Presentation is loading. Please wait.

Presentation is loading. Please wait.

© 2014 Nelson Brown Hamilton & Krekstein LLC. All Rights Reserved PRIVACY & DATA SECURITY: A LEGAL FRAMEWORK MOLLY LANG, PARTNER, NELSON BROWN & CO.

Published bySharon Catt Modified over 9 years ago

Similar presentations

Presentation on theme: "© 2014 Nelson Brown Hamilton & Krekstein LLC. All Rights Reserved PRIVACY & DATA SECURITY: A LEGAL FRAMEWORK MOLLY LANG, PARTNER, NELSON BROWN & CO."— Presentation transcript:

1 © 2014 Nelson Brown Hamilton & Krekstein LLC. All Rights Reserved PRIVACY & DATA SECURITY: A LEGAL FRAMEWORK MOLLY LANG, PARTNER, NELSON BROWN & CO.

2 FOCUSED ON THE BUSINESS OF INSURANCE Federal Industry State

3 FOCUSED ON THE BUSINESS OF INSURANCE FEDERAL LAWS FTC Act Gramm- Leach- Bliley Act HIPAA

4 FOCUSED ON THE BUSINESS OF INSURANCE State Laws Consumer Protection Statutes and Regulations GLBA and HIPAA Add-Ons Social Security Number Laws Record Disposal Laws Data Security Laws Breach Notification Laws

5 FOCUSED ON THE BUSINESS OF INSURANCE Data Security Laws What Is Regulated? Personally Identifiable Information Name  Address  Email  Phone  SS# xxx-xx-xxxx Drivers License  Credit Card #  Access Info 

6 FOCUSED ON THE BUSINESS OF INSURANCE Data Security Laws Who Is Regulated? Businesses that own, license, store or maintain PII about MA residents. Mass. Reg. Code tit. 201 § 17.01 Operators of commercial websites, online services and mobile apps that collect PII about CA residents who use or visit the website or service. Cal. Bus. & Prof. Code § 22575(a)

7 FOCUSED ON THE BUSINESS OF INSURANCE Data Security Laws How Is It Regulated? Cal. Bus. & Prof. Code § 22575(b) Conspicuous Posting of Online Privacy Practices Identify PII Collected Categories of Third Parties With Whom PII Shared Explain How Consumer Can Review PII and Make Changes Explain How Consumer Will Be Notified if Privacy Policy Changes Do Not Track Mechanism

8 FOCUSED ON THE BUSINESS OF INSURANCE Data Security Laws How Is It Regulated? Comprehensive Written Information Security Program/Reasonable Security Procedures and Practices Technical Security Controls Ongoing Monitoring of Systems for Unauthorized Use

9 FOCUSED ON THE BUSINESS OF INSURANCE Breach Notification Laws Risk of Harm Threshold Format of Records Content of Letters Notice to Government Timing of Notification Liability for Failure to Comply

10 FOCUSED ON THE BUSINESS OF INSURANCE CURRY V. AVMED INC.  $ Compensation for victims of a data breach without requiring them to show actual economic loss from theft of personal data Unjust enrichment cause of action 2 corporate laptops stolen containing unencrypted information

11 FOCUSED ON THE BUSINESS OF INSURANCE Best Defense Against Breaches Strong Security Program Mandatory training for all employees Additional training for select employees GPS tracking capabilities Password protocols Physical security upgrades Update written data security policies and procedures

12

Download ppt "© 2014 Nelson Brown Hamilton & Krekstein LLC. All Rights Reserved PRIVACY & DATA SECURITY: A LEGAL FRAMEWORK MOLLY LANG, PARTNER, NELSON BROWN & CO."

Similar presentations

Data Privacy and Security in the Cloud Presented by Robert J. Scott Managing Partner Scott & Scott, LLP www.ScottandScottllp.com.

Data Privacy and Security in the Cloud Presented by Robert J. Scott Managing Partner Scott & Scott, LLP
Property Inventory Valuation Replacement Cost Value The amount it would take to replace property with like property of the same quality and construction.

Property Inventory Valuation Replacement Cost Value The amount it would take to replace property with like property of the same quality and construction.
Copyright © 2012, Big I Advantage®, Inc., and Swiss Re Corporate Solutions. All rights reserved. (Ed. 08/12 -1) E&O RISK MANAGEMENT: MEETING THE CHALLENGE.

Copyright © 2012, Big I Advantage®, Inc., and Swiss Re Corporate Solutions. All rights reserved. (Ed. 08/12 -1) E&O RISK MANAGEMENT: MEETING THE CHALLENGE.
© Chery F. Kendrick & Kendrick Technical Services.

