Hunton Privacy

JANUARY 16, 2021

The Court held that OCR’s civil monetary penalty for alleged violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy Rule and HIPAA Security Rule was “arbitrary, capricious, and otherwise unlawful.”. The United States Court of Appeals for the Fifth Circuit recently vacated a $4.3

Encryption 71

Encryption Privacy Insurance Security 71

Data Matters

DECEMBER 20, 2019

The National Association of Insurance Commissioners (the NAIC) held its Fall 2019 National Meeting (Fall Meeting) in Austin, Texas, from December 7 to 10, 2019. NAIC Advances Accreditation Standard Process for Revised Credit for Reinsurance Model Law and Regulation, and Term and Universal Life Insurance Reserve Financing Model Regulation.

Insurance 60

Insurance Risk Artificial Intelligence Privacy 60

Data Matters

DECEMBER 20, 2019

The National Association of Insurance Commissioners (the NAIC) held its Fall 2019 National Meeting (Fall Meeting) in Austin, Texas, from December 7 to 10, 2019. NAIC Advances Accreditation Standard Process for Revised Credit for Reinsurance Model Law and Regulation, and Term and Universal Life Insurance Reserve Financing Model Regulation.

Insurance 60

Insurance Risk Artificial Intelligence Privacy 60

Hunton Privacy

JANUARY 27, 2012

On January 24, 2011, Connecticut Attorney General George Jepsen and Consumer Protection Commissioner William Rubenstein announced that they had reached an Assurance of Voluntary Compliance (“AVC”) with Metropolitan Life Insurance Co.

Insurance 40

Insurance Compliance Security IT 40

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information.

Cybersecurity 67

Cybersecurity Financial Services Risk Compliance 67

Reltio

JUNE 20, 2023

At Reltio, we call this approach modern MDM, which we pioneered back in 2011 with the launch of the industry’s first cloud-native SaaS platform. Real-time and AI-driven Modern MDM: Reltio is a Leader in MDM We’re pleased to share that Reltio has been named a Leader in The Forrester Wave™: Master Data Management, Q2 2023 among 12 vendors.

MDM 98

MDM Cloud B2C B2B 98

eSecurity Planet

SEPTEMBER 14, 2022

Finance and insurance finished a close second at 22.4%. Finance and insurance companies were particularly vulnerable to the sort of phishing scams we’re talking about. Read More At: Top Secure Email Gateway Solutions for 2022. This is the same trick business professionals might use to secure a sale (i.e.

Energy and Utilities 121

Energy and Utilities Phishing Blockchain Cybersecurity 121

Thales Cloud Protection & Licensing

MARCH 6, 2018

Over in the APAC region, South Korea has had a regulation in place since 2011. appeared first on Data Security Blog | Thales e-Security. In the United States alone, companies across different industries have been following regulations to comply with privacy laws. You can also read more about GDPR on the Thales eSecurity blog.

Compliance 88

Compliance GDPR Encryption Data Privacy 88

Hunton Privacy

JULY 7, 2011

On June 16, 2011, the German Federal Ministry of the Interior officially opened a National Cyber Defense Center as part of the comprehensive cybersecurity strategy that was adopted by the German federal government on February 23, 2011. At the heart of Germany’s cybersecurity strategy is the protection of critical infrastructures.

Insurance 40

Insurance Cybersecurity Information Security Security 40

IT Governance

JANUARY 3, 2020

Canadian insurance firm Andrew Agencies struck by ransomware (unknown). Fashion rental company HURR Collective notifies users of security incident (400). China Citizen Watch finally secures 150 TB of leaking data (unknown). The NHS lost hundreds of thousands of letters between 2011 and 2016. Henry Co., Data breaches.

Data breaches 116

Data breaches Ransomware Phishing Government 116

eSecurity Planet

AUGUST 13, 2021

Since the inception of data forensics almost forty years ago, methods for investigating security events have given way to a market of vendors and tools offering digital forensics software (DFS). Under their Security Suite products, OpenText provides industry-renowned EnCase. Magnet Forensics. Paraben Corporation.

e-Discovery 139

e-Discovery Computer and Electronics Marketing Compliance 139

Hunton Privacy

MARCH 25, 2020

The Report emphasizes that existing law—including the Spanish Organic Law 3/1986 of April 14 1986 on Special Measures in Public Health Matters (as modified by Spanish Royal Decree-Law 6/2020, of March 10, 2020) or Spanish General Public Health Law 33/2011 of October 4, 2011—provides necessary legal measures to deal with health risk situations.

