Bill Toulas reports: The Australian parliament has approved a bill to amend the country’s privacy legislation, significantly increasing the maximum penalties to AU$50 million for companies and data controllers who suffered large-scale data breaches. The financial penalty introduced by the new bill is set to whichever is greater: AU$50 million Three times the value of…
Category: Federal
Au: Significantly larger privacy breach fines pass Parliament
Denham Sadler reports: Companies now face a fine of $50 million for “serious or repeated” privacy breaches while the privacy watchdog will have stronger powers after legislation passed Parliament on Monday. The Privacy Legislation Amendment (Enforcement and Other Measures) Bill 2022 passed both houses of Parliament with bipartisan support on Monday with a minor amendment, and will…
Indian govt Govt plans penalty of up to Rs 500 crore for data breach
Pankaj Doval reports: The government on Friday released the draft personal data protection bill, seeking to provide a framework for a strict user-consent regime for data processing, along with a penalty of up to Rs 500 crore for data breaches by social media and net companies while offering concessions to tech firms. Read more about…
FTC Announces Six-Month Extension for Compliance with Some Changes to Gramm-Leach-Bliley Safeguards Rule
Hunton Andrews Kurth writes: On November 15, 2022, the Federal Trade Commission announced a six-month extension for companies to comply with certain updated requirements of the Gramm-Leach-Bliley Act’s Safeguards Rule, a set of data security provisions covered financial institutions must implement to protect their customers’ personal information. The new deadline is June 9, 2023. The FTC announced updates to…
Bug Bounties and Ransomware Demands: Storm Clouds Ahead for In-House Counsel
Michael Ward, Matthew Baker, and Jessica Wu of Baker Botts write about the conviction of Uber’s former security chief for felony violations of obstructing a Federal Trade Commission investigation and “misprision of felony” for failing to disclose a 2016 data breach. They then discuss issues for in-house counsel that the case raises, beginning with: Action…
LinkedIn Scores Partial Win in Long-Running Data Scraping Feud
Andrea Vittorio reports: A workforce analytics firm breached LinkedIn Corp.‘s user agreement by scraping data and using fake accounts to fuel its now-defunct business, a federal court in San Francisco ruled in a lengthy dispute that’s on a path to trial. The ruling, made public Friday, represents a partial win for LinkedIn in a case that…