Joseph Lazzarotti of JacksonLewis writes: It can be cathartic responding to a negative online review. It can also backfire, as can failing to cooperate with an OCR investigation as required under HIPAA. The Office for Civil Rights (OCR) recently announced four enforcement actions, one against a small dental practice that imposed a $50,000 civil monetary penalty under HIPAA….
Category: Breaches
Creepy Spyware Company Goes Broke
Lucas Ropek reports: FinFisher is no more. Long accused of helping authoritarian governments to spy on political dissidents and activists, the creepy surveillance company has abruptly shut down amidst an ongoing investigation into its business dealings. On Monday, Bloomberg reported that the Munich-based spyware firm had shuttered its offices after quietly filing for insolvency this past February. Read more…
Ph: Fines for data privacy breach capped at P5 million
Ranier Allan Ronda reports: The National Privacy Commission (NPC) has set a ceiling of P5 million on fines imposed on data privacy violators, following a revision of its penalty system based on public consultations. The NPC presented its revised schedule of administrative fines set under the updated Circular on Administrative Fines and the scope of…
FTC Settles Privacy and Security Allegations with Online Merchant for $500K and Agreement to Extensive Compliance Program
Joseph J. Lazzarotti of JacksonLewis writes about the recent CafePress settlement: The FTC recently settled its enforcement action involving data privacy and security allegations against an online seller of customized merchandise. In addition to agreeing to pay $500,000, the online merchant consented to multiyear compliance, recordkeeping, and FTC reporting requirements. The essence of the FTC’s seven…