Boris Segalis, data protection, data security, FIPPs, InfoLawGroup, information law group, Korea, personal information, Personal Information Protection Act, PIPA, privacy, privacy legislation
Personal Data Protections Expand in Korea
By InfoLawGroup LLP on May 18, 2011
Mr. Kwang Hyun Ryoo, a partner at the Korean law firm of Bae, Kim & Lee LLC, is reporting in the firm's newsletter that on March 29, 2011, Korea enacted a comprehensive personal data protection law, entitled Personal Information Protection Act (PIPA). Most of the act's provisions will come into force on September 30, 2011.
NIST, risk management, security measures
NIST Releases New DRAFT Cloud Computing Synopsis
By InfoLawGroup LLP on May 17, 2011
CFAA, employee privacy, InfoLawGroup, information law group, InformationLawGroup, Lee, PMSI, privacy litigation, social media, workplace privacy
District Ct. Holds Use of Facebook at Work Does Not Violate the CFAA
By InfoLawGroup LLP on May 16, 2011
cookies, data protection law, e-commerce, ePrivacy Directive, EU Data Protection Directive, EU Directive, European Union, privacy, privacy enforcement, privacy enhancing technologies, privacy notice, UK ICO, website
Cookie-Cutter: UK Announces New Rules for Website Cookies
By W. Scott Blackmer on May 13, 2011
The UK Information Commissioner's Office announces new rules for website cookies, which will normally require explicit user consent.
children's privacy, COPPA, data protection, FTC, InfoLawGroup, information law group, InformationLawGroup, Playdom, privacy, privacy enforcement, Section 5, unfair practices
FTC Enforcement Update: "Virtual Worlds" Operators Settle Children's Privacy Violation Charges; Pay $3M Fine
By InfoLawGroup LLP on May 12, 2011
On May 12, 2011, the Federal Trade Commission announced that the operators of 20 online virtual worlds have agreed to pay $3 million to settle charges that they violated the Children's Online Privacy Protection (COPPA) Rule by collecting and disclosing personal information from hundreds of thousands of children under age 13 without their parents' prior consent. The FTC noted that this settlement is the largest civil penalty for a violation of the FTC's COPPA Rule.
Ponemon Institute, Security
Ponemon Study: 73% Believe Cloud Providers Do Not Protect User's Confidential Information
By InfoLawGroup LLP on May 12, 2011
Apple, Apple Apps Commission DOJ Privacy mobile privacy FTC Franken Whitehouse Cobur..., Apps, Coburn, Commission, data protection, DOJ, Fox, Franken, FTC, Google, Hearing, InfoLawGroup, information law group, InformationLawGroup, Leahy, location, Mobile, mobile privacy, privacy, privacy by design, Privacy, Technology and the Law, Segalis, Senate, Senate Hearing, Senate Subcommittee, smartphone, Technology and the Law, tracking, Whitehouse
InfoLawGroup Speaks with Fox Live about Mobile Privacy
By InfoLawGroup LLP on May 12, 2011
On May 10, 2011, the Senate Subcommittee on Privacy, Technology and the Law held a hearing on mobile privacy. We covered the hearing in detail on our blog. Yesterday, InfoLawGroup partner Boris Segalis spoke with Fox Live's Tracy Byrnes about the balance between business and consumer interests that mobile privacy implicates.The clip from the interview is available on Fox at http://video.foxnews.com/v/4689248/the-congressional-mobile-privacy-hearing/?playlist_id=86861
Apple, Apps, Commission, data, Data Privacy Law or Regulation, Department, Department of Justice, Devices, DOJ, Federal, Federal Trade Commission, Franken, FTC, Google, group, Hearing, InfoLawGroup, information, information law group, InformationLawGroup, Justice, Law, Leahy, Legislation, location, location data, location tracking, Mobile, Mobile Devices, of, or, privacy, privacy legislation, Regulation, Senate, smartphones, tracking, Trade, wifi
Senate Subcommittee Holds Hearing on Mobile Privacy
By InfoLawGroup LLP on May 09, 2011
FOSS, Google, Linux, Patents
Bedrock v Google Patent Case - InfoLawGroup Analysis
By InfoLawGroup LLP on May 09, 2011
Ceridian, deceptive practices, enforcement, Federal Trade Commission, FTC, FTC Act, FTC consent, InfoLawGroup, information law group, information security, information security program, InformationLawGroup, Lookout, personal data, personal information, privacy enforcement, Section 5, Segalis
FTC Privacy Enforcement Update: Two Companies Allegedly Failed to Protect Sensitive Employee Data
By InfoLawGroup LLP on May 06, 2011
On May 3, 2011, the Federal Trade Commission announced that Ceridian Corporation and Lookout Services, Inc. agreed to settle the FTC's allegations that the companies failed to safeguard their business customers' employee personal information. Ceridian's services include payroll processing, payroll-related tax filing, benefits administration and other human resource services for business customers. Lookout provides a web-based computer product that is designed to help employers comply with their obligations under federal law to complete and maintain a U.S. Citizenship and Immigration Services Form I-9 about each employee in order to verify that the employee is eligible to work in the United States.
Fox News, iPhone, location, National Strategy for Trusted Identities in Cyberspace, NSTIC, privacy, smartphones, tracking
Recent News: Smartphones & Location Privacy, NSTIC, and More . . .
