Are the Cookies Crumbling?
Although the world did not come to the end on Saturday, as one millennial group had predicted, some in Europe worry that the end is near for European Internet start-ups when the new EU cookie directive...
View ArticleCookies Crumbling? -- An Update
The UK Information Commissioners Office ("ICO") has clarified today that it will not commence enforcement of the controversial new EU rules governing the use of “cookies” until May of 2012 (the “EU...
View ArticleWhite Collar Wiretaps: Will Your Own Words Come Back to Haunt You?
Jonathan B. New, a partner in Baker Hostetler's New York office and a member of the firm's White Collar Defense and Corporate Investigations Team, along with associate attorney Sammi Malek recently...
View ArticleUS Obtains Secret Court Orders for User Information
In recent years, Federal law enforcement agents have increasingly sought and obtained secret court orders under the Electronic Privacy Communications Act (the “ECPA”) requiring internet service...
View ArticleSnack Food Company's Social Media Marketing Campaign Directed at Teens Draws...
A consumer institute, Center for Digital Democracy, filed a complaint and request for investigation with the FTC on October 19 related to the marketing of Doritos to adolescents. The complaint cites a...
View ArticleFacebook and FTC Settlement Agreement - Online Privacy Practice Implications
Facebook and the FTC announced an agreement on November 29, 2011, ending the FTC’s 18-month investigation into Facebook’s user privacy practices. By adding Facebook to the list of major social media...
View ArticlePrivacy and Data Breach Regulatory Activity--A Year in Review
While plaintiffs continue to face an uphill battle proving damages in privacy litigation - regulatory actions and investigations seem to be increasing. During 2011, we saw activity from many...
View ArticleAll Contracts with Vendors Who Handle Personal Information of Massachusetts...
Regulators are focusing more and more on how responsible organizations are when engaging third-party vendors. HIPAA has in place requirements for engaging business associates. The Connecticut...
View ArticleKey Government and Industry Leaders Discuss Data Privacy at IAPP Summit
Last week in Washington, DC, officials from the U.S. Federal Trade Commission, the Department of Commerce, major trade associations and key stakeholders from around the world gathered at a global...
View ArticleHHS Settles HIPAA Violations Related to a Breach for $1.5M
BlueCross BlueShield of Tennessee (BCBST) was the victim of a theft in 2009 when an intruder stole 57 hard drives which contained protected health information (PHI) of more than 1 million customers....
View ArticleFTC Issues Final Report with Guidance on Companies' Online Privacy Practices
Fifteen months after releasing its preliminary report, the Federal Trade Commission released its final Report, “Protecting Consumer Privacy in an Era of Rapid Change: A Proposed Framework for Business...
View ArticleMassachusetts Attorney General Settles Enforcement Action for $750,000
In June, 2010, South Shore Hospital announced on its website that unencrypted back-up tapes containing patient information went missing and were believed to have been discarded at a dump. Reports...
View ArticleConnecticut to Require Notice to Attorney General Following a Breach
Connecticut has been in the forefront in protecting the personal information of its residents. In July 2010, in the first action by a state attorney general for violations of HIPAA since HITECH...
View ArticleMassachusetts Provider Settles with HHS for $1.5M for ePHI breach incident
To date, the Department of Health and Human Services (“HHS”) has entered into ten resolution agreements and one civil monetary penalty related to its enforcement of the Health Insurance Portability and...
View ArticleThe HIPAA/HITECH Final Rule Has Been Released
The long awaited HIPAA/HITECH Final Rule is out. The final rule is effective March 26, 2013, but covered entities (CEs) and business associates (BAs) will have 180 days beyond the effective date to...
View ArticleWhat Covered Entities and Business Associates Need to Do to Prepare for the...
The Department of Health and Human Services (HHS) issued, on January 17, 2013, its Final Omnibus Rule modifying the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy and...
View ArticleWhat Covered Entities and Business Associates Need to Do to Prepare for the...
There has been a lot of discussion about the impact of Final Omnibus Rule modifying the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy and Security Rules as well as the...
View ArticleClik here to view.
The FTC Mobile Privacy Staff Report
As reported here, the FTC earlier this month released a staff report on mobile privacy. The report, Mobile Privacy Disclosures: Building Trust Through Transparency, provides privacy practice...
View ArticleHHS OCR Director Leon Rodriguez's Dialogue on HIPAA/HITECH Compliance
“HIPAA is a valve, not a blockage,” stated HHS OCR Director Leon Rodriguez, at the OCR/NIST 6th Annual Conference on Safeguarding Health Information: Building Assurance through HIPAA Security....
View ArticleHHS OCR Sends Message to CEs and their BAs: Protect ePHI Accessible Over the...
In its third resolution agreement of 2013, the Department of Health and Human Services, Office for Civil Rights (HHS OCR) today announced a $1.7 million resolution agreement with WellPoint, Inc., a...
View Article
