Ongoing efforts to finalize a framework for the development of voluntary cybersecurity standards for critical infrastructure industries continued in Dallas this week. NIST led a workshop with government and private sector officials to work through … [Read more] about NIST Meeting to Finalize Cybersecurity Framework
Fifth Circuit Revives Banks’ Heartland Data Breach Claims
In Lone Star Nat’l Bank, N.A., et al. v. Heartland Payment Sys., Inc., No. 12-20648 (5th Cir. Sept. 3, 2013) (hereinafter “Heartland”), arising from the now-infamous 2008 data breach, the Fifth Circuit recently reversed a motion to … [Read more] about Fifth Circuit Revives Banks’ Heartland Data Breach Claims
Illinois District Court Dismisses Data Breach Claims for Lack of Standing
In In re Barnes & Noble Pin Pad Litigation, No. 1:12-cv-08617 (N.D. Ill. Sept. 3, 2013), the United States District Court for the Northern District of Illinois dismissed a putative class action against defendant retailer Barnes & Noble … [Read more] about Illinois District Court Dismisses Data Breach Claims for Lack of Standing
New European Data Breach Rules for Telcos and ISPs
On August 25, 2013, a new European Regulation came into effect that changed and expanded upon the breach notification procedures set forth in the E-Privacy Directive (2002/58/EC). The Regulation outlines two independent notification obligations: (1) … [Read more] about New European Data Breach Rules for Telcos and ISPs
California Expands the Confidentiality of Medical Information Act to Personal Health Records and Mobile Applications
With the increasing use of mobile applications and the storage of medical information online, there is a growing concern for preventing the unauthorized use, disclosure and access to such highly confidential information. According to the California … [Read more] about California Expands the Confidentiality of Medical Information Act to Personal Health Records and Mobile Applications