Prof. Peter Swire, Elizabeth and Thomas Holder Chair at the Georgia Tech Scheller College of Business and Senior Counsel at Alston & Bird, recently published an opinion piece, first in French in Le Monde, and then in English in the European Law Blog, with the title “the US, China, and Case 311/18 on Standard Contractual […]
Board Governance & Cyber Risk Management
Oregon Extends Data Breach Notification Obligations to Third Parties
On May 24, 2019, Oregon Governor Kate Brown signed into law Senate Bill 684 (SB 684). SB 684 amends the Oregon Consumer Identity Theft Protection Act (“OCITPA”) by extending data breach notification obligations to vendors and by broadening the definition of “personal information” to include information used to access an online account. SB684 extends breach […]
Illinois and Texas Amend Data Breach Notification Laws
On May 27, Illinois and Texas voted to amend their respective data breach notification laws. Illinois amendment SB 1624 requires notice to the state’s Attorney General for data breaches involving a certain threshold of individuals. Texas amendment HB 4390 also requires notice to the state’s Attorney General for data breaches above a threshold, changes the […]
Nevada Law Gives Consumers Right to Opt Out of Sale of Personal Information
On May 29, 2019, Nevada Governor Steve Sisolak signed into law Senate Bill 220, an act that amends Nevada’s existing online privacy notice law. This amendment will make Nevada the first state to join California in granting consumers the right to opt out of the sale of their personal information. While providing similar rights to […]
Legislative Roundup: New Laws Passed in Arkansas, Oklahoma, and Maryland That Revise Cyber Security Measures
Arkansas In April, Arkansas’ Governor signed H.B. 1943 as Act 1030 expanding the scope of personal information, as used in the Personal Information Protection Act, to include “biometric data.” The Bill defines “biometric data” as “data generated by automatic measurements of an individual’s biological characteristics, including without limitation: (a) Fingerprints, (b) Faceprint, (c) A […]