On July 1, 2015, Connecticut’s governor signed into law Public Act No. 15-142, An Act Improving Data Security and Agency Effectiveness, that amends and updates the state’s data breach notification law and imposes certain data security requirements on health insurers and state contractors.
Continue Reading Connecticut Passes New Data Protection Measures into Law

On March 12, 2013, Connecticut Attorney General George Jepsen announced that a coalition of 38 states had entered into a $7 million settlement with Google Inc. (“Google”) regarding its collection of unsecured Wi-Fi data via the company’s Street View vehicles between 2008 and 2010. The settlement is the culmination of a multi-year investigation by the states that we first reported on in 2010.
Continue Reading Google Enters into Multi-State Wi-Fi Settlement

On June 15, 2012, Connecticut Governor Dannel Malloy approved amendments to the state’s breach notification law requiring businesses to notify the state Attorney General in the event of a data security breach. One week later, Senator Pat Toomey (R-PA) introduced the Data Security and Breach Notification Act of 2012 in an effort to create a national breach notification standard.
Continue Reading Connecticut Amends State Breach Law Amid Introduction of Federal Breach Notification Legislation

On January 24, 2011, Connecticut Attorney General George Jepsen announced that MetLife had agreed to pay $10,000 and implement or enhance its data protection policies and procedures in response to a November 2009 disclosure of customer personal information on the Internet.
Continue Reading Connecticut AG Announces Agreement with MetLife over 2009 Breach Incident

As reported in the Hunton Employment & Labor Perspectives Blog, on October 10, 2011, California became the seventh state to enact legislation restricting public and private employers alike from using consumer credit reports in making hiring and other personnel decisions.
Continue Reading California Joins the Growing List of States Restricting Employers’ Use of Consumer Credit Reports

Connecticut recently became the latest state to pass a law regulating employer use of credit reports. The law goes into effect October 1, 2011, and prohibits employers from requiring employees or applicants to consent to an employer pulling their credit report except under certain circumstances.

Continue Reading Connecticut Restricts Employer Access to Employee Credit Reports

Pending legislation in Connecticut, Florida, Nevada, New Jersey and Oregon aims to address the privacy risks associated with devices that may store personal information on their hard drives. A New York law addressing these issues came into effect on April 1, 2011.

Continue Reading States Attempt to Address Privacy Risks Associated with Digital Copiers and Electronic Waste