Hunton Andrews Kurth writes: On March 18, 2024, the UK Information Commissioner’s Office (“ICO”) published new data protection fining guidance on how the ICO determines penalties and calculates fines. The guidance was subject to a consultation process in 2023, and covers a variety of topics and considerations relevant to penalties and fines, including: The ICO’s approach to…
Author: Dissent
Biometric Privacy Fines in Illinois Would Be Tamed in State Bill
Brenna Goth reports: Illinois lawmakers are working to curb potential damages under the state’s biometric privacy law for companies that don’t secure written permission first to collect fingerprints, face scans, and other data. A measure advancing in the state legislature seeks changes to the Biometric Information Privacy Act, or BIPA, which allows private lawsuits over violations. The…
Kate Middleton security ‘breach’ as hospital staff ‘attempted to view private medical records’
As if anyone really needed a reminder that breaches of even one patient’s privacy matter, just look at all the headlines this morning. How many reports do you see about allegations that an employee at The London Clinic where Kate Middleton, the Princess of Wales, was hospitalized improperly attempted to access her medical records? The…
HHS OCR Issues Updated Guidance on “Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates”
From HHS OCR: On March 18, 2024, OCR revised its guidance on “Use of Online Tracking Technologies by HIPAA Covered Entities and Business Associates” to remind regulated entities and the public that the use of online tracking technologies is subject to the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Privacy, Security, and Breach…