Privacy & Security Matters Mintz Levin : Data Compliance & Security, Employee Privacy Lawyer & Attorney

Category Archives: Data Compliance & Security

Subscribe to Data Compliance & Security RSS Feed

Privacy Monday – March 24, 2014

Posted in Cybersecurity, Data Breach, Data Compliance & Security, Privacy Monday

Welcome to March Madness — although if your brackets look anything like mine do this morning, it is not particularly “welcome.”   Let’s just say that there is no danger of my winning Warren Buffet’s $1 billion. Privacy and cybersecurity continue to be hot topics and the breaches roll on.   Here are some privacy and security… Continue Reading

Data: Big, Borderless and Beyond Control? Five Things You Can Do

Posted in Cybersecurity, Data Breach, Data Compliance & Security, Employee Privacy, Security

Written by Amy Malone There’s been a lot of talk about big data over the last few years and the breaches at Target and Neiman Marcus have many companies running in circles trying to figure out how to protect their systems and their data.  So what are some of the big issues in our current… Continue Reading

Complaint from BBB Triggers HarperCollins COPPA-Compliance Measures

Posted in Children, Data Compliance & Security, Online Advertising

Written by Julia Siripurapu The Children’s Advertising Review Unit (CARU) announced (press release) that  it has recommended that HarperCollins Publishers Ltd. (the “Company”) modify its information collection practices on its Ruby Redfort child-directed website (the “Site”) to better protect the privacy of children under 13  (“Children”) and that the  Company has agreed to do so…. Continue Reading

California Moves to Restrict Collection of Consumer Personal Information Online: the Process, History and Politics Behind Senate Bill 383

Posted in Data Compliance & Security, Legislation, Privacy Litigation, Privacy Regulation

Written by Jake Romero The California Senate has passed a bill restricting the information that certain online retailers can collect in connection with consumer purchases.  Senate Bill 383 would amend Sections 1747.02 and 1747.08 of the California Civil Code to address the collection of customer information in connection with credit card purchases in online transactions… Continue Reading

Federal IT Acquisition Policy Recommendations Focus on Cybersecurity

Posted in Cybersecurity, Data Compliance & Security

The Department of Defense and the General Services Administration, which together spend more than $500 billion annually on information technology, have released a joint report to the White House recommending steps to upgrade the cybersecurity requirements of acquisitions of information technology and services throughout the federal government.  These recommendations will affect not only suppliers to… Continue Reading

Look North, Marketers – Canadian Anti-Spam Law is Coming

Posted in Data Compliance & Security, Privacy Regulation

Written by Cynthia Larose The US CAN-SPAM Act is old hat for marketers in the US.    But it is time to revisit email marketing compliance programs if you send email north of the US border.  Canada’s anti-spam law (known as “CASL”) has been debated for years but is finally coming into effect.   Industry Canada released its… Continue Reading

On the 9th Day of Privacy, the European Union Gave to Me . . .

Posted in Data Breach Notification, Data Compliance & Security, Employee Privacy, European Union, Legislation, Privacy Regulation

. . .  a delayed delivery notice for the biggest package of the holiday season! Written by Susan Foster, Solicitor, England & Wales/Admitted in California, CIPP-E (LONDON) Major changes are on the way in Europe that will have a significant impact on companies anywhere in the world that collect or process personal data of residents… Continue Reading

On the Fourth Day of Privacy, the Internet gave to me….

Posted in Data Compliance & Security, Federal Trade Commission

Editor’s comment:  Today’s version of “four calling birds” might look more like: your refrigerator, your smartphone, your home security system and your energy management system…..all connected to the Internet of Things Written by Jonathan Cain, CIPP/G Web cameras, burglar alarms, fitness monitors, smartphones, and a host of other internet connected devices all have the potential to… Continue Reading

DoD Requires Safeguarding Technical Data

Posted in Cybersecurity, Data Compliance & Security, Security

The Department of Defense (DoD) has published its new final rule governing the security measures imposed on DoD unclassified technical information resident on or passing through the unclassified information systems of its contractors and subcontractors. This final rule will require contractors to safeguard unclassified controlled technical information and to report the compromise of such information… Continue Reading

On the Second Day of Privacy, California Gave to Me……

Posted in Children, Data Breach Notification, Data Compliance & Security, Legislation, Privacy Regulation

Well, the headlines don’t exactly work with the traditional tune, but blame the editor for that….. Written by Jake Romero, CIPP/US 2013 was a busy year for California.  We passed a budget with a surplus, let Kim and Kanye get engaged in one of our stadiums and panicked over possibly losing Sriracha sauce.  At the… Continue Reading

European Commission Proposes New Ground Rules for US Safe Harbor

Posted in Data Compliance & Security, European Union, Legislation

Written by Susan Foster, Solicitor England & Wales/Admitted in California (LONDON) The European Commission, which has the authority to make changes to the US Safe Harbor program, has published a paper titled “Rebuilding Trust in EU-US Data Flows” that sets out the changes that the Commission would like to see the US adopt.  While it… Continue Reading

Google pays BIG to state Attorney Generals for Improper Consumer Tracking

Posted in Class Action Litigation, Data Compliance & Security, Federal Trade Commission, Privacy Litigation, Privacy Regulation

