From Out-Law.com: The European Council has approved a data breach notification rule for Europe’s telecoms firms. The amendment to an EU Directive will force telcos to tell customers if they lose their data. The European Parliament and Commission have already approved the amendments, which will become law after it has been published in the EU’s…
Category: Breach Laws
FTC extends enforcement deadline for Red Flags rule to 2010
From the why-am-I-not-surprised dept: At the request of Members of Congress, the Federal Trade Commission is delaying enforcement of the “Red Flags” Rule until June 1, 2010, for financial institutions and creditors subject to enforcement by the FTC. The Rule was promulgated under the Fair and Accurate Credit Transactions Act, in which Congress directed the…
Judge: FTC Cannot Make Lawyers Comply With ID Theft Laws
The Federal Trade Commission cannot force practicing lawyers to comply with new regulations aimed at curbing identity theft, a federal judge ruled today at the U.S. District Court for the District of Columbia. The decision offers a reprieve to law firms across the country, which faced a deadline this weekend to put in place programs…
Coalition for Patient Privacy Calls on HHS to Repeal the Breach Notification Rule
The Coalition for Patient Privacy urges the Department of Health and Human Services to revise and repeal the interim final rule (IFR) establishing requirements for notification of breaches of unsecured protected health information. “We are dismayed and disappointed with the IFR, particularly with the inclusion of a ‘harm standard’. HHS went far beyond the intent…
House bill excludes some businesses from Red Flag Rules
The House of Representatives passed H.R. 3763, a bill that amends the Fair Credit Reporting Act to provide for an exclusion from Red Flag Guidelines for certain businesses. As passed by the House, the following would not be considered “creditors” under the new Red Flag Rules: a health care practice with 20 or fewer employees…
Consumer Watchdog Asks HHS to Repeal Rule Allowing Health Care Providers to Decide When Notification of Breached Electronic Medical Records is Necessary
Consumer Watchdog today called on the Health and Human Services Department to repeal a rule that allows health care providers and insurers to decide whether consumers must be notified when the security of their electronic confidential health information has been breached. In a letter to HHS Secretary Kathleen Sebelius the nonprofit, nonpartisan consumer advocacy group…