Please join Alston & Bird, Dell SecureWorks and AIG for a discussion on how to prepare for and respond to payment card breaches. Recent payment card breaches in the retail industry have highlighted the need to fully prepare for similar types of attacks, both in terms of increasing security controls where appropriate and enhancing incident […]
Privacy & Cyber Regulatory Enforcement
NIST releases final Cybersecurity Framework
The National Institute of Standards and Technology (“NIST”) has released the final version of the much-anticipated Framework for Improving Critical Infrastructure Cybersecurity (the “Framework”). The Framework was developed by NIST at the direction of President Obama’s February 12, 2013, Executive Order 13636, “Improving Critical Infrastructure Cybersecurity” (the “Executive Order”). The Framework largely retains the structure […]
FTC Settles With Children’s Entertainment Company Over Safe Harbor Lapse
February 11, 2014 – The FTC today announced a proposed settlement with Fantage.com Inc., a children’s online entertainment company that allegedly misrepresented its adherence to the U.S.-European Union Safe Harbor Framework (the “Framework”). According to the FTC’s complaint, Fantage made statements in the privacy policy its website that it followed the privacy principles of the Framework, when […]
EU Data Protection Regulation May Be Delayed
January 27, 2014 – EU justice commissioner Viviane Reding said in a speech this week to a meeting of justice and home affairs ministers in Athens that the draft General Data Protection Regulation will not be agreed during the EU Parliament’s current term. As a result, the Regulation is unlikely to be voted on until […]
New CMS and OCR Rule Provides Patients with Access to Laboratory Test Results
Today, the Centers for Medicare & Medicaid Services (CMS), the HHS Office for Civil Rights (OCR) and the Centers for Disease Control and Prevention (CDC) published a final rule in the Federal Register, amending the Clinical Laboratory Improvement Amendments of 1988 (CLIA) regulations and the HIPAA Privacy Rule to provide patients with greater access to their lab […]