© Chery F. Kendrick & Kendrick Technical Services.
©2008 Perkins Coie LLP Game Industry Roundtable Privacy Developments for the Game Industry Thomas C. Bell September 24, 2008.

©2008 Perkins Coie LLP Game Industry Roundtable Privacy Developments for the Game Industry Thomas C. Bell September 24, 2008.
Cyber Liability- Risks, Exposures and Risk Transfer for a Data Breach June 11, 2013.

Cyber Liability- Risks, Exposures and Risk Transfer for a Data Breach June 11, 2013.
Privacy Laws & Higher Education. Agenda 1.Five Privacy Laws a.FERPA b.HIPAA c.GLB d.FACTA Disposal Rule e.CAN-SPAM 2.Overview of the Laws a.What does.

Privacy Laws & Higher Education. Agenda 1.Five Privacy Laws a.FERPA b.HIPAA c.GLB d.FACTA Disposal Rule e.CAN-SPAM 2.Overview of the Laws a.What does.
The Financial Modernization Act of 1999, also known as the Gramm-Leach-Bliley Act (GLBA) UNDERSTANDING AND DEVELOPING A STRATEGIC PLAN TO BECOME COMPLIANT.

The Financial Modernization Act of 1999, also known as the Gramm-Leach-Bliley Act (GLBA) UNDERSTANDING AND DEVELOPING A STRATEGIC PLAN TO BECOME COMPLIANT.
Protecting Personal Information Guidance for Business.

Protecting Personal Information Guidance for Business.
I.D. Theft Alaska’s New Protection of Personal Information Act Ed Sniffen Senior Assistant Attorney General Alaska Department of Law.

I.D. Theft Alaska’s New Protection of Personal Information Act Ed Sniffen Senior Assistant Attorney General Alaska Department of Law.
Helping you protect your customers against fraud Division of Finance and Corporate Securities.

Helping you protect your customers against fraud Division of Finance and Corporate Securities.
© 2015 Sherman & Howard L.L.C. TO B OR NOT TO B YOD Emily Keimig, Esq. 303-299-8240

© 2015 Sherman & Howard L.L.C. TO B OR NOT TO B YOD Emily Keimig, Esq
PRIVACY BREACHES A “breach of the security of the system”: –Is the “unauthorized acquisition of computerized data that compromises the security, confidentiality,

PRIVACY BREACHES A “breach of the security of the system”: –Is the “unauthorized acquisition of computerized data that compromises the security, confidentiality,
Those Other Laws Dino Tsibouris Attorney at Law 2006 NCHELP FALL TRAINING CONFERENCE.

Those Other Laws Dino Tsibouris Attorney at Law 2006 NCHELP FALL TRAINING CONFERENCE.
KDE Employee Training. What IS a Data Breach? Unauthorized release (loss or theft) of Sensitive or Confidential Data, such as PII, PHI, etc. On site or.

KDE Employee Training. What IS a Data Breach? Unauthorized release (loss or theft) of Sensitive or Confidential Data, such as PII, PHI, etc. On site or.
Computers, Freedom and Privacy April 23, 2004 Identity Theft: Addressing the Problem in California Joanne McNabb, Chief CA Office of Privacy Protection.

Computers, Freedom and Privacy April 23, 2004 Identity Theft: Addressing the Problem in California Joanne McNabb, Chief CA Office of Privacy Protection.
Section 6.3 Protecting Your Credit. Billing Errors and Disputes Notify your creditor in writing Notify your creditor in writing Pay the portion of the.

Section 6.3 Protecting Your Credit. Billing Errors and Disputes Notify your creditor in writing Notify your creditor in writing Pay the portion of the.
Financial Data Protection and Consumer Notification of Data Security Breach Act of 2006 Sara Juster, JD Vice President/Corporate Compliance Officer Nebraska.

Financial Data Protection and Consumer Notification of Data Security Breach Act of 2006 Sara Juster, JD Vice President/Corporate Compliance Officer Nebraska.
© Chery F. Kendrick & Kendrick Technical Services.

© Chery F. Kendrick & Kendrick Technical Services.
An Act Relative to Security Freezes and Notification of Data Breaches Chapter 82 of the Acts of 2007 Massachusetts Digital Government Summit Securing Private.

An Act Relative to Security Freezes and Notification of Data Breaches Chapter 82 of the Acts of 2007 Massachusetts Digital Government Summit Securing Private.

Similar presentations

Ads by Google