Years ago you would only read about a data breach once in a blue moon – it was the rare exception. Fortunately, it continues to be the rare exception, but as the world has moved to become fully digital, the frequency of significant data breaches is no longer like finding a four-leaf clover. Every business…
Read more
Privacy – Summary of InfoSec Policy Issues
While many businesses believe that they have adequate procedures in place to protect their own confidential information or that of their clients/customers, most do not. Rather, they merely have a section in their employee handbook on confidentiality, and maybe require their employees to sign confidentiality or non-disclosure agreements. Generally, such provisions are not sufficient to…
Read more
General Data Protection Regulation
Starting next year, there will be new and stringent data protection laws in place in the European Union (“EU”) and the European Economic Area (“EEA”) – laws which may have a material impact on business located in the United States. Effective as of May 25, 2018, the new General Data Protection Regulation (“GDPR”) will apply…
Read more
Delaware Enacts Comprehensive Online Privacy Protection Law: Is Your Business Compliant?
The Delaware Online Privacy and Protection Act (“DOPPA”) became effective on January 1, 2016. This new law requires compliance in three major areas: (1) conspicuous posting of a compliant privacy policy; (2) advertising and marketing to children; and (3) enhancing the privacy protections of users of digital books (“e-books”). Why should a business be concerned…
Read more