For those who couldn’t make it last week to the CT IAPP KnowledgeNet meeting last week, held in conjunction with our friends at the Information Goverance Conference in Hartford, the slides of our present on CT’s update to its data breach notification statute and new requirements for health care agencies and companies working with CT […]
Category: Data Security
SmartEdge Presenting at IAPP KnowledgeNet on new CT data breach statute
The SmartEdgeLaw Group is happy to announce its participation in the upcoming Sept 29, 2015 IAPP KnowledgeNet to be held at the Hartford Convention Center in conjunction with the 2015 Information Governance Conference. Attendance at the KnowledgeNet is free of charge, but registration is required. IAPP members can received a 15% discount for the full InfoGovCon15 […]
SmartEdgeLaw Quoted on 3D Printing Legal Issues
SmartEdgeLaw Group Attorney was recently quoted on the legal issues and concerns for IP owners posed by the rise of 3D Printers in an article by noted technology journalist Pam Baker in InformationWeek’s article, 3D Printers: IT’s Next Great Data Challenge, available at http://www.informationweek.com/big-data/3d-printers-its-next-great-data-challenge/a/d-id/1321934. In the article Santalesa noted the difficulties that will arise regarding […]
Anatomy of a Scam – Targeting Law Firms & Attorneys
As cybersecurity attorneys we live and breath security issues – from the latest mammoth breach to perennial phishing scams. In this spectrum is a well-honed “cyber grift” that targets law firms and attorneys. As a service to our fellow attorneys we’ve put together this primer to help spot and react to such fraud attempts, which […]
SmartEdgeLaw View on FISMA 2.0 Quoted in FedTech Magazine
While data breaches at retailers and merchants get the headlines, governmental breaches – particularly on the federal level – are an all too common occurrence. According to federal watchdogs, there were 25,556 breaches of personally identifiable information in 2013, up from 10,481 in 2009. In response, SmartEdgeLaw’s opinion on the need and requirements of the […]
FTC Announces Workshop on Cross Device Tracking
Building on the FTC’s continued push into mobile issues and privacy, which it reinforced at the 2015 IAPP Global Summit in D.C. two weeks ago, the Federal Trade Commission today announced an upcoming workshop to explore the issues raised by cross device tracking – using browsers or apps to visit sites across different devices. As the FTC […]
Slew of State Data Breach Statutes in the Works
In the past two weeks we’ve reviewed proposed amendments or new data breach notification statutes from nearly a dozen states, including, Wyoming, Connecticut, Oregon, Hawaii, North Dakota, Montana, New York, and the data breach holdouts of New Mexico and Alabama. Stay tuned for our summaries. In short, though, AG notification is coming big time.
SmartEdgeLaw at IAPP Global Summit – D.C. Mar. 3-6
Richard Santalesa of the SmartEdgeLaw Group will be attending the upcoming annual International Association of Privacy Professionals’ Global Summit in Washington, D.C. from March 4 – 6th. We look forward to meeting with existing clients, our colleagues and old friends. And will be co-hosting the Northeast KnowledgeNet Meetup on Wed., Mar. 4 at 3:30 for […]
What Does That Clause Mean in State Data Breach Statutes?
In light of the President’s recent call for enactment of the Personal Data Notification and Protection Act, containing a 30-day notification deadline, it’s worth noting that at present most state breach laws require state residents to be notified “without unreasonable delay,” which strikes me as a better compromise. Only Florida (30 days), Ohio (45 days), VT (45 days) and […]
Breach Update: Home Depot Confirms 56 Million Cards Impacted
Over the past week we’ve been assisting clients in responding to the recent confirmed Home Depot breach. While information regarding the scale and scope of the breach of point-of-sale systems in the U.S. and Canada has been developing, Home Depot’s release late yesterday of an updated press release (available here), provides additional public details: 56 million […]
Client Alert: Encryption for EMV and PoS Terminals
Clients field us questions on encryption constantly: What type to use, the differences between encryption-at-rest versus in transit, what qualifies as “strong” encryption under current best practices, key management, which encryption methods meet “government” standards so as provide “reasonable security,” recommendations for encrypted email vendors… the list goes on. However, a recent story focusing on EMV cards, which […]
Global Fraud Report: Consumers Frustrated With Financial Institutions
The newly released 2014 ACI Global Fraud Survey (links at bottom) paints a dramatic picture of the global debit/credit card fraud picture – raising a litany of concerns for consumers and financial institutions. Trust? In line with the study’s name and the different behavioral and fraud levels around the world, trust remains a huge issue regarding consumers’ trust of financial […]
FTC Takes Mobile App Makers to Task – Warns About Empty Promises in Privacy Policies
A new staff report by the FTC, What’s the Deal” – A FTC Study on Mobile Shopping Apps, highlights the FTC”s continued concerns about user data and the mobile ecosphere – particularly how payment disputes are handled by developers of mobile apps in the wake of recent Apple and Amazon app issues.. Following in the wake of the […]
FFIEC Rolls Out Cybersecurity Website For Financial Institutions
The Federal Financial Institutions Examination Council (“FFIEC”) recently launched a new cybersecurity website, effectively creating another valuable resource for financial institutions when it comes to addressing cybersecurity matters. Although less well known than Federal agencies with direct oversight and regulatory authority the FFIEC “is a formal interagency body empowered to prescribe uniform principles, standards, and […]
Making a Big Data Splash – New Book Exploring Big Data Issues & Uses
The Sm@rtEdge Law Group is pleased to announce that a forthcoming book on Big Data uses, issues and stategies – Data Divination: Big Data Strategies – will be released on August 27, 2014, and is available now for pre-order on Amazon. The authors of the book consulted with our firm in detail on the legal […]