On August 8, 2012, The National Institute of Standards and Technology (NIST) released a revised version of the Computer Security Incident Handling Guide (Security Guide) addressing the management of computer security … [Read more] about NIST Updates Computer Security Guidance and Additional Cyber-Security Guidance
FTC Is First Privacy Enforcement Authority in APEC Cross-Border Privacy Rules System
The Department of Commerce announced the approval of the United States’ participation in the Asia-Pacific Economic Cooperation Cross-Border Privacy Rules system (CBPR). The CBPR promotes “a baseline set of data privacy practices … [Read more] about FTC Is First Privacy Enforcement Authority in APEC Cross-Border Privacy Rules System
FTC Files Complaint Against Wyndham Worldwide Corp. for Data Breach
On June 26, 2012, the Federal Trade Commission (“FTC”) filed a complaint in federal district court in Arizona against Wyndham Worldwide Corporation and three subsidiaries (“Wyndham”) alleging that the company’s … [Read more] about FTC Files Complaint Against Wyndham Worldwide Corp. for Data Breach
Senate Republicans Reintroduce Revised Cybersecurity Bill, S. 3342, the SECURE IT Act
This afternoon, Senators John McCain (R-AZ), Kay Bailey Hutchison (R-TX), Chuck Grassley (R-IA), Saxby Chambliss (R-GA), Lisa Murkowski (R-AK), Dan Coats (R-IN), Ron Johnson (R-WI), and Richard Burr (R-NC) reintroduced the Strengthening and Enhancing … [Read more] about Senate Republicans Reintroduce Revised Cybersecurity Bill, S. 3342, the SECURE IT Act
HHS/OCR Posts HIPAA Privacy, Security and Breach Notification Audit Protocol
In our November 30, 2011 and March 7, 2012 posts, we discussed the HHS Office for Civil Rights (OCR) audit pilot program, which began in November 2011 and is expected to conclude in December 2012. The audit program has been developed pursuant to the … [Read more] about HHS/OCR Posts HIPAA Privacy, Security and Breach Notification Audit Protocol