Personal data 75

Personal data GDPR Risk Insurance 75

Hunton Privacy

JANUARY 26, 2012

On enforcement, in both the blog post and the Information Rights Strategy document, the Commissioner affirmed the ICO’s current prioritization of action in health, credit and finance, criminal justice, Internet and mobile services, and information security.

FOIA 40

FOIA Insurance Big data Data breaches 40

Hunton Privacy

JANUARY 25, 2017

Department of Health and Human Services’ Office for Civil Rights (“OCR”) entered into a resolution agreement with MAPFRE Life Insurance Company of Puerto Rico (“MAPFRE”) relating to a breach of protected health information (“PHI”) contained on a portable storage device. submit annual compliance reports for a period of three years.

Security awareness 40

Security awareness Insurance Risk Compliance 40

DLA Piper Privacy Matters

SEPTEMBER 6, 2023

The DPDP Act will replace India’s current data protection framework, which includes relevant provisions of the Information Technology Act, 2000 and the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011. payments, insurance etc).

Personal data 111

Personal data GDPR Data breaches Compliance 111

Hunton Privacy

JANUARY 3, 2014

(“Accretive”) has agreed to settle charges that the company’s inadequate data security measures unfairly exposed sensitive consumer information to the risk of theft or misuse. Accretive experienced a breach in July 2011 that involved the protected health information of more than 23,000 patients.

Insurance 40

Insurance Information Security Risk Security 40

Hunton Privacy

AUGUST 24, 2012

(“Accretive”) for violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and its implementing regulations, and various Minnesota debt collection and consumer protection laws. million civil monetary penalty imposed against Cignet Health in February 2011.

Insurance 40

Insurance IT Privacy Security 40

eSecurity Planet

APRIL 26, 2022

Luckily for cybersecurity startups, there’s no shortage of interest in tomorrow’s next big security vendors. billion in 2021, and growing concerns over data security , software supply chains , and ransomware suggest the market will remain strong through economic ups and downs. How Do VC Firms Work? AllegisCyber Investments.

Cybersecurity 129

Cybersecurity Cloud Marketing Security 129

Hunton Privacy

JANUARY 24, 2012

This failure contributed to a July 2011 information security breach when an Accretive employee left an unencrypted laptop containing information of approximately 23,500 patients in a rental car. The laptop was stolen and has not yet been recovered.

Privacy 42

Privacy Insurance Information Security Risk 42

IT Governance

JULY 5, 2018

The Australian law firm Slater and Gordon’s ill-fated £637 million acquisition of the professional services division of the British insurance outsourcer Quindell plc in 2015 has attracted a great deal of negative attention over the past few years. of the SRA Code of Conduct 2011. Worse fines if the GDPR had been in effect.

GDPR 45

GDPR Compliance Personal data Data breaches 45

Data Matters

DECEMBER 14, 2018

The RFI seeks public input on a broad range of potential reforms to Health Insurance Portability and Accountability Act (HIPAA) regulations with a focus on enhancing care coordination.

Privacy 67

Privacy Insurance Access IT 67

Hunton Privacy

OCTOBER 31, 2011

The Committee stated in its October 18, 2011 report that the current penalties for unlawfully obtaining personal data (under Section 55 of the DPA) are an inadequate deterrent, and urged the government to exercise its power to introduce prison sentences without delay. “We

Personal data 45

Personal data Insurance Data breaches Government 45

Data Matters

MARCH 2, 2018

Securities and Exchange Commission issued interpretive guidance (the Guidance) to assist public companies in drafting their cybersecuritydisclosures in SEC filings. Like the 2011 guidance, the Guidance emphasizes that companies “should consider” the materiality of cybersecurity risks and incidents when preparing required disclosures.

Cybersecurity 60

Cybersecurity Risk Insurance Communications 60

Hunton Privacy

AUGUST 19, 2010

The definition of “employer” under the Act exempts banks, insurance companies, law enforcement agencies, debt collectors and state and local government agencies that require the use of credit history. The employee has access to personal, confidential, financial, trade secrets or state or national security information.

Privacy 40

Privacy Insurance Access Government 40

Hunton Privacy

SEPTEMBER 15, 2011

On September 12, 2011, the Department of Health and Human Services’ Office of the National Coordinator for Health Information Technology (“ONC”) unveiled a model privacy notice for personal health records (the “PHR Model Privacy Notice”).

