TALX Corporation, a subsidiary of Equifax Inc., has agreed to settle Federal Trade Commission charges that it violated federal law by failing to provide certain disclosures to users of their consumer reports and to entities that provide information for consumer reports. The proposed settlement requires TALX to pay a $350,000 civil penalty and bars future…
Terrorist Surveillance Program, unplugged
A long-awaited report on the Terrorist Surveillance Program was released today. An unclassified version of the report prepared by the Office of Inspectors General for the Departments of Defense, Justice, the CIA, NSA, and DNI is entitled Unclassified Report on the President’s Surveillance Program (pdf). The report’s discussion of the President’s Surveillance Program (PSP) makes…
CVS, Walgreens settle with Indiana AG
Settlements have been reached between the Indiana Attorney General’s office and two pharmacy chains – CVS and Walgreens – to resolve data-breach complaints that customers’ medical information was improperly discarded in trash bins outside pharmacy stores. The agreement comes as the Attorney General begins a new concerted effort geared to address the growing problem of…
Après HITECH, le déluge (of reports)
Yesterday on phiprivacy.net, I posted a link to an article in the Journal of AHIMA that discusses how California officials were surprised at how many breach reports they have received since California’s new medical privacy breach reporting law went into effect on Jan. 1. Under the broadened reporting requirements whereby healthcare organizations in California are…