Collaborate Disseminate
Jonathan Ishee and Amanda Ray of McGuireWoods LLP write: On May 31, 2021, the Texas Legislature approved House Bill 3746, which seeks to amend the Texas Business and Commerce Code § 521.053 relating to certain notifications required following a breach … Continue reading Texas Passes Bill Establishing “Wall of Shame” for Data Breaches
Katya Maruri reports: In a move to defend insurance consumers’ private information, Iowa Gov. Kim Reynolds has enacted a bill to set new standards related to data security, investigations and cybersecurity events for insurance companies. The bill, know… Continue reading Iowa Law Safeguards Insurance Consumers’ Private Data
Lael Bellamy and Emily Maus of DLA Piper write: Georgia’s governor has signed into law House Bill 156, creating specific notice requirements for state agencies and utilities that experience cybersecurity attacks, data breaches or malware and requiring … Continue reading Georgia’s HB 156, requiring state notice for utility cybersecurity incidents, is now in effect
Judy Harrison reports on a lawsuit stemming from the Blackbaud ransomware incident in 2020 that has been covered previously on this site. Two brothers from Holden have sued Northern Light Health over a data breach last May that left them vulnerable to … Continue reading Maine brothers sue Northern Light for sharing their info with Blackbaud
Victoria Hudgins reports: While federal lawmakers might be hesitant to enact national data privacy legislation, some states are quickly moving to define reasonable cybersecurity—and protect those that adhere to them. But even as legislators extend “saf… Continue reading As States Offer Data Breach ‘Safe Harbors,’ Not All Companies Are Receptive
Deborah George of Robinon + Cole writes: Two more state governors, those of Maine and North Dakota, have signed bills into law that adopt the National Association of Insurance Commissioners (NAIC) data security model law (Model Law). Maine and North Da… Continue reading Maine and North Dakota Are Latest States to Adopt the NAIC Data Security Model Law
Heather McArn, Bryant Roby Jr. and Judith Selby of Hinshaw write: Maine has become the latest state to adopt a version of the National Association of Insurance Commissioners (NAIC) model cybersecurity law. Signed into law on March 17, 2021, the Maine … Continue reading Maine Enacts NAIC-Inspired Cybersecurity Law
Joseph J. Lazzarotti, Jason C. Gavejian, and Maya Atrakchi of JacksonLewis write: In mid-March, Utah Governor Spencer Cox signed into law the Cybersecurity Affirmative Defense Act (HB80) (“the Act”), an amendment to Utah’s data breach notification law,… Continue reading Utah is the 2nd State to Create a Safe Harbor for Companies Facing Data Breach Litigation
Alyssa Aquino, Judith Selby, and Joanna Storey of Hinshaw write: In enacting the Cybersecurity Affirmative Defense Act, HB80, (Act) on March 11, 2021, Utah became the second state in the U.S. to create affirmative defenses for “persons” to certain caus… Continue reading Utah Becomes the Second U.S. State to Establish Affirmative Defenses for Data Breach
Tim Tobin, Harriet Pearson, Paul Otto, and Jonathan Hirsch of Hogan Lovells write: On February 4, the New York Department of Financial Services (NYDFS) released Insurance Circular Letter No. 2 (2021), a Cyber Insurance Risk Framework (Framework) for in… Continue reading New York regulator issues cyber insurance risk framework with implications for insurers and insureds