In recent years, many states have been updating their data privacy laws to account for new technologies and security risks. On Oct. 23, 2019, a New York law on data breach notification requirements became effective.
Data security is a hot global topic right now. New laws that closely regulate data security practices seem to be popping up everywhere in order to account for all of the data people transmit electronically daily. Attorneys have been tightening their practices to protect confidential data and advising their clients to do the same. However, some organisations may not be aware that they could be liable for data breaches perpetrated by their employees – even in seemingly unrelated situations.
Everyone knows about the General Data Protection Regulation (GDPR). The GDPR is the EU’s new privacy regime in the region. Over a year has passed since its implementation and organizations are discovering how strict EU countries will enforce the law. One main provision of the GDPR is for organizations to have security measures in place that will safeguard private consumer data. read more
On February 21, 2019, California Assembly Bill 1130 came before the legislature. The bill would amend the state’s data breach notification law, which requires organizations to alert individuals after certain categories of data fall victim to a breach. Currently, the law applies to several categories of personal information, such as social security numbers, driver’s license numbers, and health data. If enacted, the bill would add other government-issued identification numbers (like passports) and biometric data (like fingerprints) to this list. Advocates of the bill have outlined the following benefits: