Privacy: Several States Consider New Laws

Data Breach Today

After California Takes Bold Action, Other States Ponder Privacy Protection Measures Several U.S. states are considering new legislation to shore up consumer data privacy laws in the wake of California passing strict privacy requirements last year.

Congress Scrutinizes Facebook Health Data Privacy Complaint

Data Breach Today

Committee Demands Answers About Consumers' Complaint Filed With FTC A Congressional committee is demanding Facebook provide answers concerning a complaint filed with the FTC alleging misleading privacy practices involving personal health information.

Report: Facebook Faces Multibillion Dollar US Privacy Fine

Data Breach Today

FTC and Social Network Are Negotiating Record Penalty, Washington Post Reports The Federal Trade Commission is reportedly negotiating a settlement with Facebook that includes a multibillion dollar fine for its privacy failures.

Does the Colorado Data Privacy Law Affect You?


When a strengthened Colorado data privacy law took effect on September 1, 2018, the state joined others (including California and Massachusetts) in becoming more proactive on data protection by passing laws aimed at safeguarding consumer data. The Colorado Data Privacy Law in a Nutshell.

Ireland's Privacy Watchdog Probes Facebook Data Breaches

Data Breach Today

Million Users' Private Photos Exposed, Triggering GDPR Investigation Ireland's privacy watchdog is probing data breaches at Facebook that exposed users' private data.

GDPR: EU Sees More Data Breach Reports, Privacy Complaints

Data Breach Today

Ireland, France, Germany and UK Report Increases Since Privacy Law Took Effect The number of data breach reports filed since the EU General Data Protection Regulation went into effect has hit nearly 3,500 in Ireland, over 4,600 in Germany, 6,000 in France and 8,000 in the U.K.

UK Parliament Seizes Internal Facebook Privacy Documents

Data Breach Today

court documents to reveal internal Facebook discussions about data security and privacy controls, as Parliament probes Facebook and other social media firms, as well as Russian interference and fake news

Privacy Is Paramount in a Digital Workplace


IT contributes technological solutions for data protection, from firewalls to virus protection, while IG professionals contribute their knowledge of the stored data and its location — which is vital for compliance with these new privacy laws.

Privacy for Tigers

Schneier on Security

Privacy matters for tigers, for snow leopards, for elephants and rhinos ­ and even for tortoises and sharks. datacollection naturalsecurity privacyRoss Anderson has some new work : As mobile phone masts went up across the world's jungles, savannas and mountains, so did poaching.

Opioid Crisis Raises Tough Privacy Issues

Data Breach Today

The Privacy Penalty for Voting in America

Data Breach Today

States Shouldn't Serve Up on a Platter Voters' Email Addresses and Phone Numbers Voting in the United States carries a huge privacy cost: states give away or sell voters' personal information to anyone who wants it. In this era of content micro-targeting, rampant misinformation and identity theft schemes, this trade in voters' personal data is both dangerous and irresponsible

The Latest Privacy, Security Legislative Developments

Data Breach Today

Meanwhile, the Center for Democracy & Technology has drafted a model for a broad national privacy bill

Mergers & Acquisitions: Privacy and Security Considerations

Data Breach Today

How do data privacy and security matters affect organizations that are contemplating a merger or acquisition? Attorney Iliana Peters offers insights into cybersecurity, data breach and compliance issues that can potentially doom a deal

Government Shutdown: Impact on Health Data Security, Privacy

Data Breach Today

HIPAA Enforcement Agency Open, But Regulatory Activity Slows Down Some regulatory activity related to health data privacy and security is on hold as a result of the partial government shutdown.

Facebook Breach: Attackers Exploited Privacy Feature

Data Breach Today

Attackers Hacked Three Separate Bugs to Breach 50 Million Accounts Facebook says that whoever hacked 50 million user accounts, putting the privacy of those users' personal data at risk, did so by abusing its "View As" privacy feature. Facebook says the attack successfully targeted three separate bugs in its video-uploading functionality

Facebook Gets Its First Real Privacy Penalty - From Apple

Data Breach Today

Apple's Privacy Warning to Facebook: We Can Break You Apple's conflict with Facebook this week resulted in the most effective and quickest punishment the social network has ever received over a privacy issue. But should a multi-billion dollar tech company like Apple be picking up the slack for the digital privacy enforcement failures of governments

Facebook Slammed With Maximum UK Privacy Fine

Data Breach Today

Failings Leading to Cambridge Analytica Scandal Earn Sharp Rebuke From Regulator Facebook has been slammed with the maximum possible fine under U.K.



“Alphabet, Apple Prodded On Privacy,” The Wall Street Journal , July 10, 2018 A3. Security Privacy Information Ownership Governance Policy Definition Duty of Care Controls Third parties Internal controls Access Duty Corporation TechnologyCongress asks how Google and Apple use “your” information, such as what you say and write and where you are. Which is more interesting, the questions or the answers?

GDPR: The Global Impact on Privacy

Data Breach Today

Richard Henderson of Infosec Global Sizes Up the EU Law's Influence So Far Richard Henderson of Infosec Global discusses the impact of the European Union's General Data Protection Regulation and how the law is influencing privacy frameworks globally

GDPR 162

Privacy and Security of Data at Universities

Schneier on Security

Many sets of data, both research and grey, fall outside privacy regulations such as HIPAA, FERPA, and PII. The privacy frontier facing research universities spans open access practices, uses and misuses of data, public records requests, cyber risk, and curating data for privacy protection.

