A study released by the Ponemon Institute suggests that the number of reported data loss incidents in the UK is significantly higher than 415 reported to the Information Commissioners’ Office. According to the Ponemon report, which was sponsored by Lumension, six out of 10 UK companies have data loss including sensitive information as a result…
Category: Commentaries and Analyses
HIMSS Survey: Business Associates not up to speed on HITECH
Today, HIMSS released a new report, 2009 HIMSS Analytics Report: Evaluating HITECH’s Impact on Healthcare Privacy and Security. Commissioned by ID Experts, HIMSS surveyed senior information technology (IT) executives, Chief Security Officers, Chief Medical Information Officers (CMIOs), Chief Information Security Officers and Chief Privacy Officers at hospitals throughout the United States.They also surveyed business associates…
UK: Burglary and theft account for a third of data security breaches
The UK Information Commissioner’s Office has issued a press release: New figures from the Information Commissioner’s Office (ICO) reveal that burglaries and theft are the single biggest security risks for organisations processing people’s personal details. 711 organisations across the public, private and third sectors have reported security breaches to the ICO since 25 million child…
Resource: Comparing breach notification laws
“International Security Breach Notification Survey” is a new resource prepared by Foley & Larnder LLP and Eversheds LLP, November 2009. The report summarizes and compares the laws in various countries in tabular format, with comparisons based on: Notice Requirements (to who – (i)individual and (ii)regulator?), Timing of Disclosure (does it have to be done in…
UK: Consultation paper on monetary penalties for data breaches
In Parliament yesterday, the Minister of State, Ministry of Justice, Mr. Michael Wills said: I am today publishing a consultation paper entitled “Civil Monetary Penalties, Setting the Maximum Penalty”. The paper explains the Government’s proposal to set the maximum penalty for civil monetary penalties at £500,000. Civil monetary penalties, as set out under sections 55A-E…
Ca: Data breaches on the increase
David Canton writes: Federal Privacy Commissioner Jennifer Stoddart recently released her annual report to Parliament on PIPEDA, the private-sector privacy law. While her comments on social networking were highlighted and widely reported by the media, the report contained some other interesting trends that have not been as widely discussed. One of the most notable developments…