On May 27, 2011, the Department of Health and Human Services issued a notice of proposed rulemaking that revises existing HIPAA Privacy Rule provisions regarding an accounting of disclosures and also gives individuals a new right to obtain an “access report” detailing who has accessed electronic protected health information in a designated record set.
Continue Reading HHS Issues Notice of Proposed Rulemaking for Accounting of Disclosures of Protected Health Information
May 2011
German DPAs Publish Comprehensive FAQs on Statutory Data Breach Notification Requirement
German DPAs have issued FAQs on a statutory data breach notification requirement that went into effect in September 2009.
…
Continue Reading German DPAs Publish Comprehensive FAQs on Statutory Data Breach Notification Requirement
Webinar on Consent for Cookies: Preparing for the EU Cookie Law
On June 6, 2011, join Hunton & Williams for a panel discussion on the implementation of the new EU Cookie Law in the UK, France, Germany and the Netherlands. EU law on the use of cookies is changing. Opt-in consent will be required, but specific requirements may differ across the EU. What are organizations doing…
Complaint to FTC Alleges Cloud Service Dropbox Fails to Sync Security with Representations
A complaint submitted to the FTC on May 11, 2011, alleges that cloud-based data storage provider Dropbox made false claims about its encryption practices and the security of its users’ data.
…
Continue Reading Complaint to FTC Alleges Cloud Service Dropbox Fails to Sync Security with Representations
FCRA Claim Against Spokeo Allowed to Proceed
On May 11, 2011, a federal court in California denied a motion to dismiss claims that Spokeo, Inc. violated the Fair Credit Reporting Act and the Communications Decency Act, but granted the motion to dismiss with respect to an unfair competition claim.
…
Continue Reading FCRA Claim Against Spokeo Allowed to Proceed
UK ICO Gives Websites One Year to Comply with New Cookies Law
On May 25, 2011, the UK Information Commissioner’s Office issued a news release stating that organizations and businesses that run websites aimed at UK consumers will have up to 12 months to prepare before enforcement of the new cookies law begins.
…
Continue Reading UK ICO Gives Websites One Year to Comply with New Cookies Law
Article 29 Working Party Opines on Geolocation Services
On May 16, 2011, the Article 29 Working Party adopted an Opinion clarifying the legal framework and obligations applicable to geolocation services on smart mobile devices.
…
Continue Reading Article 29 Working Party Opines on Geolocation Services
White House Proposes Cybersecurity Legislation
On May 12, 2011, the Obama administration announced a comprehensive cybersecurity legislative proposal that would affect many government and private-sector owners and operators of cyber systems across multiple industries. This blog post provides analysis of the key issues outlined in the proposal.
…
Continue Reading White House Proposes Cybersecurity Legislation
India Drafts New Privacy Regulations
On April 11, 2011, India adopted new privacy regulations that regulate the collection, use and disclosure of personal information and sensitive personal data.
…
Continue Reading India Drafts New Privacy Regulations
Comprehensive Personal Data Protection Law Enacted in Korea
Kwang Hyun Ryoo from Bae, Kim & Lee LLC analyzes Korea’s long-awaited Personal Information Protection Act, which was enacted on March 29, 2011.
…
Continue Reading Comprehensive Personal Data Protection Law Enacted in Korea