ACI_Q2_Ads_successful-728x90
ACI_Q2_Ads_disaster-728x90
BNA_15349_Privacy_Law_Asia_wp_ad_680x75_Ldbd

DPC15_300x250_ads_FINAL
PrivacyTraining_ad300x250.Promo1-01

(Aug 3, 2015) The financial impact breaches have on individual victims is becoming increasingly less substantial, thanks to strides in data protection and the nature of what thieves are looking for, The New York Times reports. “Only a tiny number of people exposed by leaks end up paying any costs, and for the rare victims who do, the average cost has actually been falling steadily,” the report continues. “For the bad guys, your five-year growth plan is not data breaches and stealing credit cards,” said The Nilson Report’s David Robertson. “It involves stealing all the info you can and opening legitimate accounts in people’s names.” And while “the bad guys are getting good … the good guys are getting even better,” he added. (Registration may be required to access this story.) Read More

Daily Dashboard

Web Conference: Creating an Effective In-House Training Program

(Aug 3, 2015) For companies that take compliance and data privacy seriously, creating effective in-house privacy training programs is paramount, but it’s not always the easiest or most fun endeavor. The IAPP is offering a web conference on August 20 that will provide insights and practical tips on how best to create and implement a privacy training program that won’t fall prey to employee boredom. Three panelists from Southern California Edison, including Privacy Compliance Program Leader Chris Pahl, CIPP/C, CIPP/E, CIPP/G, CIPP/US, CIPM, CIPT, as well as Danielle Cartron and Zach Linton, will unpack helpful tips on how to make an effective training program, including how to design your own in-house, web-based training. Read More

Daily Dashboard

Appeals Court: Netflix Didn’t Violate VPPA

(Aug 3, 2015) The Ninth Circuit Court of Appeals has upheld an earlier decision by U.S. District Court Judge Edward Davila to dismiss a potential class-action lawsuit that alleged Netflix violated the Video Privacy Protection Act (VPPA), MediaPost reports. The appeals court decided Netflix did not violate the VPPA “by displaying information about subscribers' movie-watching history to their friends, families and guests,” the report states. Meanwhile, ZDNet reports on the Seventh Circuit Court of Appeals’ rece... Read More

Daily Dashboard

Roundup: Belgium, India, Pakistan, U.S. and More

(Aug 3, 2015) In this week’s Privacy Tracker roundup, read about India’s Human DNA Profiling Bill, Pakistan shutting down communications via Blackberry’s secure server and the UK investigating the expense and impact of the Freedom of Information Act. Belgium’s telecommunications regulator has begun a public consultation on the latest proposed data retention legislation, and after a meeting with U.S. Secretary of Commerce Penny Pritzker, EU Justice Commissioner Vera Jourová said she is aiming to end Safe Harbor discussions in the coming weeks. In the U.S., the Email Privacy Act is in a position to bypass debate and move straight to approval, but CISA may have to wait until after the recess for a vote. (IAPP member login required.) Read More

Daily Dashboard

MIE Breach Affects Millions; Bitdefender Customer Records Stolen

(Aug 3, 2015) A data breach at Medical Informatics Engineering (MIE) that was originally reported to law enforcement agencies in May has compromised information on approximately 3.9 million individuals, or more than a quarter of the population of Indiana, Softpedia reports. Indiana Attorney General Greg Zoeller said the MIE breach “may have impacted an estimated 1.5 million Hoosiers (Indiana residents) and 3.9 million people nationwide.” Compromised data includes Social Security numbers, lab results, medical ... Read More

Daily Dashboard

How To Handle HIPAA Post-Data Breach

(Aug 3, 2015) There are numerous HIPAA considerations for healthcare organizations to consider in the wake of a data breach, HealthITSecurity reports. For example, the report looks at the question of whether a hospital is obligated to provide information when facing subpoena or what qualifies as personal health information (PHI). “The HIPAA Privacy Rule states that there are several permitted uses and disclosures of PHI. This does not mean that covered entities are required to disclose PHI without an individu... Read More

Daily Dashboard

Revenge Porn Bill To Be Introduced in September  

(Aug 3, 2015) Rep. Jackie Speier (D-CA) will introduce a bill to battle so-called revenge porn on September 9, according to U.S. News and World Report. The legislation requires proof that the offender is posting the images without the consent of those pictured, but the potential for gray areas sparked critics’ questions about “legitimate speech online and accidental violators,” pushing back the bill’s Congressional debut. Since the bill was drafted, a total of 24 states have adopted their own revenge porn law... Read More

Daily Dashboard

Government’s Privacy Push Garners Results

(Aug 3, 2015) After the conclusion of the White House Office of Management and Budget-initiated 30-day “cybersecurity sprint” across federal government agencies, there was a 30-percent increase in more sophisticated password use, Reuters reports. While the jump from 42 percent to 72 percent was positive, White House Chief Information Officer Tony Scott said he believes “we still have more work to do," adding that a team of experts would review the government’s “policies, procedures and practices” relating to cybersecurity. Scott said an assessment will be issued in the months ahead, the report states.  Read More

Daily Dashboard

CISA Faces Time Shortage; Trade Groups Outline Priorities

(Aug 3, 2015) A major overhaul of the nation’s cybersecurity laws isn’t looking likely as the Senate inches closer to clocking out for the summer at the end of the week, National Journal reports, noting privacy advocates have launched a “coordinated push” to highlight what they call a lack of privacy protections in the Cyber Information Sharing Act. A spokesman for Majority Leader Mitch McConnell (R-KY) said the Senate will take up the issue Wednesday and finish by Thursday evening. Meanwhile, a group of trade associations last week sent a letter to every U.S. senator on their priorities related to data security legislation. Read More

Daily Dashboard

Could Smartcars Be as Searchable as Smartphones?

(Aug 3, 2015) Current court decisions may decide the privacy of self-driving cars in the future, Slate reports. A Massachusetts court is currently considering Commonwealth v. Dorelas, a case looking at how specific a warrant must be before police can search a smartphone, the report states. That’s because warrants for searching smartphones work in two ways. In some cases, a smartphone is considered a “container” and a warrant need only describe the phone and probable cause. In others, a smartphone is considere... Read More

Daily Dashboard