Bryan Thompson and Sean B. Hoar of Davis Wright Tremaine LLP provide a status on action – and much inaction on bills at the federal and state level: Congress has moved at a glacial pace in considering data security legislation this year, even as the fallout over major data breaches, including the OPM breach, turned…
Category: Legislation
Rhode Island Governor signs new comprehensive Identity Theft Protection Act
Linn Freedman writes: On June 26, 2015, Rhode Island Governor Gina Raimondo signed Senate Bill S0134, the Rhode Island Identity Theft Protection Act of 2015, which substantially revises the old law, including breach notification. Specifically, the new law requires municipal agencies, state agencies and any “person” that “stores, collects, processes, maintains, acquires, uses, owns or…
Three men associated with Anonymous Australia facing jail time: Part 1
Three men affiliated with Anonymous Australia are facing jail time: one for incitement, and two for serious hacking charges that could send each man to prison for many years. DataBreaches.net started looking into all three cases and how the men’s paths crossed. In this post, we provide some background and details on one of the cases. Future posts will…
UK: ICO given new powers to audit NHS
From the Information Commissioner’s Office: “Data breaches by the NHS are a major cause for concern – this will give us a chance to act before a breach happens” The Information Commissioner has welcomed a change in the law that will give his office the right to force NHS authorities to be audited for compliance…
Data Breach Notification Law Unlikely in 2014
One might somewhat pessimistically insert “and is unlikely in 2015… and 2016… and…” Eric Chabrow reports on how despite its importance and the number of massive data breaches reported in the past year, a federal data breach notification law is unlikely to pass this year. No surprise there, as he notes the gap between what businesses…
Interactive Map of Breach-Notification Laws in the EU
Interactive Map of Breach-Notification Status European member states are in the process of adopting laws and regulations that require businesses operating in their countries to notify government agencies and affected individuals when they experience breaches of personal data. Even as the EU Directive on Data Protection is being reviewed and might be replaced by a…