This morning the FCC voted along party lines to adopt rules subjecting broadband internet service providers (ISPs) to new consumer privacy regulations. According to the FCC’s press release, the rules give “customers the tools they need to make informed decisions … Continue Reading
The European Commission very recently presented two draft implementing decisions amending the existing adequacy decision on standard contractual clauses.
These drafts were presented to the Article 31 Committee, which is composed of Members State representatives who assist the European Commission … Continue Reading
Look no further than the last three weeks for proof that HIPAA enforcement is on the rise.
Failure to maintain the security of information systems containing patient information has cost healthcare providers over $10 million in recent settlements of alleged … Continue Reading
Despite the issuance of the Omnibus Final Rule in 2013, HIPAA enforcement activity has remained relatively light—until recently. Indeed, compared to just a few settlements a year for the first decade that HIPAA was in force, from September 2015 through … Continue Reading
This April 13, the Article 29 Working Party (WP 29, which includes the EU national data protection authorities) expressed its concerns regarding the Privacy Shield during a press conference. The WP 29 will publish its detailed written position at … Continue Reading
According to a tweet, Giovanni Buttarelli − the European Data Protection Supervisor (EDPS) − declared during the 2016 edition of the conference Computers, Privacy and Data held in Brussels: “Don’t do it again!” This declaration was addressed to … Continue Reading
As the primaries leading to the 2016 presidential election get underway, the increasing use of big data in political campaigns has largely stayed under the radar. John Kasich’s spending in New Hampshire highlights that a component of his success may … Continue Reading
On Tuesday, February 9, 2016, President Obama issued an Executive Order establishing the “Federal Privacy Council,” an interagency council of senior officials from each of 24 federal departments and agencies. The Council is to be the “principal interagency forum to … Continue Reading
After January 31, 2016, the deadline imposed by WP29 expired. Pessimism was expressed regarding the ability of the EU and U.S. to reach a deal that addresses the requirements set out by the Court of Justice of the European Union … Continue Reading
In 2015, a number of high-profile media and political events and several legal cases raised questions about personal data protection in the European Union. 2016 looks to be a pivotal year for reforms in personal data protection, including issues related … Continue Reading
The European Commission made it clear on September 16, 2015, that the issue of whether to introduce national data retention laws is a national decision. The European Commission has no intention of going back on this statement or reopening … Continue Reading
On December 3, 2014, Sarah Raskin, Deputy Secretary of the U.S. Department of Treasury (Treasury), gave a speech before the Texas Banker’s Association Executive Leadership Cybersecurity Conference. Deputy Secretary Raskin’s remarks provide effective guidance for community bank chief executive officers, … Continue Reading
The Court of Justice of the EU Declares Invalid the Data Retention Directive 2006/24
No sooner had it been adopted than the Data Retention Directive was receiving criticism from various Member States and other stakeholders. They can now breathe easier; … Continue Reading