Privacy 40

Privacy Healthcare Insurance Personal data 40

Hunton Privacy

JUNE 20, 2014

Gameover Zeus, a sophisticated type of malware that first emerged in 2011, is designed to steal banking and other credentials from the computers it infects. Security researchers estimate that approximately 25% of the 500,000 to one million computers infected worldwide are located in the United States.

Insurance 40

Insurance Encryption Risk Security 40

DLA Piper Privacy Matters

NOVEMBER 6, 2018

Mr Skelton had taken personal data (including name, address, gender, date of birth, phone number, national insurance number, bank details and salary information) relating to nearly 100,000 employees and posted it on the internet. The solution is to insure against ruinous group claims…. What compensation will be payable for distress?

Insurance 45

Insurance Data breaches Personal data GDPR 45

Data Matters

FEBRUARY 25, 2021

The FCA is proposing amendments to: the UK onshored versions of EU technical standards on strong customer authentication (SCA) and common and secure methods of communication (UK SCA-RTS); its Approach Document on Payment Services and Electronic Money (Approach Document); and. its Perimeter Guidance Manual (PERG). Temporary COVID Guidance.

Authentication 67

Authentication Paper Risk Insurance 67

Hunton Privacy

MARCH 22, 2016

million settlement with the Minnesota Attorney General for violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and its implementing regulations, and various Minnesota debt collection and consumer protection laws. In 2012, Accretive entered into a $2.5

Computer and Electronics 40

Computer and Electronics Risk Passwords Privacy 40

Data Matters

JUNE 29, 2018

identifiers such as a real name, alias, postal address, unique personal identifier, online identifier, internet protocol address, email address, account name, Social Security number, driver’s license number or passport number. 552 (2011), the U.S. Specific categories defined as personal information include. biometric information.

GDPR 79

GDPR Privacy Sales Data breaches 79

DLA Piper Privacy Matters

DECEMBER 7, 2017

The group claims that between June 2011 and February 2012 Google obtained personal information by bypassing the default privacy settings on the iPhone to install cookies in the Safari web browser. . “Google You Owe Us” – Representative Action.

Risk 40

Risk Privacy GDPR Data breaches 40

eSecurity Planet

MAY 5, 2021

These services are managed by outsourced teams of experts to help remove some of the need for dedicated onsite security staff and to decrease the amount of day-to-day work for their clients. The company currently secures $5.7 Every client receives a dedicated security advisor to streamline questions and support. Secureworks.

Cloud 58

Cloud Compliance Analytics Artificial Intelligence 58

Privacy and Cybersecurity Law

MARCH 26, 2018

The United States Securities and Exchange Commission (SEC) recently published updated interpretative guidance concerning the duty of covered public companies to disclose certain material cybersecurity risks and incidents when filing with the SEC. Summary of New Guidance.

Risk 40

Risk Cybersecurity Insurance Compliance 40

Data Matters

JUNE 29, 2018

identifiers such as a real name, alias, postal address, unique personal identifier, online identifier, internet protocol address, email address, account name, Social Security number, driver’s license number or passport number. 552 (2011), the U.S. Specific categories defined as personal information include. biometric information.

GDPR 60

GDPR Privacy Sales Data breaches 60

Robert's Db2

OCTOBER 25, 2011

Greetings from Las Vegas, Nevada, site of the 2011 IBM Information on Demand conference (aka IOD). The database is updated, backed up, and secured on the DB2 end of things (data on the IDAA can ONLY be accessed via the attached DB2 system). DB2 makes the query routing decision, so users and application programmers don't have to.

Analytics 48

Analytics Access Insurance IT 48

DLA Piper Privacy Matters

APRIL 9, 2020

In its report, the DPC noted that the ad-tech industry is subject to separate inquiries – this report is more broadly focussed on organisations across a range of sectors, including retail, entertainment, insurance, banking, public sector, media and publishing.

GDPR 59

GDPR Analytics Personal data Compliance 59

Data Matters

APRIL 23, 2018

Recent guidance from the Securities and Exchange Commission (SEC) on disclosure and enforcement actions by the Federal Trade Commission (FTC) make clear that cybersecurity is no longer a niche topic, but a concern significant enough to warrant the oversight of corporate boards of directors. Designing an Enterprise-Level Approach. Principle 5.

Cybersecurity 60

Cybersecurity Risk Passwords Authentication 60