Privacy & Cybersecurity
Viewpoints
Filter by:
Encryption -- Not Always the "Silver Bullet"
October 18, 2010 | Blog | By Cynthia Larose
Recently, a news bulletin in Health Data Management highlighted the point that many security experts are trying to make these days: Encryption is not always a "safe harbor."
Read more
No Harm, No Foul; Ninth Circuit Affirms Dismissal of Data Breach Case Against The Gap
July 12, 2010 | Blog | By Cynthia Larose
It’s a distressingly common scenario. A corporate laptop containing job applicant data, including social security numbers, is stolen from an employee who has taken the laptop off of corporate premises. Access to the social security numbers makes it possible for wrongdoers to engage in identity theft.
Read more
REMINDER - HITECH/201 CMR 17.00 Compliance Workshop
July 8, 2010 | Blog | By Cynthia Larose
On July 13, Mintz Levin will be joined by Sophos, Six Weight Consulting, and MFA Cornerstone Consulting to hold a free compliance workshop focused on both the gaps and overlap of Massachusetts’ data protection regulation 201 CMR 17.oo and the recent updates to federal health and medical data privacy found in the HITECH Act.
Read more
Latest Postponements and Exemptions of FTC Enforcement of 'Red Flags' Rule
June 29, 2010 | Blog | By Cynthia Larose
At the urging of congressional lawmakers, the Federal Trade Commission has for the fifth time delayed enforcement of the “Red Flags” Rule – this time through December 31, 2010. In the interim, Congress plans to consider legislation that would alter the scope of entities covered under the Rule.
Read more
Major Data Breach at California Health Insurer
June 28, 2010 | Blog | By Cynthia Larose
Anthem Blue Cross is notifying approximately 230,000 members and applicants for individual health insurance of a breach involving a web site used by individuals to apply for insurance and track the status of their applications.
Read more
Red Flags Rule Compliance Date Approaching - American Medical Association Sues
May 24, 2010 | Blog | By Cynthia Larose
It’s been a while since we have visited the Federal Trade Commission’s Red Flags Rule here in this blog. The oft-postponed deadline is now fast approaching on June 1. Except, that is, for lawyers and now, doctors.
Read more
Privacy Events Calendar
May 6, 2010 | Blog | By Cynthia Larose
Symposium on Privacy and Innovation
Tomorrow, the Commerce Department is hosting a day-long symposium called “A Dialogue on Privacy and Innovation.” It will include several panel discussions to discuss stakeholder views and to facilitate further public discussion on privacy policy in the United States.
Read more
Tomorrow, the Commerce Department is hosting a day-long symposium called “A Dialogue on Privacy and Innovation.” It will include several panel discussions to discuss stakeholder views and to facilitate further public discussion on privacy policy in the United States.
Connecticut Woman Files First Suit Under Federal Law Prohibiting Genetic Discrimination
April 29, 2010 | Blog | By Cynthia Larose
A Connecticut woman has filed a charge of discrimination under the Federal Genetic Information Nondiscrimination Act ("GINA"), which prohibits discrimination against employees based upon their status as carriers of genetic information.
Read more
Brokerage firm victim of elaborate extortion scheme - but also gets hit with a fine
April 15, 2010 | Blog | By Cynthia Larose
Brokerage firm DA Davidson has agreed to pay a fine of $375,000 for failing to protect confidential client data from Latvian hackers who breached the company in 2007 in an online extortion scheme and the three have pleaded guilty in Montana.
Read more
Privacy and Security Bits and Bytes
April 9, 2010 | Blog | By Cynthia Larose
Our Friday afternoon feature --
Virginia Adds Medical Information Breach Law - The Commonwealth of Virginia has amended its data breach notification law to include breaches of medical information.
Read more
Virginia Adds Medical Information Breach Law - The Commonwealth of Virginia has amended its data breach notification law to include breaches of medical information.
More on last week's NJ Supreme Court decision -
April 6, 2010 | Blog | By Cynthia Larose
The decision we blogged about in this space last week is creating quite a bit of buzz in both privacy and employment law circles. My employment law colleagues in our New York office have authored an analysis of the decision here: Employment Alert: New Jersey Supreme Court Finds Privacy Rights in Employee E-Mails
Read more
More detail on Dave & Buster's FTC Settlement
March 29, 2010 | Blog | By Cynthia Larose
As we blogged here last week, we were going to post our Client Alert with further details about the settlement and consent order reached by the restaurant chain Dave & Buster's and the Federal Trade Commission relating to the breach suffered by the chain.
Read more
Senate Commerce Committee Approves Rockefeller-Snowe Cybersecurity Act
March 24, 2010 | Blog | By Cynthia Larose
We will post a link to the amended legislation as soon as it is released by the Committee.
