Here is a video discussion I had with LexBlog on the new
White House Data Privacy report, "Consumer Data Privacy in
a Networked World: A Framework for Protecting Privacy and Promoting
Innovation in the Global Digital Economy." In this
conversation, we discussed the report's four primary
a Consumer Privacy Bill of Rights,
a multistakeholder process to specify how the principles in the
Consumer Privacy Bill of Rights apply in particular business
effective enforcement, and
a commitment to increase interoperability with the privacy
frameworks of our international partners.
Specifically, in the Consumer Privacy Bill of Rights, it
Individual Control: Consumers have a right to exercise control
over what personal data companies collect from them and how they
Transparency: Consumers have a right to easily understandable
and accessible information about privacy and security
Respect for Context: Consumers have a right to expect that
companies will collect, use, and disclose personal data in ways
that are consistent with the context in which consumers provide the
Security: Consumers have a right to secure and responsible
handling of personal data.
Access and Accuracy: Consumers have a right to access and
correct personal data in usable formats, in a manner that is
appropriate to the sensitivity of the data and the risk of adverse
consequences to consumers if the data is inaccurate.
Focused Collection: Consumers have a right to reasonable limits
on the personal data that companies collect and retain.
Accountability: Consumers have a right to have personal data
handled by companies with appropriate measures in place to assure
they adhere to the Consumer Privacy Bill of Rights.
The content of this article is intended to provide a general
guide to the subject matter. Specialist advice should be sought
about your specific circumstances.
To print this article, all you need is to be registered on Mondaq.com.
Click to Login as an existing user or Register so you can print this article.
In last year's BakerHostetler Incident Response Report, we reported the range of PCI DSS non-compliance fines as $5,000 – $50,000 and the per card amount of liability imposed to reimburse issuers of affected cards as $3-$25.
Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C.
The Payment Card Industry Security Standards Council (PCI SSC) has released a new version of its data security standard for the protection of cardholder data, the Payment Card Industry Data Security Standard (PCI DSS).
The idea of cybersecurity may be foreign—or even frightening—to many attorneys. However, as evidenced in Part One of this series ("Cybersecurity: You Can't Afford to Ignore It Anymore," April 25) law firms appear to be the next great target for hackers. In light of that, as a risk management prevention tool, attorneys and firms need to be aware of how to protect themselves.
The academic and legal communities have long struggled with the notion of what constitutes a privacy injury giving rise to some right to legal protection – whether via legislation or regulation, or through the courts.
This service is completely free. Access 250,000 archived articles from 100+ countries and get a personalised email twice a week covering developments (and yes, our lawyers like to think you’ve read our Disclaimer).