This post was written by Timothy J. Nagle.
The year-long process – led by the National Institute of Standards and Technology (NIST) and the Department of Homeland Security (DHS) – of conducting outreach to the private sector, issuing drafts, receiving and evaluating input, and facilitating interagency coordination, ended with the publication last week of
This post was written by Cynthia O’Donoghue
High Court Judge Mr Justice Michael Tugendhat has declared in the case Vidal-Hall & Ors v Google Inc. [2014] EWHC 13 (QB) (16 January 2014) that infamous U.S. corporation Google Inc. (‘Google’) will face the scrutiny of the UK courts in a privacy claim brought by three
On February 4, the Ninth Circuit ruled that a plaintiff need not show actual harm to have standing to sue under the Fair Credit Reporting Act (FCRA); a violation of the statutory right is a sufficient injury in fact to confer standing. The case, Robins v. Spokeo, Inc., may open the door for plaintiffs to
This post was also written by David Z. Smith and Carolyn H. Rosenberg.
In the wake of its massive data breach, Target now faces a shareholder derivative lawsuit, filed January 29, 2014. The suit alleges that Target’s board members and directors breached their fiduciary duties to the company by ignoring warning signs that such
This post was written by Daniel Kadar.
French health care companies have faced hard times over the past months with their new transparency obligations. They have been required to declare the equivalent of 18 months (!) of agreements and benefits in a very short period of time.
They were scheduled to disclose this information
This post was written by Cynthia O’Donoghue.
A judgement of the Upper Tribunal of the UK Information Rights Tribunal (the Tribunal), in the case of Central London Community Healthcare Trust v Information Commissioner [2013] UKUT 0551 (AAC), has ruled that organisations which voluntarily report incidents of data security breaches to the ICO do
This post was written by Cynthia O’Donoghue.
The First Tier Tribunal (Information Rights) granted appeal against a monetary penalty notice of £300,000 issued by the Information Commissioner in the case of Christopher Niebel v The Information Commissioner (EA/2012/2060), ruling that the penalty notice should be cancelled.
The monetary penalty notice had been
This post was written by Cynthia O’Donoghue.
The UK High Court was forced to re-examine the concept of ‘personal data’ in the recent case of Kelway v The Upper Tribunal, Northumbria Police and the Information Commissioner (2013) EWHC 2575 (Admin). The case involved an application for judicial review by Dr Kelway against two
This post was written by Cynthia O’Donoghue.
Spain’s constitutional court, the Tribunal Constitucional, made a landmark ruling in the case of Pérez González v. Alcaliber S.A. in early October, finding that companies are permitted to access and monitor employee communications via company IT resources, including emails and texts, as part of investigations into employee
This post was written by Cynthia O’Donoghue.
The Privacy (Giving Privacy Commissioner Necessary Tools) Amendment Bill that would have given greater powers of control to the New Zealand data protection authority, the Office of the Privacy Commissioner (the DPA), has been blocked by a negative vote in New Zealand Parliament.
The draft bill proposed