Breach Notification

Over-reporting vs. under-reporting data breaches

Posted on Sep 20 2011 by

The onslaught of significant data breaches in the past year has once again spurred legislators to push for national data breach notification legislation.

Share

Security vs. Commerce: Striking a balance

Posted on Aug 02 2011 by

At the recent data security and privacy hearing held by the Senate Commerce, Science and Transportation Committee, there appeared to be widespread agreement that national data breach laws are needed.

Share

Is a national data breach notification law finally within reach?

Posted on Jun 28 2011 by

The White House recently released a comprehensive cyber-security policy proposal, and with it raised new hopes that a streamlined solution around data breach notification is finally at hand.

Share

Data breaches – to prepare or not to prepare? The answer is simple.

Posted on May 17 2011 by

All data breaches have two things in common: the need for prompt resolution and the need for a robust preparedness plan.

Share

Breach notification in three easy steps

Posted on May 10 2011 by

In a recent report, Ernst and Young noted that stronger breach notification requirements are among the top privacy trends for 2011. Governments around the world are enacting or tightening regulations around breach notification, and within the U.S., individual state laws around data breach notification have had a tremendous impact on data security.

Share

Are we suffering from breach notification fatigue?

Posted on May 03 2011 by

With numerous different breaches affecting so many people as of late, millions of consumers are receiving emails from trusted brands noting that customer emails (and perhaps other information) have been compromised, so consumers should be wary of future emails that may appear to be sent from them.

Share

Consumers yawn at healthcare fraud

Posted on Mar 29 2011 by

Today’s headlines trumpet yet another high-profile medical data breach, this time through Health Net. This corporate catastrophe reminds us of the increasing hazard of medical fraud, which is the most expensive and time consuming to resolve of all types of identity theft . The second annual National Study on Medical Identity Theft, fielded by the Ponemon Institute provides further insight into this pervasive problem and how it affects consumers.

Share

Get ready for a new wave of breach notification laws

Posted on Mar 01 2011 by

For businesses that don’t comply with these new regulations, stiff penalties will be added to the burdensome costs of breaches (and how can you even tabulate costs like the loss of public trust?) The new regulations headed our way in 2011 provide one more reason for businesses to protect themselves from breaches, swiftly take action when a breach has been detected, and stay informed about the legal currents that are taking shape.

Share

Develop a data breach response plan now to be ready to efficiently address a breach as soon as it is reported

Posted on Feb 22 2011 by

The proliferation of state data breach notification laws, substantive state information security laws (such as the Massachusetts data security standards), and FTC and private lawsuits on information security matters has led to heightened attention to information security in both IT budgets and staffing and in terms of legal resources. With budget pressures all around (not to mention time pressures and the pressures of other duties that in-house counsel already has), the question becomes: How can my organization lower the time and dollar costs associated with information security when there is a breach?

Share

Data security law in 2011: States remain the center of attention

Posted on Feb 17 2011 by

While state laws requiring “reasonable” data security have had a positive impact, data breach notification laws have had the most profound effect on the improvement of data security. These laws have motivated companies – through negative incentives – to improve data security to avoid publicity, embarrassment, and the risk of notification.

Share