Tag Archives: encryption

Controversial Australian Encryption Act Denounced by Privacy and Cryptography Advocates

By Brian P. Bartish on Posted in Enforcement, International Privacy Law
Last week, Australia’s parliament passed a controversial act that will enable law enforcement and intelligence agencies to compel access to encrypted communications. In an explanatory memorandum, the Australian Parliament stated that the new act, the Telecommunications and Other Legislation Amendment (Assistance and Access) Act 2018, is intended to combat “the challenges posed by ubiquitous encryption.” … Continue Reading

Encryption: The Battle Between Privacy and Counterterrorism

Photo of Eric A. PackelBy Eric A. Packel on Posted in Cybersecurity
For privacy advocates, it is universally accepted that encryption is a very good thing. After all, encrypted data is deemed a safe harbor under HIPAA and state breach-notification laws, providing an “out” from potential fines and penalties when an encrypted device is lost that contains sensitive health or other personal information. In addition to encouraging … Continue Reading

iBeacons Usher in New Era of Mobile Advertising in 2014, Raise Old Privacy Concerns

Photo of Fernando A. Bohorquez, Jr.By Fernando A. Bohorquez, Jr. and Alan M. Pate on Posted in Behavioral Advertising, Marketing, Mobile Privacy, Online Privacy
Editor’s Note: This blog post was originally published on February 6, 2014 courtesy of iMedia Connection’s Blog. It is repurposed with permission. Remember that scene from Minority Report? The one where John Anderton (Tom Cruise) takes a trip to GAP, virtual billboards call out his name and bombard him with offers as he walks through … Continue Reading

January 15 webinar: Managing Cardholder Data Security Risks in an Evolving Payments Landscape

Photo of Craig A. HoffmanBy Craig A. Hoffman on Posted in Payment Card Industry
Please join us from 2-3:30 pm ET on January 15 for a webinar that will provide a look back on significant payment card security events that occurred in 2013 and the security, risk mitigation, and customer relations lessons that can be learned from them. We will also discuss what the continuing and emerging threats may … Continue Reading

SAFE Data Act Approved by House Subcommittee

Photo of Craig A. HoffmanBy Craig A. Hoffman on Posted in Data Breach Notification Laws, Federal Legislation
The House Subcommittee on Commerce, Manufacturing, and Trade, chaired by Rep. Mary Bono Mack (CA), approved the Secure and Fortify Electronic Data Act (H.R. 2577) (SAFE Data Act) following lengthy debate on July 20, 2011.  The SAFE Data Act contains information security requirements and breach notice obligations consistent with Rep. Bono Mack’s statements following the … Continue Reading

Three National Data Breach Notification Legislative Proposals Issued

Photo of Craig A. HoffmanBy Craig A. Hoffman on Posted in Breach Notification, Data Breach Notification Laws, Federal Legislation
So far this month, three legislative proposals containing a national data breach notification requirement have been issued.  On May 4, Rep. Bobby L. Rush (D-Ill.) reintroduced the Data Accountability and Trust Act.  On May 11, Rep. Cliff Stearns (R-Fla.) introduced the Data Accountability and Trust Act (DATA) of 2011.  One day later, the White House … Continue Reading

Hospitality and Food and Beverage Industries Still Targets of Hackers

Photo of Craig A. HoffmanBy Craig A. Hoffman on Posted in Data Breaches, Information Security, Payment Card Industry
This entry was also posted on the Hospitality Lawg—a Baker Hostetler blog featuring commentary on hospitality law, news, and developments.  It should no longer come as a surprise that the hospitality and food and beverage industries are favorite targets of hackers.  Indeed, some commentators have suggested that hackers view these industries as the low-hanging fruit.  … Continue Reading

PCI DSS Compliance–“A Necessary and Worthwhile Investment”

Photo of Craig A. HoffmanBy Craig A. Hoffman on Posted in Payment Card Industry
Cisco released a white paper on January 12, 2011, which reported that results from its survey of 500 IT decision makers show that PCI DSS compliance is no longer viewed as overly expensive and burdensome.  Instead, the survey revealed “one overwhelming message: Organizations of all types view PCI compliance as a necessary and worthwhile investment.”  … Continue Reading

Noteworthy Data Privacy and Information Security Events in 2010

Photo of Craig A. HoffmanBy Craig A. Hoffman on Posted in Behavioral Advertising, Breach Notification, Data Breach Notification Laws, Enforcement, Federal Legislation, Financial Privacy, HIPAA/HITECH, Information Security, Medical Privacy, Online Privacy
The two events that drew the most attention in 2010, both of which occurred at year-end, were reports from the FTC and the Department of Commerce.  Below is a brief summary of those two reports and other issues drawing attention in the past year: (1) FTC Issues Long-Awaited Consumer Privacy Policy Report On December 1, … Continue Reading
LexBlog