Data processing securityComputer securityLaw (Jurisprudence)Incident reportingPoliciesFederal governmentThe following report describes information security and data breach notification requirements included in the Privacy Act, the Federal Information Security Management Act, Office of Management and Budget Guidance,...
The Federal Trade Commission (FTC), having recently taken its first enforcement actions under the Health Breach Notification Rule (HBNR) it adopted in 2009,is now proposing, in a notice of proposed rulemaking (NPRM) published on June 9, 2023,significant expansions to the HBNR’s scope. As ...
Even though encryption is only an “addressable” control under the Security Rule [33], the “safe harbor” that encryption provides under the breach notification rule is increasingly making encryption a de facto requirement. An HIE needs to seriously consider encryption of data both while it is ...
Even though encryption is only an “addressable” control under the Security Rule [35], the “safe harbor” that encryption provides under the breach notification rule has made encryption a de facto requirement. An HIE needs to seriously consider encryption of data both while it is at rest (e...
The FTC, or Federal Trade Commission, is a United States federal regulatory agency designed to monitor and prevent anticompetitive, deceptive or unfair business practices. The agency pursues enforcement against unlawful business practices; shares expertise with both U.S. and international government agenc...
The Union filed a ULP charge, alleging the Agency’s notification was a failure to bargain in good faith. An Administrative Law Judge found the Union acted unlawfully as the Agency had alleged, and the Agency implemented its last, best proposal – a document that the Authority referred to in...
Retail Groups Urge Broad Preemption in Federal Data Breach Notification LegislationPaez, Mauricio
National Data Breach Notification: Federal Preeminence or Texan GovernanceRaymond O. Aghaian
Federal data breach notification standard must pre-empt state laws.Aitoro, Jill R
Law(Jurisprudence)Incident reportingPoliciesFederal governmentThe following report describes information security and data breach notification requirements included in the Privacy Act, the Federal Information Security Management Act, Office of Management and Budget Guidance, the Veterans Affairs Information ...