Tag Archives: security

Game On: Addressing Security Challenges in the E-Sports Industry

By Benjamin Wanger and Seungjae Lee on July 30, 2021 Posted in E-Sports

The emergence of e-sports is no longer news. According to industry reports, the global e-sports industry created over $950 million in total revenue in 2020, and experts expect that number to grow to $1.6 billion by 2023. While the sports industry is struggling to stay afloat amid a global pandemic, e-sports has seized the moment … Continue Reading

Do You Need a Chief Digital Risk Officer (or Digital Risk Working Group)?

By Craig A. Hoffman on August 6, 2018 Posted in Data Security Incident Response

Axioms are common in the privacy and security space. One that has been popping up with more frequency is “privacy and security is an enterprise risk that requires an enterprise-wide effort to appropriately address.” It is easy to say, hard to execute and absolutely necessary.… Continue Reading

Colorado Enacts Sweeping Changes to Data Breach Reporting Requirements and Adds New Data Security Requirements

By David M. Brown on May 31, 2018 Posted in Data Breach Notification Laws, State Legislation

Colorado’s Gov. John Hickenlooper signed a bill that significantly strengthens its current data breach notification requirements and adds new measures designed to enhance protections for consumer data privacy. The new law will go into effect on Sept. 1, 2018. Disposal of personal identifying information As previously discussed here (while the bill was in committee), HB18-1128 … Continue Reading

Federal Trade Commission Joins with Industry Experts to Provide Start-Ups and Developers with Practical Advice at “Start with Security” Conference

By James A. Sherer on August 24, 2015 Posted in Enforcement

The FTC has a history of offering practical advice to organizations and consumers to protect against security threats and related concerns, and is continuing this practice with the upcoming – and very first – “Start with Security” conference, taking place at the University of California’s Hastings College of the Law on September 9, 2015. The … Continue Reading

Explaining the Implications for Merchants of EMV and the Liability Shift

By Craig A. Hoffman on May 18, 2015 Posted in Data Breaches

The EMV liability shift is coming. Sounds ominous, but what does it really mean? And how can retailers and merchants determine the potential impact of the shift on their business? Like many issues in the payment card industry, there is confusion and misunderstanding. Through an FAQ format, we cover the basics and address some of … Continue Reading

Time for an Updated Cyber Risk Approach; BPI Data Breach

By BakerHostetler on February 18, 2015 Posted in Cybersecurity

Authored by Judy Selby and George Viegas* Our traditional approach to cyber risk and security has been focused on privacy and financial data. The data breach or loss concerns that typically rank high on our risk ratings are private and confidential data like names and social security numbers with other identifying non-public information and financial data … Continue Reading

National Highway Traffic Safety Administration Considers Privacy Implications for New Vehicle-to-Vehicle Technology

By Charles Shih on October 6, 2014 Posted in Federal Legislation, Geolocation

The Department of Transportation’s National Highway Traffic Safety Administration (“NHTSA”) announced in 2014 that it would begin steps toward implementing vehicle-to-vehicle (“V2V”) technology with an aim toward decreasing the number of traffic accidents on the nation’s roads. V2V technology allows communication between cars on the road to alert drivers of potential accident situations. However, with … Continue Reading

Get Ready! HHS OCR Announces Next Round of HIPAA Audits

By Kimberly M. Wong on March 16, 2014 Posted in Enforcement, HIPAA/HITECH, Medical Privacy

To combat new risks associated with rapidly evolving health information technology, the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (HITECH) provides standards for the privacy of protected health information (PHI), the security of electronic protected health information (ePHI), and breach notification to individuals. HITECH … Continue Reading

MMA Releases Mobile Application Privacy Policy

By Craig A. Hoffman on October 30, 2011 Posted in Behavioral Advertising, Information Security

On October 17, in furtherance of their continued support for self-regulation of online behavioral advertising, the Mobile Marketing Association released the MMA Mobile Application Privacy Policy for public comment. The policy is intended to spark self-regulation of privacy and data processing of mobile applications. The policy was created with the input of a committee of market … Continue Reading