Topic: Privacy/Data Security/Cyber Risk
Recent Developments: The FTC Red Flags Rule and Massachusetts Security Regulation
Nov 10, 2009 | Massachusetts Developments, Privacy/Data Security/Cyber Risk | United States
PCI Compliance Survey Finds Companies Need Improvement
Oct 2, 2009 | Privacy/Data Security/Cyber Risk | United States
The Ponemon Institute recently published a survey on Payment Card Industry Data Security Standards (“PCI DSS”) compliance. The Ponemon Institute is an independent research firm that conducts research on privacy, data protection and information security policy.
Read MoreVirginia Issues Guidance on Information Security Program Requirement
Oct 2, 2009 | Privacy/Data Security/Cyber Risk | United States
Public Hearing on Massachusetts Information Security Regulations
Sep 24, 2009 | Massachusetts Developments, Privacy/Data Security/Cyber Risk | United States
Final Rules Issued for Breach of Electronic Health Information
Sep 17, 2009 | Privacy/Data Security/Cyber Risk | United States
BREAKING NEWS: Client Advisory – Amended Massachusetts Security Regulations and Extension of Effective Date
Aug 18, 2009 | Massachusetts Developments, Privacy/Data Security/Cyber Risk | United States
On August 17, 2009, the Massachusetts Office of Consumer Affairs and Business Regulation (the “OCABR”) issued a press release announcing important amendments to 201 CMR 17.00: Standards for the Protection of Personal Information of Residents of the Commonwealth (the “Regulations”), and a third extension of its effective date from January 1, 2010 to March 1, 2010. The OCABR also called a public hearing scheduled for September 22, 2009 in connection with the Regulations.
FTC Announces Three-Month Suspension of Red Flags Rule; New Guidance to Be Released Shortly
Jul 30, 2009 | Privacy/Data Security/Cyber Risk | United States
UK: Financial Services Authority Punishes Failure to Protect Confidential Customer Information with Hefty Fines
Jul 27, 2009 | Privacy/Data Security/Cyber Risk, Regulatory | United Kingdom
On 22 July 2009 three HSBC companies: HSBC Life UK Ltd; HSBC Actuaries and Consultants Ltd; and HSBC Insurance Brokers Ltd, were fined £1.6m, £875,000, and £700,000 respectively by the UK Financial Services Authority (FSA). The fines are in response to those companies failing to have in place adequate systems and controls to protect customers’ confidential information from being lost or stolen.
Read MoreFederal Court Decides That Data Breach Case Against Supermarket Chain Can Proceed, But Only As to One Plaintiff
May 15, 2009 | Privacy/Data Security/Cyber Risk | United States
Earlier this week, the United States District Court for the District of Maine issued its ruling on a motion to dismiss a class action complaint against a supermarket chain based on a massive data breach. The decision addressed the question of whether when a third party steals a customer’s credit and debit card information from a grocer, can the customer then recover from the grocer?
Read More