Archives: Data Protection

Subscribe to Data Protection RSS Feed

Vacation is Canceled!: Consumer Reporting Agencies Must Satisfy First-in-the-Nation N.Y. Cybersecurity Regulations by the Fall

On June 25, 2018, the New York Department of Financial Services (“NYDFS”) issued a final regulation (the “Regulation”) requiring consumer reporting agencies with “significant operations” in New York to (1) register with NYDFS for the first time and (2) comply with the NYDFS’s cybersecurity regulation. Under the Regulation, consumer reporting …

Collision Course: Foreign Influence Operations, Data Security and Privacy

On June 11, 2018, Deputy Assistant Attorney General Adam Hickey testified to the Senate Judiciary Committee about “foreign influence operations, which include cyber efforts to interfere in our elections. As stated by Hickey, “[f]oreign influence operations include covert actions by foreign governments intended to affect U.S. political sentiment and public …

FTC Reminder: Websites and Online Services Subject to COPPA Must Honor Data Deletion Requirements

The Federal Trade Commission (FTC) recently reminded companies why record retention policies are important, especially when required to comply with the Children’s Online Privacy Protection Act (COPPA). In a blog post, titled “Under COPPA, data deletion isn’t just a good idea. It’s the law,” the FTC explained that …

Alabama and South Dakota to Join Breach Notification Club, with Oregon and Colorado Updating Approaches

Alabama’s breach notification law goes into effect June 1, 2018, bringing us one step closer to breach notification being the laws of the land from coast to coast. In March, Alabama and South Dakota, the final two holdouts, passed breach notification statutes which are both set to go into effect …

ICYMI in Cybersecurity and Data Breach

NC Data Breach Legislation Accounts for Ransomware Attacks

“Following an increase in reported state data breaches in 2017, North Carolina’s attorney general and a state representative introduced data breach legislation to better protect individuals,” HealthIT Security reports.


World Economic Forum: Cyber-Attacks Third Most Likely Global Risk in 2018

In …

Don’t Miss Out: The Health Care Cloud Coalition Monthly Meeting With Guest Speaker Linda Sanches From the Office for Civil Rights

The Health Care Cloud Coalition is kicking off it’s 2018 Monthly Meeting Series next Thursday, January 18th at 1:00 p.m. Eastern with a presentation from Linda Sanches, the Senior Advisor for Health IT and Privacy Policy from the U.S. Department of Health and Human Services Office for Civil Rights …

ICYMI: PrivSec’s Weekly News Picks

Interactive Advertising Bureau Releases Technical Standard to Facilitate Disclosure and Consent in Digital Advertising

IAB Europe reported that it “presented a new technical standard to support the digital advertising ecosystem in meeting requirements relating to user consent under the General Data Protection Regulation (GDPR).”


Working Party 29 Releases Joint