The European Commission has prepared and circulated a draft new General Data Protection Regulation (the “Regulation”). The draft is consistent with many of the expectations the Commission set in its November, 2010, communication titled, … [Read more] about Draft Regulation Prepared by the European Commission Proposes Fundamental Changes in European Union Privacy and Data Security Standards
House Committee on Intelligence Overwhelmingly Passes Cybersecurity Legislation
Yesterday, the House Intelligence Committee passed H.R. 3523, the Cyber Intelligence Sharing and Protection Act of 2011, by a nearly unanimous vote of 17-1. The legislation, which was introduced Wednesday by Committee Chairman Mike Rogers (R-MI), … [Read more] about House Committee on Intelligence Overwhelmingly Passes Cybersecurity Legislation
Facebook Agrees To Privacy Changes As A Result Of FTC Settlement
On November 29, the Federal Trade Commission announced that it had entered an agreement and consent order with Facebook Inc. to settle charges made by the FTC that Facebook’s changes to its website’s privacy settings in December 2009 had threatened … [Read more] about Facebook Agrees To Privacy Changes As A Result Of FTC Settlement
OCR’s HIPAA Privacy & Security Audit Program Pilot Underway
The pilot phase of the HHS Office for Civil Rights (OCR) HIPAA Privacy and Security Audit Program is now underway through December 2012. Background. Under HITECH Act § 13411, 42 USC § 17940, HHS is required to provide for periodic audits … [Read more] about OCR’s HIPAA Privacy & Security Audit Program Pilot Underway
First Circuit Rules that Plaintiffs May Recover Certain Damages for a Data Breach
In a departure from most other courts, the United States Court of Appeals for the First Circuit has concluded that Maine law allows plaintiffs to recover certain damages arising from a data breach. Anderson v. Hannaford Bros. Co., — F.3d … [Read more] about First Circuit Rules that Plaintiffs May Recover Certain Damages for a Data Breach