Update: The Florida Department of State issued a statement on March 31 confirming the breach. That statement appears elsewhere on this site. Under the language of their statute, addresses are not considered “confidential” information, and the state has asked DataBreaches.net to make clear that this did not involve confidential information, as “confidential” is defined by…
Category: Of Note
Ontario’s sole health privacy prosecution quietly dismissed
Olivia Carville reports: The first person ever prosecuted under Ontario’s health privacy law for allegedly prying into almost 6,000 patient records no longer faces charges because of the “curious” way the Crown handled the case, a court has ruled. Against a backdrop of growing calls for more prosecutions under this law, the potentially precedent-setting case…
UK: ICO to make enquiries about sale of pension data
From the ICO: Allegations have been made about firms passing on sensitive financial data, including pension information, which is being used by cold calling companies. An ICO spokesperson said: “We’re aware of allegations raised against several companies involved in the cold calling sector, and will be making enquiries to establish whether there have been any…
Personal details of world leaders accidentally revealed by G20 organizers
And once again, a freedom of information request uncovers a breach. Paul Farrell reports: The personal details of world leaders at the last G20 summit were accidentally disclosed by the Australian immigration department, which did not consider it necessary to inform those world leaders of the privacy breach. The Guardian can reveal an employee of the agency…
Allegations of Indirect Access Held Insufficient To State Claim Under CFAA – Court
David J. Clark of Epstein Becker & Green, P.C., writes: On March 20, 2015, a California federal court rejected an expansive reading of the Computer Fraud and Abuse Act (“CFAA”) urged by two plaintiff corporations that sought to hold a competitor and two of its directors liable under the CFAA, under an agency theory, for the actions…
NM data breach bill dies in committee
Sorry, New Mexico residents. Your state legislature has failed to ensure you the same protections other states’ residents already have when it comes to data breach notification. Sal Crist reports: The Data Breach Notification Act — otherwise known as HB 217 — failed to make it beyond the New Mexico Senate last week, ultimately getting tabled by the judiciary…