Privacy Legislation Progresses in 5 More States

Data Breach Today

States Would Join 3 Others That Have Already Enacted Laws Five states are making progress this year toward passing privacy legislation along the lines of California's Consumer Privacy Act, according to the International Association of Privacy Professionals.

2021: The State of Privacy

Data Breach Today

IAPP's Trevor Hughes Previews the Year's Global Trends, Challenges and Legislation From contact tracing to data transfer to the new California Privacy Rights Act, 2021 already is shaping up to be a big year for privacy.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Bad Cookies: Privacy Regulator Fines Supermarket Giant

Data Breach Today

Million Fine for French Supermarket Giant Carrefour for Alleged GDPR Violations France's privacy regulator has hit retail giant Carrefour with a $3.7 million fine for violating privacy laws, including GDPR.

Why This Facebook Privacy Settlement Is Unusual

Data Breach Today

$650 Million Settlement Reached Under Illinois' Groundbreaking Biometrics Privacy Law Ending six years of litigation, a federal judge has signed off on a $650 million settlement of a class-action lawsuit against Facebook for violating Illinois' groundbreaking privacy law that restricts collecting biometrics data. Here's why this case is so unusual.

Privacy without borders: Reality or Fantasy?

Imagine a world in which every country shared a vision and a common set of principles to protect and regulate the use of personal data. It would make international business far simpler, provide citizens in every country with the same privacy rights.

Federal Privacy Bill Reintroduced in Congress

Data Breach Today

Proposal Would Empower FTC, States to Enforce Privacy Regulations U.S. Suzan DelBene, D-Wash, has reintroduced a bill that would create a national-wide data privacy standard that in its latest incarnation makes an attempt to placate Republicans.

The 'Human Element' in Privacy

Data Breach Today

Gabriel Gumbs of Spirion on Privacy Regulations and Data Classification The RSA 2020 theme was "The Human Element." Gabriel Gumbs of Spirion describes what this means in the era of privacy regulations

Marriott Hit With $24 Million GDPR Privacy Fine Over Breach

Data Breach Today

Privacy Regulator in UK Cautions Organizations to Conduct Thorough Due Diligence Hotel giant Marriott has been hit with the second largest privacy fine in British history, after it failed to contain a massive, long-running data breach.

GDPR 277

New Zealand's Refreshed Privacy Act Takes Effect

Data Breach Today

Includes New Breach Notification Requirements, Fines and Greater Regulatory Powers New Zealand's refreshed Privacy Act, which came into effect Tuesday, introduces breach notification requirements and civil penalties.

Privacy Group Files Complaint Over iOS Tracking

Data Breach Today

WhatsApp’s New Privacy Policy Just Kicked In

WIRED Threat Level

Security Security / PrivacyInstead of a hard cutoff, the messaging app will gradually degrade and eventually cease to function if you don’t accept the changes.

Privacy in the Pandemic Era

Data Breach Today

IAPP's Omer Tene on Why Privacy Issues Are More Important Than Ever Before COVID-19, the privacy discussion this year was mainly about the California Consumer Privacy Act. Omer Tene of the IAPP discusses the pandemic's influence on global privacy concerns

Ireland’s Privacy Watchdog Launches GDPR Probe of Facebook

Data Breach Today

Data Protection Commission Sees Likely Violations in Wake of Latest Mega-Breach Ireland's privacy regulator has launched an investigation into Facebook after personal information for 533 million of the social network's users appeared for sale online.

GDPR 180

Telehealth and Coronavirus: Privacy, Security Concerns

Data Breach Today

But these providers need to carefully consider privacy and security issues as they work to quickly offer these services As Services Expand, What Factors Should Organizations Consider?

Virginia Data Privacy Law

Schneier on Security

Virginia is about to get a data privacy law , modeled on California’s law. Uncategorized courts data protection laws privacy

Avoiding a 'Checklist' Approach to Privacy

Data Breach Today

Privacy Fines: Total GDPR Sanctions Reach $331 Million

Data Breach Today

But Across Europe, Total Fines and Breach Reports Continue to Vary Widely by Country Privacy watchdogs in Europe have imposed fines totaling more than $330 million since the EU's General Data Protection Regulation went into full effect in May 2018, according to law firm DLA Piper.

GDPR 231

What's Google Floc? And How Does It Affect Your Privacy?

WIRED Threat Level

Security Security / PrivacyThere's a battle raging over how advertisers can target us on the web—or whether they should be able to target us at all.

Facebook Promises Privacy Reform. Critics Aren't Convinced

WIRED Threat Level

In an interview with WIRED, Facebook's chief privacy officers argue that the company has turned a corner. Security Security / PrivacyAgain.

