Topic: Data Breaches

What Companies Should Do Now in Response to President Obama’s Cybersecurity Order [VIDEO]

[Link: How to Respond to President Obama’s Cybersecurity Executive Order] “Cybersecurity” is now front-and-center, thanks to Barack Obama’s executive order on the matter; but the president’s framework will take months to implement. In the meantime, what can business leaders do today to respond to the call for a framework to protect the nation’s critical infrastructure… Read more »

HIPAA Q&A: What’s the New Word on Data Breaches?

“The definition of a data ‘breach’ was changed. The Omnibus Rules replaced the more subjective ‘harm standard’ with a more objective test that requires the covered entity to determine (based on a four-factor risk assessment) whether protected health information has been ‘compromised.’” (Snell & Wilmer) One of the key components of the new HIPAA /… Read more »

New HIPAA Omnibus Rule Modifies Privacy and Breach Notification Requirements for Health Care Providers

“The Final Rule represents the most significant development in healthcare privacy law since the issuance of the final Privacy Rule and Security Rule a decade ago.” (Morgan Lewis) On January 17, 2013, the Office for Civil Rights (OCR) of the U.S. Department of Health and Human Services (HHS) released its final omnibus rule, strengthening the… Read more »

Medicine is Mobile. What Does That Mean for Security?

“New medicine is mobile, miniature and you can play angry birds on it. But what does that mean for security and privacy?” (Jo Ellen Whitney of law firm Davis Brown) The Massachusetts Eye and Ear Infirmary (MEEI) received a $1.5 million lesson in HIPAA and mobile device security earlier this month. Not because MEEI lost… Read more »

Data Breach! Who’s Liable? What Next? (A Tech Law Reader)

“In case you haven’t heard, the days of having no obligation to notify consumers of a data breach or loss that involves only email addresses may have ended. This should be a major wakeup call for every CIO…” Your company’s data is in the cloud – including vital employee, investor, and customer information – and… Read more »