Tag:Privacy & Security
Data Breach Notification Laws: Complex and Lacking Uniformity
Amanda Bogle Executive Editor Loyola University Chicago School of Law, JD 2017 When a data breach occurs in an organization, determining whether there is a duty to notify can get complicated quickly. In investigating a breach, the specific facts of the incident become extremely important, as not every breach will require notification. The residency …
Read more
U.K. Telecommunication Company Levied with Record Fine for Cyber-Attack
Logan Parker Privacy Editor Loyola University Chicago School of Law, LL.M. in Health Law 2017 TalkTalk is one of the UK’s fastest growing business to business telecommunication providers that offers a full range of business-grade communications, products and services which include internet, data, voice and mobile. On October 5, 2016, the Information Commissioner’s Office …
Read more
OCR To Devote Greater Resources To HIPAA Breaches Affecting Fewer Than 500 Individuals
Christine Bulgozdi Associate Editor Loyola University Chicago School of Law, JD 2018 The Office of Civil Rights (OCR) announced in August that they would be focusing more efforts on investigating breaches of Protected Health Information (PHI) affecting fewer than 500 individuals. Currently, regional offices investigate all breaches affecting more than 500 individuals, but only …
Read more
Brexit & Privacy Compliance
Ryan Meade Editor-in-Chief Director of Regulatory Compliance Studies at Loyola University Chicago School of Law Now that the UK referendum has expressed the voters’ preference to leave the European Union, there are some fascinating questions regarding how compliance programs deal with the unwinding. There is still considerable time to wrestle with these matters since both major …
Read more
Bose Accused of Blasting Consumer Listening Habits to Third Parties
Global music technology giant and headphone maker, Bose Corporation, has been hit with a class-action lawsuit alleging that Bose collected the listening preferences of the users of its wireless headphones and its companion application without their knowledge and sold that information to third parties. Counsel representing the class filed the complaint in federal court in Chicago, Illinois alleging violations of the Electronic Communications Privacy Act (“ECPA”) and the Illinois-specific Eavesdropping Statute.
Golden State Warriors Run Afoul to the Electronic Communications Privacy Act
The 2016 National Basketball Association Champions, the Golden State Warriors, have been accused of wiretapping and listening in to fans’ conversations without consent or knowledge in violation of the Electronic Communications Privacy Act (“ECPA”), also referred to as the Wiretap Act. A new amended complaint alleges the warriors recorded fans’ oral dialogue via a phone application typically used to keep fans up-to-date on team scores, schedules, news, and statistics.
OCR Audits Subject To Phishing Hack
Christine Bulgozdi Associate Editor Loyola University Chicago School of Law, JD 2018 Back in November, the Department of Human Services (HHS) Office of Civil Rights (OCR) released an alert stating that a phishing scam masquerading as an OCR Audit had been spotted being sent out to Health Information Portability and Accountability Act (HIPAA) covered …
Read more
Securing All The Things: Cybersecurity, D-Link, and the Expansion of IoT
The internet of things (IoT) holds promise for new ways to interact with and leverage technology; however, ever-expanding connectivity brings increased vulnerability. Addressing security and privacy issues is necessary for the continued growth of the IoT—and, as the U.S. Federal Trade Commission’s case against D-Link Corporation demonstrates, one of vital interest to regulatory lawmaking bodies as well.
Joint Guidance Confirms the Sharing of Health Information Subject to FTC Regulations, Not Only HIPAA
Logan Parker Privacy Editor Loyola University Chicago School of Law, LL.M. in Health Law 2017 On October 22, 2016, the Federal Trade Commission (“FTC”) in collaboration and conjunction with the Department of Health and Human Services’ Office for Civil Rights (“OCR”) released new guidance on key privacy and security considerations for organizations handling health …
Read more
Compliance Spotlight: Ali Gross, UC Los Angeles Health
Alanna J. Kroeker Executive Editor Loyola University Chicago School of Law, JD 2017 Ali Gross is currently a Senior Privacy Analyst at University of California Los Angeles Health (UCLA). Ms. Gross is a 2015 Loyola University Chicago School of Law Graduate where she also completed a health law certificate. Ms. Gross knew she wanted …
Read more