By InfoLawGroup LLP on April 27, 2011
Our readers may have noticed that there is a lot in the privacy news this week. On Monday, I appeared on FoxNews.com Live to discuss smartphones and location privacy. Yesterday, Dave appeared on Fox 31 Denver KDVR to discuss The National Strategy for Trusted Identities in Cyberspace (NSTIC). And new privacy and security law stories are breaking on a daily (sometimes hourly) basis. We will continue to watch these and other rapidly evolving issues and will post new developments here.
cloud computing, Cloud Users' Bill of Rights, contracting, David Navetta, webinar
Our "Contracting for Cloud Computing" Free Webinar Now Available On Demand
By InfoLawGroup LLP on April 20, 2011
Breach, damages, litigation, personal information, privacy, security breach litigation
California Federal Court Holds that Damages Properly Alleged in RockYou Data Breach Case
By InfoLawGroup LLP on April 19, 2011
In what may be a sign of an evolving judicial atmosphere and approach concerning data breach lawsuits, a Federal judge in the Northern District of California District Court recently refused to dismiss various causes of action related to a data breach involving RockYou. In particular, the Court explored the issue of whether the plaintiff sufficiently alleged "harm" arising out of the data breach. This blog post takes a look the highlights of the Court's decision.
Commercial Privacy Bill of Rights Act, Kerry, McCain, Nymity, privacy bill of rights
The Kerry-McCain Bill
By InfoLawGroup LLP on April 18, 2011
Dave, Scott and I recently spoke with Nymity about the Commercial Privacy Bill of Rights Act of 2011 introduced by Senators John Kerry (D-MA) and John McCain (R-AZ) last Tuesday. You can read the interview here. We provide a general summary of the bill and identify some of the key challenges organizations will face if the bill becomes law.
litigation, personal information, privacy
MySpace Sued for Alleged Privacy Violations
By InfoLawGroup LLP on April 15, 2011
Boris Segalis, broker, data protection, dealer, financial privacy, InfoLawGroup, information law group, information security, Nicole Friess, privacy, privacy assessment, privacy enforcement, privacy rule, Regulation S-P, Regulation SP, Safeguards Rule, SEC, Securities and Exchange Commission
Federal Privacy Enforcement Update: SEC Fines Executives for Privacy and Security Violations
By InfoLawGroup LLP on April 13, 2011
As we have reported previously on our blog, federal agencies, including the FTC, NLRB and EEOC have been very active in taking action against privacy and information security violations. This trend continues with the Securities and Exchange Commission's (SEC's) recent announcement of a settlement with three former executives a brokerage firm (GunnAllen Financial, Inc.). The SEC alleged that the former executives violated the Commission's Privacy Rule and Safeguards Rule (Regulation S-P) and aided and abetted the firm in violating these rules. This enforcement action marks the first time the SEC assessed financial penalties against individuals charged solely with violating Regulation S-P.
Daily Journal, InfoLawGroup, information law group, information security, Law, law firm, Los Angeles, privacy, profile, social network
InfoLawGroup Profiled in Los Angeles Daily Journal: "The Social (Law Firm) Network"
By InfoLawGroup LLP on April 08, 2011
InfoLawGroup was recently profiled in the Los Angeles Daily Journal. "The Social (Law Firm) Network" is reprinted here with permission from the Daily Journal. We wish all of our clients, friends, and readers a great weekend.
Boris Segalis, Buzz, Consent Order, Consumer Protection, data protection, data security, Federal Trade Commission, FTC, FTC Act, Google, Google settlement, InfoLawGroup, information law group, information security, personal information, privacy, privacy assessment, privacy by design, privacy enforcement, risk assessment, Safe Harbor, social media, social network
FTC Takes a Big Step in Privacy Enforcement with Google Buzz Settlement
By InfoLawGroup LLP on April 06, 2011
The Google Buzz settlement that the Federal Trade Commission announced on March 30, 2011 is the latest in the line of the Commission's numerous Section 5 actions related to privacy and data security violations. The Google Buzz settlement, however, is unique in several important ways. The settlement represents (i) the first FTC settlement order has requires a company to implement a comprehensive privacy program to protect the privacy of consumers' information, and (ii) the Commission's first substantive U.S.-EU Safe Harbor framework enforcement action. Let's dive in (make sure to read the "Action Item" at the conclusion of the post!).
2011, Act, advertising, Behavioral, behavioral advertising, bill, Commercial, Commercial Privacy Bill of Rights Act of 2011, data, Data Privacy Law or Regulation, FTC, group, identifiable, InfoLawGroup, information, information law group, InformationLawGroup, Kerry, Law, Legislation, McCain, of, or, personally, personally identifiable information, pii, privacy, privacy bill of rights, privacy enforcement, privacy legislation, Regulation, rights, Senate
Kerry Releases Draft of "Privacy Bill of Rights"
By InfoLawGroup LLP on March 25, 2011
commerce department, Do Not Track, ECPA, FTC framework, FTC report, Geolocation, Geospatial
What's Next for the FTC's Proposed Privacy Framework?
By InfoLawGroup LLP on March 23, 2011
The FTC's December 2010 release of its much anticipated Privacy Framework included the typical public comment period, which ended in February. We've reviewed each of the 442 separate comments received by the FTC during the comment period to uncover the themes, trends and thoughts raised by the Framework. The result is added perspective into what the FTC will be weighing in its future versions and any resulting recommendations for additional legislation and regulation. With this in mind, what can the public comments tell us?
