Last month, in In re: Capital One Customer Data Security Breach Litigation, E.D. Va., No. 1:19-md-02915, U.S. Magistrate Judge John Anderson (the “Judge”) ordered Capital One Financial Corp. (“Capital One”) to disclose a forensic report to the plaintiffs in a lawsuit stemming from Capital One’s 2019 data breach. In doing so, the Judge rejected Capital One’s argument that the report is protected from disclosure to the plaintiffs by the work product doctrine.

Continue Reading Forensic Report Deemed Not Privileged: Capital One Ordered to Release Report

Zeyn Bhyat of ENSafrica reports that South Africa’s comprehensive privacy law, known as the Protection of Personal Information Act, 2013, will become effective on July 1, 2020. POPIA acts as the more detailed framework legislation supporting South Africa’s constitutional right to privacy.
Continue Reading South Africa’s Protection of Personal Information Act, 2013, Goes into Effect July 1

The Centre for Information Policy Leadership at Hunton Andrews Kurth LLP published its report, What Good and Effective Data Privacy Accountability Looks Like: Mapping Organisations’ Practices to the CIPL Accountability Framework, which consolidates the findings of CIPL’s Accountability Mapping Project launched in September 2019 and is part of CIPL’s broader work on the central role of organizational accountability in data privacy.
Continue Reading CIPL Releases Report on Effective Data Privacy Accountability