Privacy & Cybersecurity Newsletter

July 2016

Locke Lord’s Privacy & Cybersecurity Newsletter provides topical snapshots of recent developments in the fast-changing world of privacy, data protection, and cyber risk management. For further information on any of the subjects covered in the newsletter, please contact one of the members of our privacy and cybersecurity team.

To read the Locke Lord Privacy & Cybersecurity Newsletter, click here.

In This Issue

General Data Protection Regulation Update
As reported in the April Locke Lord Privacy & Cybersecurity Newsletter, the European Parliament gave the final approval to the General Data Protection Regulation (GDPR) on April 14, 2016. read more

Vermont Passes Additional Privacy Protections in Light of Changing Technologies
Vermont has recently enacted legislation to directly limit how information may be collected and used by government entities using drones, through access to electronic communications, and through automated license plate recognition technology. read more

No Pictures, Please! Workplace Anti-Recording Policies and the NLRA
Most people in modern workplaces carry high definition video cameras in their pockets. read more

Charge! Coverage Disputes Over Credit Card Issuer Assessments and Bank Lawsuits
Costs commonly associated with retail data breaches include notification to affected consumers, third-party lawsuits by alleged victims, and reimbursements for fraudulent charges. read more

Illinois Simplifies Cumbersome Insurer Record Retention and destruction Requirements
The Illinois Department of Insurance (IL DOI) has amended its record disposal and destruction regulation effective May 23, 2016, significantly reducing reporting, book-keeping and retention obligations for Illinois domestic insurers, as well as any principal U.S. office of a foreign or alien insurer located in Illinois. read more

Recent UK Information Commissioner's Office (ICO) Fines and Investigations
On June 8, 2016, the ICO raided a house in Sheffield in the belief that residents of the property were illegally selling personal data to marketing companies, which then use the personal data to make nuisance calls. read more

U.S.-EU Privacy Shield Update
In the February Locke Lord Privacy & Cybersecurity Newsletter, we reported on the announcement of the new U.S.-EU Privacy Shield by the EU authorities and the U.S. Federal Trade Commission on February 2, 2016 and on the publication by the European Commission of the draft “adequacy decision” and draft texts intended to constitute the Privacy Shield. read more

EEOC Update: New Wellness Program Regulations Create New Employer Obligations
New technologies and increased awareness of health-related costs continue to drive growing use of employee wellness programs, which can provide significant benefits to employers and employees alike. read more

Increasing Necessity for a HIPAA Compliant "Business Associate Agreement" Within the Technology Industry
In recent years, the scope of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and implementing regulations has expanded dramatically, presenting new privacy and information security challenges to technology businesses intersecting with health care. read more