Joe Lazzarotti of Jackson Lewis writes: It usually happens after a reported data breach. The organization experiencing the breach sends notifications to affected individuals, as well as federal and or state agencies where appropriate and perhaps other parties. Not long thereafter, the organization receives an inquiry from one or more government agencies. These inquiries typically…
Category: Legislation
Nevada Gaming Commission Adopts Cybersecurity Regulations
Joseph Lazzarotti of JacksonLewis writes: On December 22, 2022, the Nevada Gaming Commission (NGC) adopted regulations creating new cybersecurity requirements for certain gaming operators. This action joins agencies in other jurisdictions moving quickly to protect consumers and their personal information in the gaming industry. The NGC adopted the October 17, 2022 version of the regulations, which become effective January…
ECB Fines Spain’s Abanca for Delay in Reporting Cyber Hack
Reuters reports: The European Central Bank said on Friday it had fined Spanish bank Abanca for its delay in reporting a cyber attack that forced it to suspend its main means of payment in 2019. “The bank’s omission hindered the ECB’s ability to properly assess Abanca’s prudential situation and to react in a timely manner…
Important Notice about FIPPA – Mandatory Breach Notification and Privacy Management Program Requirements Coming into Effect on February 1, 2023
Jeff Holowaychuk and Abigail Choi of Clark Wilson write: Starting from February 1, 2023, public bodies in BC will be required to comply with the mandatory privacy breach notification and privacy management program provisions of the Freedom of Information and Protection of Privacy Act. These new provisions were part of a package of FIPPA amendments introduced…
Australia will now fine firms up to AU$50 million for data breaches
Bill Toulas reports: The Australian parliament has approved a bill to amend the country’s privacy legislation, significantly increasing the maximum penalties to AU$50 million for companies and data controllers who suffered large-scale data breaches. The financial penalty introduced by the new bill is set to whichever is greater: AU$50 million Three times the value of…
Au: Significantly larger privacy breach fines pass Parliament
Denham Sadler reports: Companies now face a fine of $50 million for “serious or repeated” privacy breaches while the privacy watchdog will have stronger powers after legislation passed Parliament on Monday. The Privacy Legislation Amendment (Enforcement and Other Measures) Bill 2022 passed both houses of Parliament with bipartisan support on Monday with a minor amendment, and will…