Attorney General William Tong testified last week before the General Law Committee in support of two pieces of legislation sought by the Office of the Attorney General to strengthen the state’s price gouging and data breach notification statutes. Data Breaches An Act Concerning Data Privacy Breaches, House Bill 5310, was sought by the Office of…
Category: Legislation
In: Telcos want govt to clarify onus of security breach post NSD rollout
PTI reports: Telcos have asked the government to clarify about the entity that will be held liable if there is a security breach in the network post the implementation of National Security Directive (NSD) on the telecom sector, according to industry sources aware of the development. The telecom operators have given their input to the…
An Overview of Cybersecurity Law in Taiwan
John Eastwood, Nathan Snyder, Wendy Chu, David Rosenthal and Lloyd G. Roberts III of Eiger write: 1. GOVERNING TEXTS In Taiwan, there are two main branches of legislation pertaining to information security: legislation on cybersecurity and legislation protecting personal data. While the information security aspects of personal data protection legislation (mainly the PDPA) only apply…
Data Analytics Company Settles with FTC Over Alleged Data Security Violations
Sheila A. Millar and Tracy P. Marshall of Keller & Heckman write: Third-party service providers are vital to many companies and they handle a wide range of business activities essential for companies to deliver their own offerings. But a company is not adequately protecting consumers if it fails to perform proper due diligence on service…
IoT Devices to See New Security Guidelines in 2021
Joseph Lazzarotti writes: Setting up that new IoT device you received for Christmas? Maybe you’ve been derelict in feeding the dog and found a smart dog feeder under the tree, one that will alert you that Luna has been fed or that you have to refill the feeder. Smart gizmos are not just for the home, approximately 25%…
FTC Announces Enforcement for Inadequate Third Party Risk Management Practices Under the GLBA’s Safeguards Rule
Hunton Andrews Kurth writes: On December 15, 2020, the Federal Trade Commission announced a proposed settlement with Ascension Data & Analytics, LLC, a Texas-based mortgage industry data analytics company (“Ascension”), to resolve allegations that the company failed to ensure one of its vendors was adequately securing personal information of mortgage holders. The FTC alleged that Ascension’s vendor, OpticsML,…