On December 15, 2020, the Federal Trade Commission announced a proposed settlement with Ascension Data & Analytics, LLC, a Texas-based mortgage industry data analytics company, to resolve allegations that the company failed to ensure one of its vendors was adequately securing personal information of mortgage holders.
Continue Reading FTC Announces Enforcement for Inadequate Third-Party Risk Management Practices Under the GLBA’s Safeguards Rule

On May 16, 2017, the Governor of the State of Washington, Jay Inslee, signed into law House Bill 1493, which sets forth requirements for businesses who collect and use biometric identifiers for commercial purposes. The law will become effective on July 23, 2017. Washington becomes the third state to pass legislation regulating the commercial use of biometric identifiers.
Continue Reading Washington Becomes Third State to Enact Biometric Privacy Law

On May 10, 2017, the U.S. Department of Health and Human Services’ Office for Civil Rights announced a 2.4 million dollar civil monetary penalty against Memorial Hermann Health System for alleged violations of the Health Insurance Portability and Accountability Act of 1996 Privacy Rule.
Continue Reading OCR Fines Texas Health System For Alleged HIPAA Privacy Rule Violation

On October 3, 2016, the Texas Attorney General announced a $30,000 settlement with mobile app developer Juxta Labs stemming from allegations that the company engaged in deceptive practices regarding its collection of personal information from children.
Continue Reading Texas AG Settles Suit with Messaging App Over Children’s Data Practices

As reported in the Hunton Employment and Labor Perspectives Blog, on November 4, 2013, Texas Attorney General Greg Abbott sought injunctive and declaratory relief against the Equal Employment Opportunity Commission on the grounds that the agency’s April 2012 Enforcement Guidance on the Consideration of Arrest and Conviction Records in Employment Decisions “purports to preempt the State’s sovereign power to enact and abide by state-law hiring practices.”
Continue Reading Texas AG Argues EEOC Guidance on Criminal Background Checks Violates State Sovereignty

In anticipation of an upcoming cybersecurity workshop to take place September 11-13 in Dallas, on August 28, 2013, the Obama Administration issued several documents relating to the cybersecurity framework that the President called for in his February 2013 Executive Order on cybersecurity.
Continue Reading Obama Administration Releases Draft Preliminary Cybersecurity Framework