Written by Julia Siripurapu Earlier this month, Google, Inc. (“Google” or “Company”) entered into an  agreement with the Attorney Generals of 37 states and the District of Columbia, settling allegations of violation of  the participating states’ consumer protection or applicable computer abuse statutes (the “Settlement Agreement”). Here’s what got the tech giant in trouble: Google… Continue Reading

Privacy Monday: October 28, 2103 — NIST Cybersecurity “Framework” Published for Comment

Posted in Cybersecurity, Data Compliance & Security, Privacy Monday

Written by Jonathan Cain The National Institute of Standards and Technology (NIST) has published its preliminary cybersecurity “Framework” that it was directed to develop in Executive Order 13636. The Executive Order requires that NIST develop and publish a cybersecurity Framework to protect national critical infrastructure through a “prioritized, flexible, repeatable, performance-based, and cost-effective approach, including information… Continue Reading

FTC and the “Internet of Things”: Franchisor on the hook

Posted in Data Compliance & Security, Federal Trade Commission, Privacy Regulation

Written by Amy Malone Last fall the Federal Trade Commission brought cases against a software developer and rent-to-own stores that secretly monitored people in their homes.  The developer provided the stores with software that had a “Detective Mode” that once enabled allowed the stores to log key strokes, capture screen shots, take pictures using the… Continue Reading

Key EU Parliament Committee Endorses Revised Draft of Data Protection Regulation

Posted in Data Compliance & Security, European Union, Legislation

Written by Susan Foster, Solicitor England & Wales/Admitted in California (LONDON) As widely expected, the European Parliament’s Committee on  Civil Liberties, Justice and Home Affairs (LIBE) voted today in favor of a revised, even tougher draft of the Data Protection Regulation that will (if finally adopted) replace the EU’s current laws regarding the collection and… Continue Reading

Privacy Monday – October 21, 2013

Posted in Data Breach Notification, Data Compliance & Security, European Union, Mobile Privacy, Privacy Monday

Privacy tidbits and bytes for this Monday – App Developers – Put this on your calendar! Now that the US government shutdown is over, the Federal Trade Commission (FTC) has announced its participation in a workshop with the Application Developers Alliance and the California Attorney General’s office on best practices for mobile app privacy.  The Mobile Privacy… Continue Reading

Should we worry about Safe Harbor being suspended because of the NSA’s PRISM Program?

Posted in Data Compliance & Security, European Union

(LONDON) Various data protection power players have called for the suspension or curtailment of the US Safe Harbor program ever since the Snowden revelations that the US NSA has required large internet service providers such as Google to provide vast amounts of personal data transmitted by individuals in Europe (and elsewhere). As many of you… Continue Reading

Changes to California’s Privacy Laws: What They Mean for Your Business

Posted in Data Breach Notification, Data Compliance & Security, Privacy Regulation

The federal government may be completely unable to pass laws, but that certainly isn’t the case with the State of California, which has just completed a data privacy hat trick by passing three significant laws addressing a broad subset of data privacy issues. The big question: is your online and/or mobile business ready for the… Continue Reading

Privacy Monday – September 30, 2013 – Here’s the New Mintz Matrix

Posted in Data Breach, Data Breach Notification, Data Compliance & Security, Privacy Monday, Privacy Regulation

As we all ponder the potential for the first U.S. government shut down in 18 years, here are some Monday privacy tidbits to change the subject a bit. September Mintz Matrix As our readers know, we maintain a summary of the US state data breach notification laws, which we refer to as the “Mintz Matrix.”  … Continue Reading

Internet Peeping Toms and The Internet of Things Face New Hurdles: FTC Settles with TRENDnet, Inc.

Posted in Data Compliance & Security, Federal Trade Commission

Written by Adam Veness The Federal Trade Commission (“FTC”) recently entered into a settlement agreement with TRENDnet, Inc., a company that sells Internet Protocol (“IP”) cameras that allow customers to monitor their homes remotely over the Internet.  Notably, this is the FTC’s first action against a seller of everyday products that connect to the Internet… Continue Reading

National Cybersecurity Awareness Month Is Coming – Are you ready?

Posted in Data Compliance & Security, Events and Webinars

National Cybersecurity Awareness Month is three short weeks away  – what will your company be doing to raise awareness? It’s critically important that cyber-awareness reach to the uppermost levels of your organization — read:  the boardroom.   Mintz Levin is starting off a little in advance of National Cybersecurity Awareness Month with a program tailored… Continue Reading

BOSTON: Join Us for “Cybersecurity: It’s Not Just for IT Anymore”

Posted in Class Action Litigation, Cybersecurity, Data Breach, Data Compliance & Security, Privacy Litigation, Privacy Regulation, Security

If you are in the Boston area (or will be on September 26), please join us for an afternoon discussion on cybersecurity and the growing risk to corporate directors.   It’s no longer just the purview of a company’s IT or compliance personnel.  Cybersecurity needs to be elevated to boardroom discussion and this seminar will cover what… Continue Reading

Video Interview: Discussing the Intriguing California Personal Privacy Initiative

Posted in Data Compliance & Security, Privacy Regulation

Written by Jake Romero Following up on my recent post on story, I had the opportunity to speak with Colin O’Keefe of LXBN on an interesting California ballot initiative that would make consumers’ personal information private by default. In the brief interview, I describe the basics of the California Personal Privacy Initiative and explain its… Continue Reading