Showing 37 posts in Data Privacy.
In Dept. of Labor v. McConnell, the Georgia Supreme Court affirmed that an individual could not pursue certain state-law claims for negligence, breach of fiduciary duty or invasion of privacy, where the disclosure of personal data was not alleged to have been through a criminal act or have resulted directly in identity theft or unauthorized charges. Read More ›
On December 28, 2018, the former Michigan Governor, Rick Snyder, signed into law House Bill 6941 (the “Bill”) amending the Insurance Code by adding Chapter 5A - Data Security (Sections 550 - 565). Michigan became the third state, after South Carolina and Ohio, to adopt a version of the National Association of Insurance Commissioners (NAIC) Insurance Data Security Model Law. Read More ›
On December 12, 2018, the Ohio House passed Senate Bill 273 (the “Bill”) enacting Section 3965.01-11 to the Ohio Revised Code to “establish standards for data security and for the investigation of and notification to the Superintendent of Insurance of a cybersecurity event.” Read More ›
Pennsylvania Supreme Court finds a common law duty for employers to protect sensitive employee information
In 2014, hackers broke into the University of Pittsburgh Medical Center’s (UPMC) computer system and stole large amounts of personal information about UPMC’s employees. Read More ›
Good news! The Ohio legislature has offered financial institutions some legal protections in the form of the Ohio Data Protection Act ( “Act”), effective November 2 and believed to be a first-of-its-kind state law. Read More ›
On October 8, The Wall Street Journal broke the news that, as early as 2015, a flaw in Google’s social media platform, Google+, made it possible for third-party developers to access data from users’ non-public profile fields. Read More ›
As additional evidence that the United States takes enforcement of the Privacy Shield Framework seriously, a new wave of settlements has been reached concerning the Federal Trade Commission’s (FTC) complaints related to companies’ false claims of EU-U.S. Privacy Shield certification. The timing of these enforcement actions is significant since they come at a time when the future of this EU-U.S. agreement concerning the cross-border transfer of personal data is unclear. Read More ›
California has signed into law SB-327, which establishes new cybersecurity standards for devices capable of connecting (directly or indirectly) to the internet and that have a designated IP or Bluetooth address. By some estimates, nearly 12 billion of these internet-connected IoT units are already in use, from smart appliances to wearables, and together comprise what is commonly referred to as the “Internet of Things” (IoT). Read More ›
Ask the Blogger
Do you have a topic that you would like discussed in a future blog article? Please let us know. If you have a confidential question regarding a blog article, please feel free to contact the article's author directly, or let us know if you would like for someone to contact you directly.
Victoria E. Beckman is the co-chair of the Privacy & Data Security team and the chair of Frost Brown Todd’s Latin America Desk. Her practice concentrates on issues of cybersecurity and data breach response.