Privacy & Cybersecurity Newsletter

Locke Lord LLP
July 2015
Locke Lord’s Privacy & Cybersecurity Newsletter provides topical snapshots of recent developments in the fast-changing world of privacy, data protection, and cyber risk management. For further information on any of the subjects covered in the newsletter, please contact one of the members of our privacy and cybersecurity team.

To read the Locke Lord Privacy & Cybersecurity Newsletter, click here.

In This Issue

Data Breach Plaintiffs Bag a Win on Standing—Seventh Circuit Finds Against Neiman Marcus
In what is sure to be a widely cited data breach standing decision, the U.S. Court of Appeals for the Seventh Circuit found that increased risk of future harms from a data breach are sufficient to confer standing to sue upon affected individuals and reversed a district court’s dismissal of a putative data breach class action for lack of standing. read more

Significant Amendments to Connecticut and Nevada Breach Notifications and Data Security Laws
Nevada and Connecticut recently enacted amendments to breach notification and data security requirements that are relatively unique among existing state laws, thus imposing new compliance obligations upon companies doing business in these states, as further described in this article. read more

Identity Management: Push to Adopt Legislation Heats Up
It has taken a while for companies to realize the value of digital assets, and it is also taking a while for companies to digest the significance of digital risks. read more

"Everything Old is New Again" – Issues in Recent Cyber Insurance Litigation
Early days still for coverage litigation about cyber risks – whether under cyber insurance policies or other types of policies. read more

At Last! Canadian Breach Notification has (Almost) Arrived
June 18, 2015 marks another step forward for a country with already strong privacy laws, with the long-awaited passage of the Digital Privacy Act in Canada. read more

Addressing Public Information Act Concerns in Dealing With Governmental Entities
When dealing with a governmental entity it is important to account for the possibility that information shared with that entity may be subject to disclosure under state and/or federal open records acts (e.g., the federal Freedom of Information Act or state public information acts; collectively “PIAs”). read more

Shocking? – Insurers Consider Potential Aggregate Risks from a Power Grid Attack
In the fast-developing cyber insurance marketplace, insurers have closely considered the possible risks and have analyzed the potential aggregation of such risks. read more

Turkey Officially Permits the International Transfer of Personal Data in Telecommunications Sector
In 2012 Turkey’s telecommunications sector regulator, the Information Technologies and Communication Authority (“ICTA”), issued a new regulation on the Processing of Personal Data and Protection of Privacy in the Electronic Communications Sector (“e-Privacy Regulation”) which introduced minimum security requirements and limitations for data retention and — most important of all — prohibited the international transfer of personal data. read more