Going Beyond HIPAA to Protect Health Data Privacy

Data Breach Today

A proposed privacy framework from the eHealth Initiative & Foundation and the Center for Democracy and Technology aims to set standards for the collection, disclosure and use of health data that falls outside the protection of HIPAA, says attorney Andrew Crawford of CDT

'Privacy by Design' Implementation Tips

Data Breach Today

Implementing the concept of "privacy design" requires a series of critical steps, says Heikki Tolvanen, chief legal engineer at PrivacyAnt, a Finland-based privacy consulting firm, who offers insights on mistakes to avoid

Telehealth After COVID-19: Privacy, Security Considerations

Data Breach Today

Congress, Others Examine Long-Term Telemedicine Issues If the lifting of telehealth restrictions during the COVID-19 pandemic becomes permanent through new legislation or changes in government policies, what would be the potential impact on patient data privacy and security

Google/Android announces privacy requirements

Data Protection Report

Google announced that it will follow industry standards with respect to privacy obligations. NT Analyzer Blog Series data privacy data protection data security NT Analyzer blog series Privacy

Changes in WhatsApp’s Privacy Policy

Schneier on Security

If you’re a WhatsApp user, pay attention to the changes in the privacy policy that you’re being forced to agree with. Now, an updated privacy policy is changing that. Uncategorized data collection Facebook privacy WhatsApp

New Privacy Features in iOS 14

Schneier on Security

Uncategorized Apple iOS privacy security engineeringA good rundown.

Telehealth App Breach Spotlights Privacy, Security Risks

Data Breach Today

Risk 194

OIG: VA Workers Hid ‘Big Data’ Project Privacy, Security Risks

Data Breach Today

Report on Canceled VA Project Offers Governance Lessons for Others The Department of Veterans Affairs’ watchdog agency alleges that two VA employees “concealed” and “mispresented” the cybersecurity and privacy risks of an ambitious "big data" project that would have analyzed 22 million veterans’ health records dating back two decades.

Google Calendar Privacy Concerns Raised

Data Breach Today

Companies Need to Be Aware of Risks A misconfiguration in a Google Calendar function that allows Google to index calendars raises serious privacy concerns because it could lead to inadvertent, broad public exposure of calendars that contain sensitive information, including corporate details, a researcher reports

Facebook's Privacy Practices Targeted by Canadian Regulator

Data Breach Today

To Force Changes, Regulator Must Prove Facebook Violated Canada's Privacy Law Canada's privacy commissioner is taking Facebook to court to try and force the social network to make specific changes to its privacy practices.

Canada's 2020 Privacy Outlook

Data Breach Today

Former Regulator Robin Gould-Soil on Convergence of Privacy, Security Former regulator Robin Gould-Soil has a unique perspective, with experience in both the public and private sectors. She weighs in on the convergence of privacy legislation and cybersecurity

NIST Privacy Framework – Control

OpenText Information Management

In our first two blogs for the NIST Privacy Framework, we discussed the Identify and Govern functions. There are three … The post NIST Privacy Framework – Control appeared first on OpenText Blogs.

COVID-19: Privacy, Security Concerns as Businesses Reopen

Data Breach Today

As businesses reopen, they need to carefully consider the privacy, security and legal implications of collecting COVID-19 related information from customers, employees and other individuals, says privacy attorney Iliana Peters of the law firm Polsinelli

Happy Data Privacy Day #DataPrivacyDay2020

IG Guru

Check out the resources below to learn more about data privacy. The post Happy Data Privacy Day #DataPrivacyDay2020 appeared first on IG GURU. Business Compliance IG News Information Governance information privacy Privacy Record Retention Risk News Data Privacy Data Privacy Day

Zoom Still Addressing Security, Privacy Concerns

Data Breach Today

Governments, Organizations Rethink Use of Teleconference Platform As governments and organizations around the globe rethink their use of the Zoom teleconference platform as a result of ongoing privacy and security concerns, the company is making more system changes and has formed a CISO advisory board.

US: Florida Privacy Bill Advances

DLA Piper Privacy Matters

Florida appears to be on track to be one of the next states to pass a general privacy law, joining California and Virginia. The legislation applies to “businesses,” which is defined in ways similar to the California Consumer Privacy Act (CCPA), including revenue and data thresholds.

NIST Privacy Framework: The Implementation Challenges

Data Breach Today

Although NIST's new privacy framework is agnostic toward any particular privacy law, "it gives organizations building blocks to help them meet any obligations under any particular law or jurisdiction" says Naomi Lefkovitz, a NIST senior privacy adviser

New Mexico Sues Google Over Children's Privacy

Data Breach Today

State Alleges Data About Young Students Is Illegally Collected New Mexico is suing Google, alleging the company violates a federal child privacy law by collecting the personal data of students younger than age 13 without their parents' consent.

Court Dismisses Privacy Case Against Google, Medical Center

Data Breach Today

But Judge Opens the Door to Filing an Amended Complaint A federal judge has dismissed a lawsuit filed last year against Google and the University of Chicago Medicine involving complex privacy and other issues related to the use of patients' de-identified electronic health record data.

Privacy Framework Proposed to Address HIPAA Gaps

Data Breach Today

The eHealth Initiative and the Center for Democracy and Technology are seeking feedback on their draft privacy framework that addresses gaps in legal protections for consumer health data falling outside of HIPAA's regulatory umbrella, says eHI CEO Jennifer Covich Bordenick

Addressing Privacy Compliance Challenges

Data Breach Today

Fatima Khan of Okta on Going Beyond GDPR Compliance Compliance with the European Union's General Data Protection Regulation is no guarantee of compliance with other privacy regulations, says Fatima Khan of Okta, who discusses the challenges