Full Title: In the Matter of Liberty Latin America Limited, Liberty Mobile Puerto Rico Inc., Liberty Mobile USVI Inc. Document Type: Consent Decree Order Bureau(s): Enforcement Description FCC EB settles with Liberty for $100K civil penalty resolving an investigation into whether Liberty failed to report a data breach in a timely manner as required and failed…
Category: Legislation
Malaysia’s government to amend Personal Data Protection Act to require notification of data breaches
The Sun reports: The government is planning to amend the Personal Data Protection Act of 2010 to include breach notification requirements that compel companies to inform authorities when a data breach happens in commercial transactions, said Digital Minister Gobind Singh Deo. Gobind said his ministry proposes to table the amendment at the next sitting of…
LifeLabs to appeal court’s decision to release Ontario IPC and BC OIPC breach investigation report
The Office of the Information & Privacy Commissioner for British Columbia issued the following statement on May 23 about a case that raises issues of transparency and claims of privileged information: LifeLabs has announced that it is seeking leave to appeal a court ruling upholding the decision of the Information and Privacy Commissioner of Ontario…
SEC Charges Intercontinental Exchange and Nine Affiliates Including the New York Stock Exchange with Failing to Inform the Commission of a Cyber Intrusion
Washington D.C., May 22, 2024 — The Securities and Exchange Commission today announced that The Intercontinental Exchange, Inc. (ICE) agreed to pay a $10 million penalty to settle charges that it caused the failure of nine wholly-owned subsidiaries, including the New York Stock Exchange, to timely inform the SEC of a cyber intrusion as required…
UK to propose mandatory reporting for ransomware attacks and licensing regime for all payments
“Mother, May I?” UK entities may need permission to make ransom payments. Alexander Martin reports: Officials in Britain are set to propose a major overhaul of how the country responds to ransomware attacks by requiring all victims to report incidents to the government, and then obliging those victims to seek a license before making any…
Utah Updates to Breach Notification Requirements Take Effect
Dorothy Parson McDermott of JacksonLewis writes: On May 1, 2024, amendments to Utah’s cybersecurity and data breach notification law took effect. The state’s cybersecurity and data breach notification law requires an organization that conducts business in the State of Utah to prevent the unlawful use or disclosure of personal information collected by the organization. Under…