By Anna Kraus
As we reported previously, the Department of Health and Human Services (HHS) Office of Inspector General (OIG) recently issued two reports that highlight continuing concerns over how best to ensure the privacy and security of electronic health information. Earlier this week, we provided more detail on the OIG’s report regarding CMS…
The Children’s Online Privacy Protection Act (“COPPA”) provides a safe harbor for companies that comply with FTC-approved self-regulatory guidelines. Since COPPA’s enactment, the FTC has approved proposals submitted by CARU, ESRB, TRUSTe, and Privo, Inc.
Aristotle, which operates the Integrity suite of age and identity verification services, recently filed an application with the FTC to become an FTC-approved safe harbor program. …
By Anna Kraus
In a previous post, we highlighted two reports recently issued by Department of Health and Human Services (HHS) Office of Inspector General (OIG), which criticize HHS’s oversight of health information privacy and security. In today’s post, we provide greater detail regarding one of those reports (Nationwide Rollup Review of the…
Today, in a 6-3 decision, the U.S. Supreme Court struck down a Vermont law restricting the sale, disclosure, and use of pharmacy records that reveal the prescribing practices of individual doctors. In so holding, the Supreme Court found that speech in aid of pharmaceutical marketing is a form of expression protected by the First…
In light of the number of privacy and data security-related bills currently being considered by Congress, we thought it might be helpful to provide a roundup of the legislation introduced or circulated to date:
Comprehensive privacy legislation:
…
by Katie Keith
On June 16, 2011, the United States Chamber of Commerce organized a forum for business leaders addressing challenges to the free flow of electronic commercial information. Panelists included academics, government officials, and policy and privacy directors from Google, AT&T, GE, Citigroup, and IBM. The event was moderated by leaders from the Commerce…
In 2009, Directive 2002/58/EC, the so-called ePrivacy Directive, was amended. The deadline for EU Member States to implement the revised Directive in their national laws was May 25, 2011, but very few Member States met the deadline and even today, almost one month after the deadline, discussions remain ongoing in most national parliaments. The implementation efforts…
by David Fagan, Libbie Canter, and Josephine Liu The House Subcommittee on Commerce, Manufacturing and Trade held a hearing yesterday on draft data security legislation authored by Chairwoman Mary Bono Mack (R-CA). The hearing was very well attended with significant substantive engagement by Subcommittee members on both sides of the aisle — an indication that…
Earlier this week the European group of national data protection authorities, collectively the Working Party 29 (“WP 29”), released a new opinion on data protection issues relating to the prevention of money laundering and terrorist financing. The new paper features a slew of new recommendations from the WP 29 that are designed to enhance privacy…
Originally published as Covington E-Alert on June 15, 2011
The U.K. Department for Business, Innovation and Skills (BIS) has recently issued the final version of its guidance on the Agency Workers Regulations 2010, which implement Directive 2008/104/EC.
The Regulations come into force on 1 October 2011, and will entitle agency workers (or “temps”) to the…
