Tag Archives: Data Privacy

California Enacts Sweeping Privacy Legislation

Earlier this year, after Facebook was sued in a securities class action following news that it had given access to personal user information to Cambridge Analytica, I questioned whether privacy issues might represent the next big corporate liability exposure. Among other things, in making this suggestion, I was taking into consideration that fact that the … Continue Reading

Do Privacy Issues Represent the Next Big D&O Liability Exposure?

For some time, observers (including me) have been discussing the extent to which the rising numbers of corporate data breaches would translate into to D&O litigation. There of course have been some data breach-related D&O lawsuits;  indeed, plaintiffs’ lawyers have recently for the first time managed to secure some success with these kinds of suits … Continue Reading

Sixth Circuit: Data Breach Victims’ Heightened Risk of Future Harm Establishes Article III Standing

One of defendants’ most significant arguments in opposing data breach victims’ negligence and breach of privacy claims has been that the claimants that have not suffered actual fraud or identity theft can show no cognizable injury and therefore lack Article III standing to assert their claims. Appellate decisions in the Seventh and Ninth Circuit have previously taken … Continue Reading

Federal Agencies Joining the Data Security Enforcement Action Bandwagon

Until now, the primary federal agency regulating data security has been the Federal Trade Commission. Indeed, in August 2015, the Third Circuit in the Wyndham Worldwide case affirmed the FTC’s regulatory enforcement authority against companies failing to take appropriate action to protect consumer financial information. However, other federal regulatory agencies are now increasing asserting their … Continue Reading

Book Review: A Cybersecurity Guide for Corporate Directors and Officers

We are long past the point where cybersecurity can be treated like an emerging, obscure or peripheral issue. The fact is that cybersecurity is now an important concern for every organization and enterprise. For that reason, cybersecurity is also now an important concern for everyone responsible for protecting and guiding those organizations and enterprises, including … Continue Reading

Guest Post: SEC’s Regulatory Action Against R.T. Jones: Did the Other Cybersecurity Shoe Just Drop?

On September 22, 2015, in what has been described as the SEC’s first cybersecurity-related enforcement action, the SEC announced that it had entered a settlement St. Louis-based investment advisor R.T. Jones Capital Equities Management, Inc., based on charges that the company had failed to establish the required cybersecurity policies and procedures in advance of a breach … Continue Reading

Third Circuit: FTC May Pursue Data Breach Enforcement Action against Wyndham Worldwide

On August 24, 2015, in a ruling that was much-anticipated because of its potential implications for the regulatory liability exposures of companies that have been hit with data breaches, the Third Circuit affirmed the authority of the Federal Trade Commission to pursue an enforcement action against Wyndham Worldwide Corp. and related entities alleging that the … Continue Reading

Guest Post: Courts Uphold California Privacy Claims Despite Vague Allegations: Opening The Litigation Floodgates?

Among the many concerns that arise whenever unauthorized appropriation or use of consumer data occurs is the possible violation of the consumers’ privacy that the access may represent. In numerous cases, aggrieved parties have tried to assert claims for these alleged privacy violations, but by and large these attempts have not been successful. However, as … Continue Reading

Guest Post: Cyber Security and Cyber Governance: Federal Regulation and Oversight – Today and Tomorrow

It seems that every day there is yet another story in the business pages about a significant data breach at a major company. Cybersecurity is an increasingly important topic for companies and their shareholders, and the problems with cybersecurity are an increasing concern in Washington as well. In the following guest post Paul A. Ferrillo … Continue Reading

District Court Upholds FTC’s Authority to Bring Data Breach Enforcement Action

It is a dangerous world out there. Among many other things, companies and other organizations are increasingly vulnerable to data security attacks from would-be hackers. Indeed, an April 8, 2014 New York Times article entitled “Hackers Lurking in Vents and Soda Machines” (here) notes that “companies scrambling to seal up their systems from hackers and … Continue Reading

Data Privacy and Security: The “Stealth Issue” of 2010?

Data security and privacy could be the "stealth issue of 2010," according to a recent report. Despite the intense focus on financial and related issues during the current economic crisis, a variety of legislative and regulatory initiatives suggest that data privacy and security issues necessarily will become a top corporate priority. These developments have important … Continue Reading
LexBlog