Tag Archives: breach notification

California Amends Breach Notice Law; Requires Notice to State AG

Earlier this week, California Governor Jerry Brown signed into law an amendment to California’s breach notice law (S.B. No. 24).  Former Governor Arnold Schwarzenegger vetoed similar legislation in 2008, 2009, and 2010.  As Inside Privacy noted when the legislation first moved through the California Senate on April 14, the legislation will amend California’s existing security … Continue Reading

House Subcommittee Approves Bono Mack Breach Notification Legislation

By David Fagan and Libbie Canter Yesterday, the House Subcommittee on Commerce, Manufacturing, and Trade voted to report the Secure and Fortify Electronic Data Act (H.R. 2577) — the SAFE Data Act — to the full House Energy & Commerce Committee, moving the legislation one step closer to passage. The legislation creates a national breach … Continue Reading

Flurry of Privacy Bills Introduced in Congress; More to Come?

In light of the number of privacy and data security-related bills currently being considered by Congress, we thought it might be helpful to provide a roundup of the legislation introduced or circulated to date: Comprehensive privacy legislation: BEST PRACTICES Act, H.R. 611 (Rep. Rush): introduced Feb. 10, 2011.  Referred to the House Subcommittee on Commerce, … Continue Reading

Illinois Bill Would Require Specific Contents for Breach Notification Letters

The Illinois legislature has passed a bill that would require data owners to include specific information in a letter notifying an Illinois resident of a data breach affecting that resident’s personal information.  The bill, which still must be signed by Governor Pat Quinn, would require notice letters to include “(i) the toll-free numbers and addresses … Continue Reading

Rep. Bono Mack Will Introduce Data Security Legislation; Hearing Scheduled for May 4

Members of a key committee in the House have announced their intention to introduce data security legislation in the near future.  In a statement released Wednesday, Rep. Mary Bono Mack, who chairs the House Subcommittee on Commerce, Manufacturing and Trade, cited the recent Sony Playstation breach in calling for congressional legislation.  The subcommittee chaired by Rep. … Continue Reading

HHS Announces $1 Million HIPAA Settlement

Two days after imposing the first-ever civil money penalty for HIPAA violations, the Office for Civil Rights (OCR) within the Department of Health and Human Services (HHS) announced that Massachusetts General Hospital (Mass General) has agreed to pay $1 million to settle potential violations of the HIPAA Privacy Rule. OCR initiated an investigation of Mass … Continue Reading

Report: Over 6 Million Individuals Affected by PHI Breaches Since August 2009

A total of 225 breaches of protected health information (PHI) affecting 6,067,751 individuals have been recorded since the HIPAA breach notification rule was issued in August 2009 pursuant to the HITECH Act, according to a report by Redspin, a provider of HIPAA risk analysis and IT assessment services. According to the report: Single breaches affecting … Continue Reading