving sensitive personally identifiable information. Both bills go to the Senate for consideration. The Personal Data Privacy and Security Act, or S. 1490, designates as fraud unauthorized access of sensitive…