Privacy & Security Matters Mintz Levin : Data Compliance & Security, Employee Privacy Lawyer & Attorney

Category Archives: Data Breach Notification

Subscribe to Data Breach Notification RSS Feed

Target Becomes a Target: Proposed California Bill Aims to Make Retailers Liable for Data Breach Incidents

Posted in Data Breach, Data Breach Notification, Privacy Regulation

Written by Jake Romero, CIPP/US Following a string of high-profile data breaches and new data suggesting that approximately 21.3 million customer accounts have been exposed by data breach incidents over the past two years, the California legislature has introduced legislation aimed at making retailers responsible for certain costs in connection with data breach incidents.  If… Continue Reading

Privacy Monday – March 31, 2014 OPENING DAY!

Posted in Cybersecurity, Data Breach, Data Breach Notification, Employee Privacy, Uncategorized

Last Monday in March (Opening Day for you baseball fans) - some privacy/security bits and bytes to close out the month. Microsoft:  “We won’t access private e-mail accounts …  Promise.” Microsoft has committed to no longer accessing the private e-mail accounts of its users after criticism that the company looked at the e-mail of a former employee… Continue Reading

Risky Business: Target Discloses Data Breach and New Risk Factors in 8-K Filing… Kind Of

Posted in Data Breach, Data Breach Notification, Privacy Regulation

Written by Adam Veness After Target Corporation’s (NYSE: TGT) net earnings dropped 46% in its fourth quarter compared to the same period last year, Target finally answered the 441 million dollar question – To 8-K, or not to 8-K?  Target filed its much anticipated Current Report on Form 8-K on February 26th, just over two… Continue Reading

“Sophisticated” Breach Exposes 300,000 Student Records at University of Maryland: 3 Questions You Should Ask

Posted in Cybersecurity, Data Breach, Data Breach Notification

  Officials at the University of Maryland (“University” or “UMD”) announced that UMD was the victim of a significant security breach that took place on Tuesday, February 18 (the “Breach” or “Incident”). The Incident, characterized as a “sophisticated computer security attack” by both the University’s President and the Chief Information Officer, exposed records containing the… Continue Reading

Federal Data Security Breach Notification – is 2014 the Year?

Posted in Data Breach Notification, Privacy Regulation

Written by Amy Malone Data privacy legislation has been introduced regularly, but has yet to pass, could this be the year? The recent breaches at Target and Neiman Marcus (see our posts here, here, here) have drawn national attention and may be the impetus needed to pass the legislation. Currently two bills addressing data breaches… Continue Reading

To 8-K, or not to 8-K? For Target, that is indeed the question.

Posted in Data Breach, Data Breach Notification

Written by Adam Veness and Cynthia Larose As anyone with a pulse and a computer, television or carrier pigeon knows, Target Corporation (NYSE: TGT) suffered a major data breach in December – the extent of which is still being uncovered – and pegs the latest number of customers that have had their personal information stolen anywhere… Continue Reading

On the 12th Day of Privacy, ISO gave to me….

Posted in Data Breach, Data Breach Notification

No, not this ISO  – THIS ISO  Written by Nancy Adams, CPCU The question is not whether a company will be the target of a data breach, but when.    Verizon’s most recent Data Breach Investigation Report states that, in 2012, there were over 47,000 reported security incidents, which resulted in 621 confirmed data disclosures and at… Continue Reading

On the 9th Day of Privacy, the European Union Gave to Me . . .

Posted in Data Breach Notification, Data Compliance & Security, Employee Privacy, European Union, Legislation, Privacy Regulation

. . .  a delayed delivery notice for the biggest package of the holiday season! Written by Susan Foster, Solicitor, England & Wales/Admitted in California, CIPP-E (LONDON) Major changes are on the way in Europe that will have a significant impact on companies anywhere in the world that collect or process personal data of residents… Continue Reading

On the Second Day of Privacy, California Gave to Me……

Posted in Children, Data Breach Notification, Data Compliance & Security, Legislation, Privacy Regulation

Well, the headlines don’t exactly work with the traditional tune, but blame the editor for that….. Written by Jake Romero, CIPP/US 2013 was a busy year for California.  We passed a budget with a surplus, let Kim and Kanye get engaged in one of our stadiums and panicked over possibly losing Sriracha sauce.  At the… Continue Reading

Privacy Monday – November 11, 2013

Posted in Data Breach, Data Breach Notification, Privacy Monday

    First and foremost, this is Veterans’ Day in the US.      Let’s take a moment to thank all of those who served and who still serve, and honor the memory of those who gave their all.     Businesses are offering special deals to veterans today — here’s a good list.   Nice gesture, but let’s remember them… Continue Reading

Privacy Monday – October 21, 2013

Posted in Data Breach Notification, Data Compliance & Security, European Union, Mobile Privacy, Privacy Monday

