Tag archives: breach notification

Amended Colorado bill aims to enhance data privacy laws

Data Protection Report - Norton Rose FulbrightAs Data Protection Report posted on January 29, 2018, lawmakers in Colorado are considering legislation that, if enacted, would significantly strengthen Colorado’s data privacy protections.  On Wednesday, February 14, 2018, an amended bill passed unanimously in Colorado’s House Committee on State, Veterans and Military Affairs.… Continue reading

South Dakota and Colorado strengthen data breach protections

Norton Rose Fulbright - Data Protection Report blogLast week, South Dakota moved closer to implementing a data breach notification law, while Colorado legislators introduced a new bill requiring “reasonable security procedures,” imposing data disposal rules and shortening the time frame in which to alert authorities regarding a breach.  South Dakota and Colorado are the latest states taking steps in cybersecurity lawmaking in … Continue reading

Delaware amends data breach notification law

Norton Rose Fulbright - Data Protection Report blogEarlier this month, Delaware revamped its data breach notification law, with changes to go into effect April 14, 2018.  Most notably, the new law requires any entity that has suffered a data breach that includes social security numbers to provide free credit monitoring services to affected residents for one year. The entity must provide all … Continue reading

Data breach notification places cyber-risk at the top of the agenda

Data Protection Report - Norton Rose FulbrightThe bar is to be raised yet again for privacy compliance in Australia. Cyber-risk has become a key agenda item for boards for the public sector, and the impending mandatory data breach notification regime is set to propel cyber-risk to the top of the agenda.… Continue reading

New data security law in Connecticut imposes new requirements on businesses, regulated entities, and state contractors

Data Protection Report - Norton Rose FulbrightOn June 11, 2015, Connecticut Governor Dannel Malloy signed Senate Bill 949  (“S.B. 949”) into law.  This new law imposes a various new requirements relating to data breach response and notification, including imposing a hard 90-day deadline for data breach reporting and requiring that entities regulated by the Connecticut Insurance Department to implement and maintain … Continue reading

Wyoming amends data security law to expand definition of “Personal Identifying Information” and notification content requirements

Data Protection Report - Norton Rose FulbrightOn March 2, 2015, Wyoming signed into law Senate Bills S.F. 35 and S.F. 36, which amend the content requirements for breach notifications in W.S. 40-12-502, and the definition “Personal Identifying Information” in W.S. 40-12-501. These amendments will take effect on July 1, 2015.… Continue reading

European Council approves EU General Data Protection Regulation draft;  final approval may come by end of 2015

Data Protection Report - Norton Rose FulbrightToday the European Council approved its version of the General Data Protection Regulation (GDPR). The next stage is for the European Commission, European Parliament and European Council (each has its own preferred version of the regulation) to jointly agree on the final text of the regulation. These discussions will commence officially on June 24, 2015, and … Continue reading

Breach notice becomes law in the Netherlands; 11 things to know

Data Protection Report - Norton Rose FulbrightOn 26 May 2015, the Dutch Senate passed the Bill on Notification of data leaks. The law imposes an obligation on “data controllers” (the persons or entitis that determine the purpose of and means for processing personal data) in the Netherlands to notify the Dutch Data Protection Authority (CBP) and affected individuals. The law may require … Continue reading
LexBlog