BNA_15349_Privacy_Law_Asia_wp_ad_680x75_Ldbd
ACI_Q2_Ads_disaster-728x90
ACI_Q2_Ads_successful-728x90
Certification_Ad_300x250final-01
PSR15_300x250_ad-UPDATED-6-15-FINAL
DPC15_300x250_ads_FINAL

(Jul 28, 2015) De-identification plays a major role in protecting privacy while allowing for data to flow and constitutes a big part of a privacy pro’s toolbox. There have been robust debates about its feasibility and whether it’s even possible to truly de-identify data, but, earlier this month, the Future of Privacy Forum (FPF) and EY held a workshop to work through these issues in an attempt “to drill down into some challenges that privacy pros face in (their) day-to-day practice.” This Privacy Tech post from FPF Policy Counsel Joseph Jerome, CIPP/US, recaps the event and includes insight from industry, practitioners, academics and regulators about striving toward a workable and practical de-identification solution. Read More

Daily Dashboard

How Will the OPM Breaches Impact Legislation?

(Jul 28, 2015) “Will the Office of Personnel Management (OPM) breaches, which exposed the personal information of more than 22 million individuals, make it more or less likely that Congress will enact cyber-threat information sharing legislation?” That’s the question examined in a Gov Info Security report that suggests the answer could be coming next month when the Senate may consider the Cybersecurity Information Sharing Act (CISA), approved earlier this year by the Senate Intelligence Committee, which would “promote the voluntary sharing of cyber-threat information between business and government and among businesses.” The report also looks at the recently introduced FISMA Reform Act. Senate Majority Leader Mitch McConnell (R-KY) said, "These cybersecurity issues are enormously significant." Read More

Daily Dashboard

AEPD Names New Director

(Jul 28, 2015) The Council of Ministers on Friday announced that Mar España Martí has been named the new director of the Spanish Data Protection Agency (the AEPD). She replaces José Luis Rodríguez Álvarez, who served in the role for four years. The new director, according to a press release in Spanish, is a lawyer and civil servant with extensive experience working on the protection of human rights. Her work with the presidency has included a focus on electronic administration and information security, promoting quality of data and transparency efforts in the Spanish government. She will serve a term of four years as the head of the AEPD. Rodríguez reports that he will return to his work at Universidad Complutense de Madrid and will remain active with data protection issues. Read More

Daily Dashboard

CISA Critics Speak Out

(Jul 28, 2015) Sen. Ron Wyden (D-OR) argues that a classified 2003 National Justice Department memo has grave relevance to the ongoing debate on the Cybersecurity Information Sharing Act (CISA), which could potentially be voted on before the August recess, National Journal reports. "I remain very concerned that a secret Justice Department opinion that is of clear relevance to this debate continues to be withheld from the public," Wyden wrote. The senator isn’t the only one concerned about CISA, with groups lik... Read More

Daily Dashboard

NIST Releases Draft Mobile Device Security Guide

(Jul 28, 2015) The National Institute of Standards and Technology (NIST) published a draft guide for those in the healthcare field to better protect the security of their mobile devices, CSO Online reports. "Mobile devices are being used by many providers for healthcare delivery before they have implemented safeguards for privacy and security," NIST said. The guide covers topics ranging from how to best administer privacy throughout an organization to what risks are the most significant. It also stresses how “implementing security must be balanced with making sure healthcare workers can easily use the technology to perform their duties,” the report states. NIST is accepting feedback on the draft guide until September 25. Read More

Daily Dashboard

New Service Aims To Ease BYOD Use

(Jul 28, 2015) Good Technology aims to ease bring-your-own-device (BYOD) reimbursement procedures with its Enterprise Split Billing program, FierceMobileIT reports. The Good Enterprise Suite with Data Service portion of the application permits employees to safely utilize office tools from their devices in a way that doesn’t incur personal data charges, the report states. “Companies can streamline their mobility rollouts and mitigate potential legal and HR complications, while employees don't have to worry about personal data usage or incursions on privacy," said Good Technology CEO Christy Wyatt. Read More

Daily Dashboard

Sparapani Outlines "Consumer Data Compact"

(Jul 28, 2015) In a feature for Forbes, ACLU and Facebook veteran Tim Sparapani outlines a “Consumer Data Compact” for the Digital Age. The “fundamental question” of the time, he writes, could be, “Are businesses returning at least as much, if not more, value to their customers from using their data than the businesses obtain from that data? Answering this question can allow both businesses and regulators to evaluate the privacy impact of products and services.” He continues, “When businesses are able to answer this question in the affirmative, they have aligned their interests with those of consumers. The FTC and state regulators should work to align its policy and enforcement work to incentivize companies to make just such an analysis.” Read More

Daily Dashboard

Planned Parenthood Says Hackers Trying To Steal PI

(Jul 28, 2015) Planned Parenthood announced Monday that anti-abortion hackers are attempting to breach the organization to access and potentially expose sensitive data on its employees, The Hill reports. Planned Parenthood Executive Vice President Dawn Laguens said the attempts are a “gross invasion of privacy” that could put its staffers at risk. “Planned Parenthood has notified the Department of Justice and separately the FBI that extremists who oppose Planned Parenthood’s mission and services have launched an attack on our information systems,” she said. An adversary called “E” has taken some credit for the attack. Hackers have also threatened to release more information, including internal emails, though it hasn’t been confirmed if such data has been accessed. Read More

Daily Dashboard

Health System Faces Potential Class-Action; Insurer and State Program Announce Breaches

(Jul 28, 2015) Children’s National Health System is facing a potential class-action lawsuit following the hack of up to 18,000 patients’ personal data last year, Washington Business Journal reports. Patient Fardoes Khan filed the suit after being informed her data was compromised. In New York, insurance payer Healthfirst is notifying members of a data breach affecting approximately 5,300 individuals, and, in Georgia, approximately 3,000 clients of Community Care Services Program are being notified that the sta... Read More

Daily Dashboard

ODNI: NSA’s Technical Personnel To Have Metadata Access for Additional Three Months

(Jul 28, 2015) On June 29, the Foreign Intelligence Surveillance Court approved the government’s application to resume the Section 215 bulk telephony metadata program pursuant to the USA FREEDOM Act’s 180-day transition provision, IC on the Record reports. The Office of the Director of National Intelligence says that while the National Security Agency (NSA) has decided that analytic access to historical metadata collected under Section 215 will cease on November 29, the NSA will allow technical personnel to maintain access to the data for an additional three months in order to “verify the records produced under the new targeted production authorized by the USA FREEDOM Act,” the report states. Read More

Daily Dashboard