The 2019 Health Data Privacy Regulatory Outlook

Data Breach Today

Privacy attorney David Holtzman pinpoints three key issues to watch Attorney David Holtzman Highlights Three Issues to Track What are the top regulatory trends to look for in the healthcare sector in 2019?

Trends 117

NIST Announces Privacy Framework Effort

Privacy and Cybersecurity Law

Department of Commerce’s National Institute of Standards and Technology (NIST) announced the start of a collaborative project to develop a voluntary privacy framework to help organizations manage privacy related risk. On September 4, 2018, the U.S.

Manage Your Privacy Journey: GDPR, CCPA and Beyond


Some might think the privacy adventure is over as we are now six months past the compliance deadline of May 28, 2018. The most notable of these is the California Consumer Privacy Act (CCPA) with its deadline of January 2020. I love adventures!


Update: NIST Preparing Privacy Framework

Data Breach Today

Building on the success of the NIST Cybersecurity Framework, the National Institute of Standards and Technology is in the early stages of developing a privacy framework. The effort will kick off with a workshop Tuesday in Austin, Texas, explains Naomi Lefkovitz, who is leading the project

What's Ahead for Health Data Privacy, Security in 2019?

Data Breach Today

Consultant Rebecca Herold Offers Predictions for the Coming Year This was an eventful year for healthcare cybersecurity and privacy incidents and developments. Here are eight predictions from privacy and security expert Rebecca Herold But what's ahead for 2019?

How DNA Databases Violate Everyone's Privacy

Schneier on Security

academicpapers databases dna privacyIf you're an American of European descent, there's a 60% you can be uniquely identified by public information in DNA databases. This is not information that you have made public; this is information your relatives have made public.

Equifax Hit With Maximum UK Privacy Fine After Mega-Breach

Data Breach Today

Multiple Failures' Cited as Watchdog Levies Maximum Possible Pre-GDPR Fine Credit bureau Equifax has been hit with the maximum possible fine under U.K.

GAO Recommends Stiffer Penalties for Privacy Violations

Adam Levin

Federal Government should pass legislation protecting citizens’ privacy online, according to a new report by the Government Accountability Office. These recommendations and findings will be helpful as we look to develop privacy legislation in the coming months,” said Pallone in a statement.

Study 52

Why Privacy Is Hard Work

Dark Reading

For Data Privacy Day, let's commit to a culture of privacy by design, nurtured by a knowledgeable team that can execute an effective operational compliance program

California's New Privacy Law: It's Almost GDPR in the US

Data Breach Today

But Tech Giants are Taking Aim at the Law, Which Can Be Amended Until 2020 California's legislature has quickly introduced and passed new privacy legislation, making the state's laws the strongest in the U.S.

GDPR 206

The Privacy Rules Changed in 2018 – What Does that Mean Going Forward?


Coming at a time when big data and analytics is making it possible for organizations to understand their customers with unprecedented degrees of precision, the privacy issue creates new complexities for those who manage and govern information. How is the privacy landscape likely to evolve in the coming year? Modern Governance Podcast "GDPR" data privacy privacy law privacy regulations

Happy Data Privacy Day: City Planning Now Mines Everyone’s Data All the Time

Adam Levin

Sidewalk Labs, a subsidiary of Google’s parent company Alphabet, is the go-to story for Data Privacy Day with its new “user-friendly” tool called Replica, which allows city planners see “how, when, and where people travel in urban areas.”.

Mining 103

Helen Nissenbaum on Data Privacy and Consent

Schneier on Security

This is a fantastic Q&A with NYU Law Professor Helen Nissenbaum on data privacy and why it's wrong to focus on consent. datacollection dataprotection interviews privacy

Puzzling Health Dept. Privacy Incident Exposes HIV Data

Data Breach Today

Thousands of Individuals' Data Was Allegedly Accessible to All Agency Workers An incident involving an unsecured database containing information about thousands of HIV/AIDS patients in Tennessee is shining a spotlight on privacy risks involving sensitive health data

Strengthening Privacy Rights with Privacy Enhancing Technologies


Moreover, there seems to be momentum developing for a more comprehensive US Federal Privacy initiative consistent with GDPR. The current US data privacy regime is somewhat fragmented and sectoral in nature and is perceived to be an impediment to competing in the digital economy.

California Passes New Privacy Law

Schneier on Security

The California legislature unanimously passed the strongest data privacy law in the nation. A ballot initiative was already going to be voted on in November, one with even stronger data privacy protections. datacollection dataprotection laws privacy

Apple CEO Demands Federal Data Privacy Legislation


Apple CEO Tim Cook has called on the government to double down on data privacy regulation in 2019. Government Privacy apple California Consumer Privacy Act data breach Data Privacy privacy law

New Privacy Issues for Amazon

Data Breach Today

An analysis of the privacy issues Amazon will face as it dives deeper into the healthcare business leads the latest edition of the ISMG Security Report. Also featured: A preview of ISMG's Security Summit in New York Aug. 14-15

OCR Considering HIPAA Privacy Rule, Enforcement Changes

Data Breach Today

But Agency Will Seek Public Input First Federal regulators are considering potential changes to HIPAA privacy rule and enforcement regulations, but aim to first engage the healthcare sector and public for input, says the nation's top HIPAA enforcer.

Why California's New Privacy Law is a 'Whole New Ballgame'

Data Breach Today

While California already had some of the strictest and most varied privacy laws in the country, the new California Consumer Privacy Act of 2018 "is a whole new ballgame," says privacy attorney Kirk Nahra, who explains why