On November 7, 2019, the Office for Civil Rights of the U.S. Department of Health and Human Services announced a $1.6 million civil penalty imposed against the Texas Health and Human Services Commission for violations of HIPAA Privacy and Security Rules.
Continue Reading
Security Breach
California Amends Breach Notification Law
Posted on
On October 11, 2019, California Governor Gavin Newsom signed into law AB 1130, which expands the types of personal information covered by California’s breach notification law.…
Continue Reading
China Issues Provisions on Cyber Protection of Children’s Personal Information
Posted on
On October 1, 2019, China’s Provisions on Cyber Protection of Children’s Personal Information becomes effective and are the first rules focused on children’s personal information protection in China.…
Continue Reading
Addressing GDPR Challenges: An Interactive Session on Handling Data Breaches
Posted on
On October 15, 2019, Hunton Andrews Kurth will host a luncheon seminar in our Brussels office on Handling Data Breaches. This blog entry provides details on the event and a link to register.…
Continue Reading
Ecuador Fast-Tracks Data Protection Law in Wake of Massive Breach
Posted on
Posted in International, Security Breach
Ecuador is seeking to pass a data protection bill in the wake of a massive data breach that resulted in the personal data of up to 20 million people being made available online.…
Continue Reading
Majority of CCPA Amendment Bills Passed by California Legislature
Posted on
California marked the end of the 2019 legislative session this past Friday, September 13, by passing five out of six pending bills to amend the California Consumer Privacy Act of 2018. This blog entry provides a summary on the bills.…
Continue Reading
Maryland Insurance Administration Announces New Breach Notification Requirements
Posted on
Posted in Security Breach, U.S. State Law
On August 29, 2019, the Maryland Insurance Administration issued new breach notification requirements for entities that provide health insurance or related services. The new requirements will apply to insurers, non-profit health plans, HMOs, third-party administrators, and certain other managed care entities. The new rules will take effect on October 1, 2019.
…
Continue Reading
Belgian DPA to Further Investigate Data Breach Affecting Temporary Employment Agency’s Employee Fingerprints
Posted on
On August 21, 2019, the Belgian Data Protection Authority published a press release informing of its intention to further investigate a data breach that was notified by Adecco Belgium, a temporary employment agency.…
Continue Reading
New York Amends Breach Notification Law
Posted on
On July 25, 2019, New York Governor Andrew Cuomo signed into law Senate Bill S5575B, an amendment to New York’s breach notification law. This blog entry provides an overview of the changes.…
Continue Reading
Equifax Agrees to Pay Up to $700 Million to Resolve 2017 Breach, the Largest Data Breach Settlement in U.S. History
Posted on
On July 22, 2019, the FTC announced that Equifax agreed to pay at least $575 million, and potentially up to $700 million, as part of a global settlement agreement with the FTC, the CFPB, and 50 U.S. states and territories to resolve investigations into the colossal data breach the company suffered in 2017. This is the largest data breach settlement in U.S. history. …
Continue Reading