Under a Washington law effective July 1, 2010, certain entities involved in payment card transactions may be liable to financial institutions for costs associated with reissuing payment cards after security breaches. Designed to encourage the reissuance of payment cards as a means of mitigating harm caused by security breaches, Washington H.B. 1149 applies to three…
Category: Legislation
Shock, confusion after birth certificates voided
Suzanne Gamboa reports: Native Puerto Ricans living outside the island territory are reacting with surprise and confusion after learning their birth certificates will become no good this summer. A law enacted by Puerto Rico in December mainly to combat identity theft invalidates as of July 1 all previously issued Puerto Rican birth certificates. That means…
UK: Tough new sanctions proposed for breaches of data protection law
The Ministry of Justice is running two consultation exercises in tandem concerning proposals to amend the Data Protection Act. The first proposal is to introduce custodial sentences of up to two years for data protection offences; the second proposal is to introduce new civil penalties, with an upper limit fine of £0.5m, for serious breaches…
Nevada and New Hampshire Data Security and Privacy Laws Take Effect
Hunton & Williams LLP write: On January 1, 2010, two important state data security and privacy laws took effect in Nevada and New Hampshire. The laws create new obligations for most companies that do business in Nevada and for health care providers and business associates in New Hampshire. Nevada’s law requires “data collectors,” including government…
AU: Consumers may be told of ID theft
Kim Christian reports: Australian businesses may soon be forced to tell their customers if their personal details have been stolen, under proposed new laws to combat identity theft. One of the world’s biggest technology security companies, Symantec Corp, says it has been approached to assist the federal government with “advice and support” in drafting privacy…
Massachusetts Data Security Regulations Final Amendments Released
Tanya Forsheit reports: As we noted earlier this week, Massachusetts indicated late last week it would issue its last round of amendments to its data security regulations scheduled to take effect March 1, 2010, 201 CMR 17.00. The last round of amendments are not particularly significant, although it is worth noting that, contrary to the…