California marked the end of the 2019 legislative session this past Friday, September 13, by passing five out of six pending bills to amend the California Consumer Privacy Act of 2018. This blog entry provides a summary on the bills.
Continue Reading
U.S. State Law
Status Update: Pending CCPA Amendment Bills
Posted on
Posted in Information Security, U.S. State Law
There are six bills pending before the California legislature that would amend the California Consumer Privacy Act of 2018, and these bills could significantly alter the law’s application and associated compliance obligations.…
Continue Reading
Maryland Insurance Administration Announces New Breach Notification Requirements
Posted on
Posted in Security Breach, U.S. State Law
On August 29, 2019, the Maryland Insurance Administration issued new breach notification requirements for entities that provide health insurance or related services. The new requirements will apply to insurers, non-profit health plans, HMOs, third-party administrators, and certain other managed care entities. The new rules will take effect on October 1, 2019.
…
Continue Reading
New Hampshire Governor Signs Insurance Data Security Law
Posted on
On August 2, 2019, New Hampshire Governor Chris Sununu signed into law SB 194, which requires insurers licensed in the state to put in place data security programs and report cybersecurity events. This blog entry provides highlights.…
Continue Reading
New York City Considers Prohibition on Sharing Location Data
Posted on
Posted in Information Security, U.S. State Law
On July 23, 2019, New York City Council members introduced Int. 1632-2019, an amendment to the administrative code of New York City that would prohibit telecommunications carriers and mobile applications from sharing a customer’s location data if the location was collected from a device in the five boroughs.…
Continue Reading
New York Amends Breach Notification Law
Posted on
On July 25, 2019, New York Governor Andrew Cuomo signed into law Senate Bill S5575B, an amendment to New York’s breach notification law. This blog entry provides an overview of the changes.…
Continue Reading
Revisions to the Closely Watched “Employee Exemption” Amendment to the CCPA
Posted on
A number of bills to amend the California Consumer Privacy Act of 2018 are still pending before the California legislature. Of particular interest to many businesses is AB 25, which could narrow applicability of the CCPA by removing employees from its scope.…
Continue Reading
Washington AG Settles with Premera on Behalf of Multistate Coalition
Posted on
On July 11, 2019, Washington Attorney General Bob Ferguson announced that his office had entered into a consent decree and $10 million settlement with Premera Blue Cross (“Premera”) that stems from a 2014-2015 breach that affected more than 11 million individuals. The settlement, which includes a payment of roughly $5.4 million to Washington state and $4.6 million to a coalition of 29 other state Attorneys General (the “Multistate AGs”), is one of the largest ever for a breach involving protected health information (“PHI”) and comes just one month after another notable HIPAA settlement involving a similar coalition of state AGs.
…
Continue Reading
One Year of CCPA
Posted on
Posted in Information Security, U.S. State Law
With the one-year mark since the passage of the California Consumer Privacy Act of 2018, Hunton reflects on the past year and recent developments in the law. This blog entry provides a link to Hunton’s CCPA Amendment Tracker chart.…
Continue Reading
Texas Amends Data Breach Law; Now Requires Regulator Notification
Posted on
Texas Governor Greg Abbott recently signed into law HB 4390, which amends the state’s data breach notification law and creates an advisory council tasked with studying and developing recommendations regarding data privacy legislation.…
Continue Reading