Microsoft supports regulatory efforts to simplify compliance with privacy laws globally, said Cari Benn, the company’s associate general counsel-privacy, accessibility and regulatory affairs, in an interview last week at the IAPP Global Privacy Summit. Meanwhile, as Microsoft embraces AI, it's striving to apply privacy principles to the emerging technology.
The Maine Judiciary Committee’s top Democrats unveiled a comprehensive privacy bill Tuesday that contains data minimization language similar to the Maryland Online Data Privacy Act. Judiciary House Chair Amy Kuhn (D) and Senate Chair Anne Carney (D) introduced LD-1822 with five Democratic colleagues.
A class-action lawsuit filed Tuesday against insurance company Kelly Benefits for a data breach alleges the company's negligence led to the breach and leak of sensitive information, invading individuals' privacy and violating the Health Insurance Portability and Accountability Act (HIPAA).
Privacy advocacy organizations are warning about the dangers of having the federal government collecting medical and health data from citizens after the National Institutes of Health (NIH) announced on Monday that medical records will be compiled from commercial and federal databases as part of an autism study.
The U.S. Department of Health and Human Services (HHS) Office for Civil Rights (OCR) announced a $600,000 settlement with California health care network PIH Health, Inc. (PIH) Wednesday over a phishing attack that allegedly exposed electronic protected health information (ePHI) of almost 200,000 individuals.
Though Rhode Island lawmakers seemed in agreement about the importance of protecting data about reproductive health, sexual health, and gender-affirming care, some asked if a comprehensive health bill offering protection of all health data would better serve state residents during a hearing Wednesday in the House Health and Human Services Committee.
Privacy Daily is providing readers with the top stories from last week, in case you missed them. All articles can be found by searching on the title or by clicking on the hyperlinked reference number.
The Connecticut Attorney General recommends that lawmakers bolster the Connecticut Data Privacy Act (CTDPA) by scaling back exemptions, lowering thresholds of applicability, strengthening data minimization provisions, clarifying definitions and increasing protections for minors’ data, it said in a report. In addition, the report, released Thursday, recommends halting targeted advertising to children and teens and selling their personal data.
A Virginia reproductive data privacy law taking effect July 1 covers many companies, poses significant compliance challenges and contains a private right of action, privacy attorneys warned last week. In addition, while many believe Virginia has one of the more business-friendly comprehensive privacy laws, the purple state’s narrower new law requires a higher consent standard than blue Washington state’s My Health My Data Act (MHMDA), they said.
“Sports teams must navigate a complex network of privacy laws that govern athlete health data," Orrick attorneys blogged Wednesday.