Depending on the new Commission’s level of ambition when it takes office in the Autumn, this week’s European Court of Justice preliminary ruling (Cases C-293/12 and C-594/12), which found a 2006 Directive invalid, could prove an opportunity to re-think the EU approach to privacy and protecting personal data.
The only certainty about Heartbleed is the uncertainty about how much data was actually exposed and what the fallout might be.
LabMD is not the only company that has tried to buck the FTC’s assertion of authority over data security breaches.
In a significant move, the Court of Justice of the European Union (CJEU) has ruled that the Data Retention Directive 2006/24/EC (Directive) is invalid.
A bill has been introduced in the California legislature that would dramatically increase retailers’ liability for data breaches.
Opinion of the European Data Protection Supervisor — Bridging EU Data Protection with Competition Law?
On March 26, the European Data Protection Supervisor (“the Supervisor”) issued a preliminary opinion (“the opinion”) on the interplay between data protection, competition law and consumer protection in the Digital Economy.
Norton Rose Fulbright recently released the results of their 9th annual litigation trends survey.
Hardly a day passes now without some new report of a security vulnerability with inevitable breaches that follow, but Monday’s news about the two-year old vulnerability in OpenSSL is (or should be) catching everyone’s attention.
Because the healthcare community relies upon encryption to safeguard e-Protected Health Information (ePHI), vulnerability to the underlying security of any encryption code is potentially devastating.
The European Court of Justice has issued a decision that appears to broaden the legal protection accorded to databases, finding that data scraping by dedicated meta search engines infringes the rights of the database creator in certain circumstances.