Theodore Augustinos at Troutman Pepper Locke

EU U.S. Data Protection: U.S.-EU Safe Harbor Scheme Declared Invalid by Court of Justice of the European Union

As anticipated by our earlier article (published on October 2, 2015) “EU U.S. Data Protection: The Safe Harbor Framework Under Attack”, Europe’s highest court, the Court of Justice of the European Union (CJEU), has followed...more

10/8/2015 / Binding Corporate Rules , Data Protection Authority , EU , EU Data Protection Laws , European Commission , European Court of Justice (ECJ) , European Economic Area (EEA) , Facebook , International Data Transfers , Ireland , Schrems I & Schrems II , US-EU Safe Harbor Framework

Privacy & Cybersecurity Newsletter: International Edition July 2015

Retail Tracking Update: Privacy Guidance Following Nomi Technologies - There is currently a widespread effort to quantify everything, from steps, to sleep, to batted ball exit velocity. Fifteen years ago, TV host Jeremy...more

7/31/2015 / Breach Notification Rule , Canada , Confidential Information , Cyber Attacks , Cyber Insurance , Cybersecurity , Data Breach , Data Protection , EU , Facebook , FOIA , Hong Kong , Identity Theft , Notification Requirements , Online Safety for Children , PCPD , Personal Data , PIPEDA , Power Grid , Retail Tracking , Risk Assessment , Standing , Telecommunications , Turkey , UNCITRAL

Significant Amendments to Connecticut and Nevada Breach Notifications and Data Security Laws

Nevada and Connecticut recently enacted amendments to breach notification and data security requirements that are relatively unique among existing state laws, thus imposing new compliance obligations upon companies doing...more

7/29/2015 / Amended Legislation , Breach Notification Rule , Data Security , PCI-DSS Standard

Internal Investigations: The Three C’s – Confidence. Credibility. Cost.

In this issue: - THE THREE C’S — CONFIDENCE, CREDIBILITY AND COST - WHO CONDUCTS THE INVESTIGATION? - SCOPE OF THE INVESTIGATION - MINDSET AT THE OUTSET OF AN INVESTIGATION - THE NEED FOR...more

Insurance Regulatory Bellwether: NAIC Adopts 12 Principles for Effective Cybersecurity for Regulators

The National Association of Insurance Commissioners (“NAIC”) is all over cybersecurity. On April 16, 2015, as a part of its aggressive work plan to help the insurance sector come up with an effective cybersecurity framework...more

5/8/2015 / Cybersecurity , Cybersecurity Framework , Insurance Industry , NAIC , Popular

New Jersey Imposes Unique Encryption Requirements

Effective August 1, 2015, New Jersey will require health insurance carriers authorized to issue health benefit plans in New Jersey to encrypt personal information that they store electronically....more

2/26/2015 / Encryption , Health Insurance , Insurance Industry , PHI

Locke Lord QuickStudy: Attention, Health Insurers: Unique Encryption Requirements in NJ

Setting a new standard for encryption, New Jersey has enacted a new law (P.L. 2014, c. 88, codified at N.J. Stat. Ann. §§ 56:8-196 - 56:8-198) effective August 1, 2015, requiring health insurance carriers authorized to issue...more

2/13/2015 / Data Protection , Employer Group Health Plans , Encryption , Health Insurance , Personally Identifiable Information , Risk Mitigation , Social Security

Theodore Augustinos

Troutman Pepper Locke

Popular Topics by This Author

Latest Publications