Mark Scott reports that new EU data protection directives were (finally) approved yesterday, and will go into effect in 2017. Some of the directives will have significant impact for American businesses, regardless of whether they maintain headquarters or offices in the EU. Scott summarizes some of the new directives, and there are a few that…
Category: Legislation
KY: Child identity theft legislation pre-filed in House
Brad Bowman reports that House Majority Caucus Chair Rep. Sannie Overly, D-Paris, pre-filed a bill that would protect children from identity theft by allowing parents or guardians to request a security freeze in cases of card fraud for children under 18 and an incapacitated person. Bowman reports: Currently, there are 22 states that allow parents,…
Internet firms to be subject to new cybersecurity rules in EU
Julia Fioretti reports: Internet firms such as Cisco, Google and Amazon will be subject to a new EU cybersecurity law forcing them to adopt tough security measures and possibly report serious breaches to national authorities, according to a document seen by Reuters. The so-called Network and Information Security Directive has been stuck in talks between…
New German cyber security law to protect critical infrastructure
Neil Ford explains: Germany has passed a new IT security law requiring critical infrastructure institutions to implement minimum information security practices or face fines of up to €100.000. The new law, which was drafted last August, was passed by the Bundestag last month and has now been passed by Germany’s upper house, the Bundesrat. It gives…
2015 Data Breach Legislation Six Month Review: Many Proposals, Few Changes
Bryan Thompson and Sean B. Hoar of Davis Wright Tremaine LLP provide a status on action – and much inaction on bills at the federal and state level: Congress has moved at a glacial pace in considering data security legislation this year, even as the fallout over major data breaches, including the OPM breach, turned…
Rhode Island Governor signs new comprehensive Identity Theft Protection Act
Linn Freedman writes: On June 26, 2015, Rhode Island Governor Gina Raimondo signed Senate Bill S0134, the Rhode Island Identity Theft Protection Act of 2015, which substantially revises the old law, including breach notification. Specifically, the new law requires municipal agencies, state agencies and any “person” that “stores, collects, processes, maintains, acquires, uses, owns or…