Category:Privacy & Security
Legislation Involving Disclosure of Data Breaches
Gilbert Carrillo Executive Editor Loyola University Chicago School of Law, JD 2017 Yahoo is just the latest company to have a major cyber security data breach. What is more troubling is how this data breach occurred about 2 years ago and only just now the public is being told about the incident. Was Yahoo …
Read more
FTC Final Order against LabMD – The Intersection of Unfair Practices, Privacy, Security, and Compliance
Logan Parker Privacy Editor Loyola University Chicago School of Law, LL.M. in Health Law 2017 The Federal Trade Commission (“FTC”) issued an Opinion and Final Order on July 29, 2016 against LabMD, a now defunct medical testing laboratory, for its lax data security practices that constituted an unfair practice under Section 5 of the …
Read more
Cybersecurity Biggest Risk to Financial System, Regulators Plan to Provide More Oversight
Kaitlin Lavin Executive Editor Loyola University Chicago School of Law, JD 2017 Financial institutions can expect increased oversight and new regulations due to recent cyberattacks and data breaches in banks. Several banks have already reported data breaches this year, and many banks have been rattled by the cyberattacks on SWIFT—the messaging network connecting the …
Read more
HIPAA Vulnerabilities Highlighted in Oregon Health & Science University Settlement
Logan Parker Privacy Editor Loyola University Chicago School of Law, LL.M in Health Law 2017 In 2013, Oregon Health & Science University (“OHSU”), Oregon’s only academic health center, reported numerous breaches of unsecured electronic protected health information (“ePHI”), including two breaches within the span of five months. This led to the Office of Civil …
Read more
OCR To Devote Greater Resources To HIPAA Breaches Affecting Fewer Than 500 Individuals
Christine Bulgozdi Associate Editor Loyola University Chicago School of Law, JD 2018 The Office of Civil Rights (OCR) announced in August that they would be focusing more efforts on investigating breaches of Protected Health Information (PHI) affecting fewer than 500 individuals. Currently, regional offices investigate all breaches affecting more than 500 individuals, but only …
Read more
Brexit & Privacy Compliance
Ryan Meade Editor-in-Chief Director of Regulatory Compliance Studies at Loyola University Chicago School of Law Now that the UK referendum has expressed the voters’ preference to leave the European Union, there are some fascinating questions regarding how compliance programs deal with the unwinding. There is still considerable time to wrestle with these matters since both major …
Read more