Read more
Massachusetts Data Security Compliance Workshop
March 23, 2010 | Blog | By Cynthia Larose
In case your data security compliance plan is stuck in neutral, you have questions, or you haven't started yet...there will be a free (!) breakfast hands-on workshop on Thursday in Tewksbury, MA.
Read more
Privacy and Security Bits and Bytes
March 11, 2010 | Blog | By Cynthia Larose
Our Friday afternoon feature is back (albeit on Thursday due to schedule tomorrow) – a quick round-up of bits and bytes related to data privacy and security.
Read more
Breaking News - ID Theft Company to Pay $12 Million for Deceptive Advertising
March 9, 2010 | Blog | By Cynthia Larose
That’s how Federal Trade Commission Chairman Jon Leibowitz described the identity theft protection offered to consumers by the widely-advertised LifeLock product and the claims made by the company that its service provided comprehensive identity theft protection.
Read more
Major "goof" at Citibank
March 4, 2010 | Blog | By Cynthia Larose
For all of you who have been struggling with data security compliance obligations from various fronts, and trying to handle complex technical issues such as encryption of portable devices and data "at rest" and "in transit" --- here is a very big story regarding plain old everyday mail.
Read more
Top 3 questions relating to compliance with 201 CMR 17.00
February 26, 2010 | Blog | By Cynthia Larose
At the beginning of the "countdown" to the March 1st effective date of 201 CMR 17.00, we offered some posts with "misapprehensions" and compliance suggestions.
Read more
Today's compliance deadline - Enforcement of the HITECH/HIPAA data breach notification rule
February 22, 2010 | Blog | By Cynthia Larose
February and March are just full of significant deadlines for privacy/security reporting and compliance.
Read more
HITECH Act Compliance Date Arrived -- Without the Promised Regulatory Guidance
February 22, 2010 | Blog | By Cynthia Larose
We have been so focused on the upcoming Massachusetts data security deadline, that we let one last week go without fanfare. As we have gently reminded you on several occasions, the new HIPAA privacy and security rules contained in the Health Information Technology for Clinical and Economic Health Act (HITECH) became effective on February 17th.
Read more
Viewpoint Editors
Cynthia J. Larose
Member / Chair, Privacy & Cybersecurity Practice
John B. Koss
Managing Director, E-Data Consulting Group
Dianne J. Bourque
Member
Christopher J. Harvie
Member
Kevin M. McGinty
Member / Co-chair, Class Action Practice
Explore Other Viewpoints:
- Antitrust
- Appellate
- Arbitration, Mediation & Alternate Dispute Resolution
- Artificial Intelligence
- Awards
- Bankruptcy & Restructuring
- California Land Use
- Class Action
- Complex Commercial Litigation
- Construction
- Consumer Product Safety
- Cross-Border Asset Recovery
- Debt Financing
- Direct Investing (M&A)
- Diversity
- EB-5 Financing
- Education & Nonprofits
- Employment
- Energy & Sustainability
- Environmental Enforcement Defense
- Environmental Law
- FDA Regulatory
- Federal Circuit Appeals
- Financial Institution Litigation
- Government Law
- Growth Equity
- Health Care
- Health Care Compliance, Fraud and Abuse, & Regulatory Counseling
- Health Care Enforcement & Investigations
- Health Care Transactions
- Health Information Privacy & Security
- IP Due Diligence
- IPRs & Other Post Grant Proceedings
- Immigration
- Insolvency & Creditor Rights Litigation
- Institutional Investor Class Action Recovery
- Insurance & Financial Services
- Insurance Consulting & Risk Management
- Insurance and Reinsurance Problem-Solving & Dispute Resolution
- Intellectual Property
- Investment Funds
- Israel
- Licensing & Technology Transactions
- Life Sciences
- Litigation & Investigations
- M&A Litigation
- ML Strategies
- Medicare, Medicaid and Commercial Coverage & Reimbursement
- Mergers & Acquisitions
- Patent Litigation
- Patent Prosecution & Strategic Counseling
- Pharmacy Benefits and PBM Contracting
- Portfolio Companies
- Privacy & Cybersecurity
- Private Client
- Private Equity
- Pro Bono
- Products Liability & Complex Tort
- Projects & Infrastructure
- Public Finance
- Real Estate Litigation
- Real Estate Transactions
- Real Estate, Construction & Infrastructure
- Retail & Consumer Products
- Securities & Capital Markets
- Securities Litigation
- Special Purpose Acquisition Company (SPACs)
- Sports & Entertainment
- Strategic IP Monetization & Licensing
- Tax
- Technology
- Technology, Communications & Media
- Technology, Communications & Media Litigation
- Trade Secrets
- Trademark & Copyright
- Trademark Litigation
- Venture Capital & Emerging Companies
- White Collar Defense & Government Investigations
- Women's Health and Technology