On January 12, 2015, during a speech before the Federal Trade Commission (FTC), President Barack Obama announced that he would propose legislation to create a national, uniform data breach notification law. The White House later released the full text of the proposed bill. The President highlighted that a national breach notification law would benefit both […]
Privacy & Cyber Regulatory Enforcement
President Obama Proposes New Privacy Protections for Student Data
On January 12, 2015, President Barack Obama unveiled a series of comprehensive proposals aimed at protecting Americans’ personal and financial information, combating online fraud, and safeguarding digital privacy. As part of his speech at the Federal Trade Commission, President Obama highlighted certain initiatives related to student privacy that he will discuss in greater detail at […]
New Jersey Enacts Health Information Encryption Requirement
New Jersey Governor Chris Christie has signed a new law requiring health insurance companies to protect client health information by encrypting the data. The law applies to any insurance company, health service corporation, hospital service corporation, medical service corporation, or health maintenance organization authorized to issue health benefits plans in New Jersey. These entities must take […]
NIST releases “Assessing Security and Privacy Controls in Federal Information Systems and Organizations: Building Effective Assessment Plans.”
On December 12, 2014, the National Institute for Standards and Technology (“NIST”) announced the release of Special Publication 800-53A, Revision 4, Assessing Security and Privacy Controls in Federal Information Systems and Organizations: Building Effective Assessment Plans (“SP 800-53A”). SP 800-53A is a companion guideline to Special Publication 800-53, Security and Privacy Controls for Federal Information Systems and Organizations […]
23 Privacy Enforcement Authorities Issue a Joint Open Letter to App Marketplaces
On December 9, 2014, a joint open letter (“Letter”) was issued to the operators of seven (7) app marketplaces, urging them to “make the basic commitment to require each app that can access or collect personal information, to provide users with timely access to the app’s privacy policy.” Although the Letter was sent to Apple, […]