Tag Archives: Congress

Industry, Privacy Advocates Join Microsoft to Protect Customer Emails in Foreign Servers

On December 15, 2014, Microsoft reported the filing of 10 amicus briefs in the 2nd Circuit Court of Appeals signed by leading technology and media companies, computer scientists and trade associations and advocacy organizations, in support of Microsoft's litigation to resist a U.S. Government's search warrant purporting to compel the production of Microsoft customer emails that are stored in Ireland.… Continue Reading

In a Surprising Move, Congress Passes Four Cybersecurity Bills

In a flurry of activity on cybersecurity, the U.S. Congress unexpectedly approved four cybersecurity bills that clarify the role of the Department of Homeland Security in private-sector information sharing, codify the National Institute of Standards and Technology’s cybersecurity framework, reform oversight of federal information systems, and enhance the cybersecurity workforce. … Continue Reading

Obama's New Executive Order Focuses on Securing Consumer Payments

Today, the White House announced that the President signed a new executive order focused on cybersecurity. The signed executive order, entitled Improving the Security of Consumer Financial Transactions, focuses on securing consumer transactions and sensitive personal data handled by the U.S. Federal Government.… Continue Reading

FTC Issues Report on Data Broker Industry, Recommends Legislation

On May 27, 2014, the Federal Trade Commission announced the release of a new report recommending that Congress consider enacting legislation that would increase transparency in the data broker industry and give consumers more control over how data brokers collect and share their personal information. … Continue Reading

House Passes Bill Limiting NSA Data Collection

On May 22, 2014, the United States House of Representatives passed H.R. 3361, a bill aimed at limiting the federal government's ability to collect bulk phone records and increasing transparency regarding decisions by the Foreign Intelligence Surveillance Court.… Continue Reading

White House Releases Report on Big Data

On May 1, 2014, the White House released a report examining how big data is affecting government, society and commerce. In addition to questioning longstanding tenets of privacy legislation, such as notice and consent requirements, the report recommends (1) passing national data breach legislation, (2) revising the Electronic Communications Privacy Act, and (3) advancing the Consumer Privacy Bill of Rights.… Continue Reading

NIST Releases Final Cybersecurity Framework

On February 12, 2014, the National Institute of Standards and Technology issued the final Cybersecurity Framework, as required under Section 7 of the Obama Administration's February 2013 Executive Order, Improving Critical Infrastructure Cybersecurity. This blog entry highlights the final Framework and offers comparisons to the preliminary framework released in October of last year.… Continue Reading

Senators Renew Efforts to Pass Data Privacy Legislation

On January 8, 2014, Senator Patrick Leahy reintroduced comprehensive information security legislation that would establish a national standard for data breach notification and require businesses to safeguard customers' sensitive personal information from cyber threats. The bill also would establish criminal penalties for individuals who intentionally or willfully conceal security breaches, and would authorize the FTC to write and enforce rules regarding the protection of personal information and breach notification. … Continue Reading

GAO Report Highlights Gaps in U.S. Privacy Laws

On November 15, 2013, the U.S. Government Accountability Office released a report finding that the current federal statutory privacy scheme contains "gaps" and "does not fully reflect" the Fair Information Practice Principles.… Continue Reading

NIST Issues Preliminary Cybersecurity Framework

On October 22, 2013, the National Institute of Standards and Technology issued the Preliminary Cybersecurity Framework, as required under Section 7 of the Obama Administration's February 2013 executive order, Improving Critical Infrastructure Cybersecurity. The Preliminary Framework includes standards, procedures and processes for reducing cyber risks to critical infrastructure.… Continue Reading

Senate Commerce Committee Broadens Data Broker Investigation

On September 25, 2013, Senator Jay Rockefeller expanded his investigation of the data broker industry by sending letters to twelve popular health and personal finance websites requesting information about their data collection and sharing practices. Responses are due by October 11, 2013.… Continue Reading

Obama Administration Threatens to Veto CISPA

On April 16, 2013, President Obama’s Office issued a Policy Statement that includes a threat to veto the U.S. House of Representatives’ Cyber Intelligence Sharing and Protection Act (CISPA) if the bill’s privacy protections are not amended to require private entities to remove personal information when sharing cybersecurity information with the government or other private entities.… Continue Reading

Hunton Webinar Examines Obama Cybersecurity Executive Order

On February 20, 2013, Hunton & Williams LLP hosted a webinar addressing cybersecurity risks and potential business impacts of the Obama Administration’s recently-issued Executive Order. This blog post includes a downloadable version of the presentation slides from the webinar. … Continue Reading
LexBlog