By: Aaron Krowne A heated battle regarding the general province of federal regulators over businesses’ privacy and data security practices is currently raging. We are referring to the pending case of FTC v. Wyndham Worldwide Corp., which is being much-watched in the data security world. It pits, on one side, the Federal Trade Commission (“FTC”), with…
Read more
New York Attorney General Report Finds Data Breaches Are Serious Business
By: Aaron Krowne On July 14, 2014, the New York Attorney General’s office (“NY AG”) released a seminal report on data breaches, entitled “Information Exposed: Historical Examination of Data Breaches in New York State” (the “Report”). The Report presents a wealth of eye-opening (and sobering) information on data breaches in New York and beyond. The Report…
Read more
With New Law, Delaware Now “Means Business” When It Comes To Disposal of Confidential Consumer Information
By: Aaron Krowne On July 1, 2014, Delaware signed into law HB 295, which provides for the “safe destruction of records containing personal identifying information” (codified at Chapter 50C, Title 6, Subtitle II, of the Delaware Code). The law goes into effect January 1, 2015. Overview of Delaware’s Data Destruction Law In brief, the law requires…
Read more
California Court Says: “No Peek, No Breach” For Health Information Privacy
By: Aaron Krowne In a major recent case testing California’s medical information privacy law, part of the California Medical Information Act, or CMIA (California Civil Code § 56 et seq.), the Third District Court of Appeals in Sutter Health v. Superior Court held on July 21, 2014 that confidential information covered by the law must be…
Read more