Susan Corica reports: The Board of Education has adopted a new policy to protect the privacy of student data, to comply with new state legislation. […] Under the new policy, “for any contract that we generate, after Oct. 1 of 2016, we need to have a clause in there that tells us exactly how they…
Category: State/Local
Bryan Cave Data Security Breach Handbook – 2016
From Bryan Cave, this free resource on Incident Readiness and Response: Since the first publication of this handbook in 2014, the legal ramifications for mishandling a data security incident have become more severe. In the United States, the number of federal and state laws that claim to regulate data security has mushroomed. The European Union has also…
New York State Proposes Cybersecurity Regulation for Financial Services Institutions
Micaela McMurrough, Ashden Fein and Catlin Meade write: On September 13, 2016, New York Governor Andrew Cuomo announced a proposed regulation that would require financial service institutions to develop and implement cybersecurity programs to prevent and mitigate cyber-attacks. The proposed regulation will be subject to a 45-day comment period once it is published in the New York State…
Summer Round-Up: Four States Bolster Data Breach Notification Laws and More Changes on the Way
Michael B. Katz and Cynthia J. Larose of Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C. write: … According to a recent summary published by the National Conference of State Legislatures, more than 25 states in 2016 have introduced or are currently considering security breach notification bills or resolutions. While much legislation remains pending in statehouses across the…
The number of Texas companies held accountable for data breaches?
Shawn Shinneman reports: The Office of the Attorney General hasn’t disciplined a single Texas company for failing to notify customers of a data breach – and records show it is only directly notified of a small portion of the incidents, the Dallas Business Journal has learned. The issue could stem from the way Texas’ cybersecurity…
California Bill Would Add Security Standards to Data Breach Law
Laura Mahoney reports: A California lawmaker has revived a bill to set a “reasonably prudent” standard for businesses to protect personal consumer data, including geolocation and biometric information, in the final two weeks of the legislative session. Assemblyman Mike Gatto (D) amended A.B. 83, a bill that has been dormant for a year, setting new…