Tony Romm reports: Add Sen. Al Franken to the growing list of members casting a skeptical eye on Epsilon. A data breach that allowed hackers access to the names and email addresses of consumers who do business with Target, Best Buy, TiVo and other Epsilon clients led Franken (D-Minn.) on Thursday to vow to “do…
Category: Legislation
Data Breach Notification Laws Influence Storage Location Decisions
Mathew J. Schwartz reports: Many companies that look to process and store sensitive data — including intellectual property — abroad as a cost-cutting measure are seeking countries with minimal data breach notification requirements, according to a survey of 1,000 senior IT decision makers by market research firm Vanson Bourne. The survey was sponsored by Intel’s…
States Attempt to Address Privacy Risks Associated with Digital Copiers and Electronic Waste
On April 1, 2011, a New York law went in effect requiring retailers of certain electronic equipment to institute electronic waste collection programs and to provide information to consumers on how to “destroy all data on any electronic waste, either through physical destruction of the hard drive or through data wiping.” Manufacturers of devices that have…
Ie: Data breach code ‘not signed off’
Elaine Edwards reports: A code of practice that would have forced organisations to report cases where personal data was stolen or compromised cannot be enforced because it was not put before the Oireachtas prior to the dissolution of the last Dáil. Data Protection Commissioner Billy Hawkes approved the code last year to help organisations to…
States Jump Into the Security Breach Breach
Wayne Josel and Cindy Lo write: As discussed in our recent webinar “Whose Data Is It Anyway: Privacy in the De-Centralized Digital World”, currently there is no comprehensive federal statutory scheme to govern the protection of privacy. While lawmakers and agencies at the federal level continue to grapple with developing useful legislation to address privacy…
Congress Has The Sense It Should Enact A Comprehensive Data Security Law
Joseph Lazzarotti writes: Together with some other U.S. Senators who have offered data security laws in recent years, Senate Majority Leader Harry Reid introduced S.21 on January 25. The bill, a “sense of Congress” bill, urges the passage of a comprehensive law to address cybersecurity, without making any changes to current law. This bill is important in that it…