On November 21, 2014, Massachusetts Attorney General Martha Coakley announced that Boston hospital Beth Israel Deaconess Medical Center has agreed to a settlement related to a data breach that affected the personal and protected health information of nearly 4,000 patients and employees. … Continue Reading
On March 11, 2013, in Tyler v. Michaels Stores, Inc., the Massachusetts Supreme Judicial Court effectively reinstated the suit against the retailer by answering favorably for the plaintiff three certified questions from the United States District Court for the District of Massachusetts regarding Massachusetts General Laws Chapter 93, Section 105(a) entitled “Consumer Privacy in Commercial … Continue Reading
On January 7, 2013, Massachusetts Attorney General Martha Coakley announced that several Massachusetts medical practices have agreed to a consent judgment and $140,000 payment to settle charges they improperly disposed of medical information at a public waste management facility.… Continue Reading
On September 17, 2012, the Department of Health and Human Services announced a $1.5 million settlement with the Massachusetts Eye and Ear Infirmary and Massachusetts Eye and Ear Associates Inc. for potential violations of the HIPAA Security Rule.… Continue Reading
On May 24, 2012, Massachusetts Attorney General Martha Coakley announced that South Shore Hospital agreed to a consent judgment and $750,000 payment to settle a lawsuit stemming from a data breach that occurred in February 2010. … Continue Reading
On March 21, 2012, Massachusetts Attorney General Martha Coakley announced that Maloney Properties Inc. executed an Assurance of Discontinuance and agreed to pay $15,000 in civil penalties following an October 2011 theft of a company-issued unencrypted laptop. … Continue Reading
On January 6, 2012, a federal court in Massachusetts dismissed a customer-plaintiff’s complaint alleging that Michaels’ in-store information collection practices violated Massachusetts law. Although the court found that customer ZIP codes may constitute personal information for purposes of the law, it ruled that the plaintiff had failed to demonstrate any cognizable injury.… Continue Reading
On July 29, 2011, Massachusetts Attorney General Martha Coakley announced a settlement with Belmont Savings Bank. The settlement stems from a May 2011 data breach that affected the personal information of more than 13,000 Massachusetts residents.
… Continue Reading
On March 28, 2011, Massachusetts Attorney General Martha Coakley announced a settlement with the Briar Group in connection with a 2009 data breach that jeopardized the payment card information of "tens of thousands" of consumers.
… Continue Reading
After several delays and revisions, the Massachusetts information security regulations, entitled “Standards for the Protection of Personal Information of Residents of the Commonwealth,” will take effect on March 1, 2010. The regulations apply to entities that own or license personal information about Massachusetts residents. “Personal information” is defined as a combination of a resident’s first … Continue Reading
On October 30, as reported by the Bureau of National Affairs (“BNA”), the Massachusetts Office of Consumer Affairs and Business Regulation stated that final amendments to its information security regulations had been filed with the Massachusetts Secretary of State. The Standards for the Protection of Personal Information of Residents of the Commonwealth have been the … Continue Reading
On August 17, 2009, Massachusetts announced revisions to its information security regulations and extended the deadline for compliance with those regulations. In the press release announcing the revised regulations, the Undersecretary of the Massachusetts Office of Consumer Affairs and Business Regulation noted the concerns of small business leaders regarding the impact on their companies, stating … Continue Reading
Massachusetts recently announced that it is extending the deadline for compliance with new state data security regulations. In consideration of the current economic climate, Massachusetts has extended its original compliance deadline of January 1, 2009. The new compliance deadline will be phased in. By May 1, 2009, companies that are subject to the regulations must … Continue Reading