Arkansas In April, Arkansas’ Governor signed H.B. 1943 as Act 1030 expanding the scope of personal information, as used in the Personal Information Protection Act, to include “biometric data.” The Bill defines “biometric data” as “data generated by automatic measurements of an individual's biological characteristics, including without limitation: (a) Fingerprints, (b) Faceprint, (c) A retinal or iris scan, (d) Hand geometry, (e) Voiceprint analysis, (f) Deoxyribonucleic acid (DNA), … [Read more] about Legislative Roundup: New Laws Passed in Arkansas, Oklahoma, and Maryland That Revise Cyber Security Measures
The Georgia Supreme Court recently issued a decision holding that there is no duty to safeguard personal information from a data breach under Georgia law. Georgia Department of Labor v. McConnell involved the accidental disclosure of a spreadsheet … [Read more] about Georgia Supreme Court Clarifies There Is No Duty to Safeguard Personal Information from a Data Breach
On May 7, 2019, Washington amended its data breach notification law (HB 1071). The amendment shortens the period in which notice must be provided, expands the definition of personal information, adds further content requirements for notification … [Read more] about Washington State Amends Data Breach Notification Law
On May 9, 2019, a federal grand jury unsealed an indictment of two members of a Chinese hacking group charged with a series of computer intrusions, including their involvement in the 2015 data breach at Anthem Inc., which affected the data of over 78 … [Read more] about Federal Prosecutors Announce Indictment of Chinese Hackers Involved in 2015 Anthem Data Breach
We may now have more clarity on what the California Consumer Privacy Act (the “CCPA”) will look like when it goes into effect on January 1, 2020. The California Assembly’s Committee on Privacy and Consumer Protection approved a series of bills last … [Read more] about Which CCPA Amendments Made the Cut?