Privacy tidbits and bytes for this Monday – App Developers – Put this on your calendar! Now that the US government shutdown is over, the Federal Trade Commission (FTC) has announced its participation in a workshop with the Application Developers Alliance and the California Attorney General’s office on best practices for mobile app privacy.  The Mobile Privacy… Continue Reading

Changes to California’s Privacy Laws: What They Mean for Your Business

Posted in Data Breach Notification, Data Compliance & Security, Privacy Regulation

The federal government may be completely unable to pass laws, but that certainly isn’t the case with the State of California, which has just completed a data privacy hat trick by passing three significant laws addressing a broad subset of data privacy issues. The big question: is your online and/or mobile business ready for the… Continue Reading

A Different Kind of Adobe Update: Adobe Announces Data Breach Compromising Information of 2.9 Million Customers

Posted in Data Breach, Data Breach Notification

Written by Jake Romero and Cynthia Larose, CIPP   Adobe Systems Inc.,(ADBE -1.24%) announced earlier today that has been the victim of a cyber attack that has compromised information of 2.9 million of its customers.  In a blog post Thursday morning, Adobe’s Chief Security Officer Brad Arkin referred to such attacks as “one of the unfortunate realities of doing… Continue Reading

Privacy Monday – September 30, 2013 – Here’s the New Mintz Matrix

Posted in Data Breach, Data Breach Notification, Data Compliance & Security, Privacy Monday, Privacy Regulation

As we all ponder the potential for the first U.S. government shut down in 18 years, here are some Monday privacy tidbits to change the subject a bit. September Mintz Matrix As our readers know, we maintain a summary of the US state data breach notification laws, which we refer to as the “Mintz Matrix.”  … Continue Reading

Privacy Monday – September 16, 2013

Posted in Data Breach, Data Breach Notification, HIPAA/HITECH, Privacy Monday

Dis-Like! Senator Markey Urges the FTC to Investigate Facebook’s New Policies Written By Adam Veness As we previously reported here, Facebook has proposed a number of revisions to its Data Use Policy and Statement of Rights and Responsibilities.  In response to these proposed changes, Senator Edward J. Markey (D-MA) sent a letter to the Federal… Continue Reading

Your Cat’s Name Could Soon Be Your “Personal Information”: 4 Steps You Can Take to Prepare Yourself for the Proposed Expansion of California’s Data Breach Notification Requirements

Posted in Data Breach, Data Breach Notification

Written by Jake Romero As we learned this summer, online account usernames can be, well . . . somewhat embarrassing when made public.  Here in California, however, that type of username or an email address, in combination with a password or security question and answer, could soon be considered personal information.  As a result, any… Continue Reading

How Secure Is Your Pop-Up?

Posted in Cloud Computing, Data Breach, Data Breach Notification

Written by Cynthia Larose Our headline today does not refer to those annoying ads that “pop-up” when you visit websites.  We’re talking about the hottest trend in seasonal retailing – the pop-up store.    These are the “here today, gone tomorrow” retail locations that you see during Halloween and Christmas seasons and are now everywhere capturing… Continue Reading

FTC v. Wyndham: Wyndham Calls for Back-Up

Posted in Data Breach Notification, Federal Trade Commission, Privacy Litigation, Privacy Regulation

Written by Adam Veness It appears that Wyndham Hotel & Resorts LLC (“Wyndham”) has received reinforcements in its defense against the Federal Trade Commission’s (the “FTC”) case.  A federal judge has agreed to allow the U.S. Chamber of Commerce and several other organizations to file an amicus curiae brief in support of dismissing the FTC’s… Continue Reading

Privacy Monday – July 29, 2013

Posted in 201 CMR 17.00, Cybersecurity, Data Breach, Data Breach Notification, European Union, Privacy Monday

Privacy goofs, gaffes and tidbits for the last Monday in July —   NSA Surveillance Causes More Grief –Germany Calls for a Stop to Safe Harbor:  Time for Binding Corporate Rules?  According to news sources the federal and state German data protection commissioners late last week sent a letter to German Chancellor Angela Merkel, requesting… Continue Reading

The New Mintz Matrix Is Here!

Posted in Data Breach Notification

Or as Navin R. Johnson might say …….  * Our updated Mintz Levin State Data Breach Notification Matrix (fondly known as the “Mintz Matrix”) is available here.   We update this resource quarterly, or as events dictate.    Legislatures have been quiet on the data breach notification front since the end of 2012.   Since our last update,… Continue Reading

California AG Releases Report on 2012 Data Breaches

Posted in Data Breach Notification, Privacy Regulation

Written by Jake Romero If You Care About the Security of Your Online Data or Just Love Charts, This Report is For You Californians are a diverse bunch (as you’ve probably gathered from those commercials with Arnold Schwarzenegger), but apparently there is something that 2.5 million of us all have in common.  California Attorney General… Continue Reading