Privacy Law Blog
This blawg is "a trusted source for summary and analysis of breaking legal developments in the evolving field of privacy and data security law."
Author: This blawg is written the following lawyers at Proskauer Rose: Partners Christopher Wolf, Scott P. Cooper, and Tanya L. Forsheit as well as associates Timothy P. Tobin, Navid Soleymani, Jeremy Mittman, Clifford S. Davidson, Brendon Tavelli and Cecile Martin.
Blawg Related Categories: International Law • Internet Law • Associate • Partner • Business Law
Recent Posts from Privacy Law Blog
-
FTC Tells Sears That Consumer Disclosures Must be More Conspicuous
Over the course of the last decade, many companies have become accustomed to notifying consumers of their data collection practices in their online privacy policy. However, in a recent proposed settlement, the FTC indicated that,…
-
Court Uses Computer Privacy Law to Crack the Whip on Use of Work Computer to Solicit Dominatrix-Prostitute
The Ohio Court of Appeals, in State v. Wolf, No. 08-16, slip op. (Ohio Ct. App. 5d April 28, 2009), recently upheld application of Ohio’s computer crime law to an employee who used his work…
-
Doesn't Alice Live Here Anymore? FACTA and the Address Discrepancy Rule
Section 315 of FACTA requires institutions that utilize consumer reports (“users”) to develop and follow certain procedures when notified of an address discrepancy by a national CRA (Equifax, Experian and TransUnion). Under FACTA, national CRAs are…
-
What Happens in Vegas Really Does Stay in Vegas (Unless It Is Encrypted)
A new Nevada law, S.B. 227, will require entities doing business in that state to beef up their protections of personal information. Previously, we wrote about Nevada’s personal information encryption law. See our blog post…
-
Red Flags and Address Discrepancies FAQs
On Thursday, the staff of the Board of Governors of the Federal Reserve System, Federal Deposit Insurance Corporation, National Credit Union Administration, Office of the Comptroller of the Currency, Office of Thrift Supervision and the…
-
A New Solution for Global Outsourcing? The EU Commission Considers New SCCs For Cross-Border Data Transfers
The European Commission is considering modifying the standard contractual clauses (hereafter “SCCs”) established on December 27, 2001 and used by data controllers to transfer personal data to data processors located outside the EU. The new SCCs…
-
Decrypting HHS Guidance on Breach Notification and Security under the HITECH Act: NIST, FIPS, and More
Two months after Congress mandated notification for the breach of unsecured protected health information (PHI), the Secretary of Health and Human Services (HHS) defined what it means to be “unsecured.” As required by Section 13402…
-
What elementary school did you go to?
I don’t know, but I could probably find out. There is an increasing amount of discussion within the information security industry about whether the use of “security questions” to unlock forgotten passwords is a sound…
-
New Report Finds Much Room For Improvement in EU Data Protection Law
On May 12, 2009, the UK Information Commissioner's Office (ICO) released a much anticipated report authored by the RAND Corporation assessing the strengths and weaknesses of the 1995 EU Data Protection Directive (95/46/EC) (the "Directive),…
-
Seven Days Is All She Wrote . . .
As our readers know, many of the 44 state data breach notification laws allow for (and may even require) a brief delay in notifying affected individuals of the breach if that notification would interfere with or…