North Dakota recently amended its data breach notification law to clarify that the obligation to notify individuals of a breach applies to any entity that “owns or licenses” personal information of the residents of North Dakota. Previously, the obligation to report a breach only applied to those “that conduct[ ] business in the state.” In […]
Privacy & Cyber Regulatory Enforcement
Nevada Expands Definition of Personal Information In Data Security Statute
On May 13, Nevada Governor Brian Sandoval signed Assembly Bill 179, which expands the definition of personal information for purposes of Nevada’s data breach notification and data security law. Effective July 1, 2015, personal information will include an individual’s medical identification number or health insurance identification number and a user name, unique identifier or email […]
Visa Updates Global Compromised Account Recovery Program
On May 14, 2015, Visa announced several updates to its Global Compromised Account Recovery Program (“GCAR”), which helps card issuers recover costs and fraud losses after a data compromise. These modifications appear to be designed to address changes in the payment environment and align GCAR recoveries more closely with the current estimated costs and risks […]
Peter Swire on the History of Bulk Metadata Collection
Today, Peter Swire, Georgia Institute of Technology Scheller College of Business professor and senior counsel in Alston & Bird’s Privacy & Data Security Group, offers a historical primer on bulk data collection in this piece for the IAPP. Swire’s article follows two significant events in the past week potentially affecting the U.S. National Security Administration’s […]
Alston & Bird Privacy Program: Thinking Outside the Cookie Jar
On April 29, Alston & Bird’s Los Angeles office hosted a Privacy Program on Mobile Behavioral Tracking. Dominique Shelton of Alston & Bird moderated a panel that consisted of Alston & Bird attorneys Peter Swire and David Keating and industry professionals from the Office of the Attorney General, California Department of Justice, Ghostery Inc. and […]