Posted by: Aaron Titus
on Jan 9, 2010
Tagged in: Untagged
Note: This post originally appeared on The Security Catalyst Blog
Posted by: Aaron Titus
on Dec 15, 2009
Tagged in: Untagged
This is part 3 of highlights from the FTC’s December 7th Privacy Roundtable. Part 1 covered the panel on "Exploring Existing Regulatory Frameworks," and Part 2 covered the panel on "Benefits and Risks of Collecting, Using, and Retaining Consumer Data" This post highlights comments from "Consumer Expectations and Disclosures" and "Information Brokers."
Posted by: Aaron Titus
on Dec 8, 2009
The FTC’s December 7th Privacy Roundtable assembled a Who’s Who of privacy luminaries, academics, advocates, and industry players. This post highlights some of the more interesting comments from the meeting. I also tweeted the event (@aarontitus, #FTC #Privacy or #ftcpriv) and the FTC has posted the webcast if you missed it. The next Roundtable is scheduled for January 28, 2010 in Berkeley, CA and will also be broadcast online.
Posted by: Aaron Titus
on Dec 3, 2009
Tagged in: Untagged
Yesterday the New Jersey Supreme Court heard arguments in the Stengart v. Loving Care Agency, Inc. case. The issue is whether the New Jersey attorney-client privilege is preserved, when an employee e-mails her attorney from a personal email account, on a company computer.
The first reaction from most lawyers is, "yikes, I hope so."
Posted by: Aaron Titus
on Oct 7, 2009
Tagged in: Untagged
Aaron Titus will be presenting at the International Conference on Applied Modeling & Information Security Systems (ICAMISS) on October 10, 2009 at the University of Alabama, Birmingham.
Posted by: Aaron Titus
on Oct 5, 2009
Tagged in: Untagged
The FTC announced today new guidelines requiring bloggers to disclose when they receive free products which they subsequently endorse. Adopted by a vote of 4-0, this is the first update of the FTC's Guides Concerning the Use of Endorsements and Testimonials in Advertising in 29 years. The rules go into effect on December 1, 2009.
Posted by: Aaron Titus
on Sep 19, 2009
Tagged in: Untagged
The department of Health and Human Services (HHS) and the FTC have issued a new interim final rule governing health information breach notification requirements. I blogged on this issue back in March 2009, just after the stimulus package, American Recovery and Reinvestment Act of 2009 (ARRA), passed.
Posted by: Aaron Titus
on May 19, 2009
This brief analyzes more than 40 United States Breach Notification laws, the American Recovery and Reinvestment Act, and compares those requirements with EU Directives 2002/58/EC, 2002/21/EC, and the Data Protection Working Party Opinion 1/2009 on 2002/58/EC proposed amendments. This brief does not address individual EU member states' implementations of EU Directives 2002/58/EC and 2002/21/EC.
Posted by: Aaron Titus
on Mar 18, 2009
“We’ve had a breach.” It’s a sentence nobody wants to hear, but when it happens to you, what to you do? If you’re in the healthcare industry, new federal regulations probably require you write a letter to the victims of the breach, or more. When and how quickly do you have to send a HIPAA/ ARRA notification? And what does it have to say?
Posted by: Aaron Titus
on Feb 4, 2009
ZD Net reports that the cost of a data breach has gone up 2.5% from 2007, according to research published by the Ponemon Institute.
