Get the latest information about the changing regulatory environment and how it affects IT. http://www.PeakDataServices.com/English/Resources/Compliance_Watch.html Copyright 2008, PeakData en-us Fri, 10 Oct 2008 01:54:08 -0700 Tue, 13 Jan 2009 02:54:08 -0700 mklatman@peakdatallc.com (Michael Klatman) FeedForAll v2.0 (2.0.2.9) http://www.feedforall.com A laptop computer with health and personal information on 21,000 patients was stolen from an office at Thomas Jefferson University Hospital in Philadelphia in June. Fri, 30 Jul 2010 01:54:08 -0700 A Pennsylvania company hired by South Shore Hospital to dispose of patient records outsourced the work to a second company. Wed, 28 Jul 2010 01:54:08 -0700 Organised crime accounted for 85 per cent of all data stolen in external attacks on companies. Wed, 28 Jul 2010 01:54:08 -0700 The disappearance of 800,000 patients’ records from South Shore Hospital spotlights the growing danger of medical identity theft. Sun, 25 Jul 2010 01:54:08 -0700 The Identity Theft Resource Center (ITRC) reports there have been 371 identity breaches that exposed 12,871,065 records in the United States alone. Wed, 21 Jul 2010 01:54:08 -0700 Back-up computer files containing personal, health and financial information of thousands affiliated with South Shore Hospital may have been lost by a professional data management company. Mon, 19 Jul 2010 01:54:08 -0700 A law forcing all organisations to publically declare data breaches is expected to be in place in the UK within four years. Mon, 19 Jul 2010 01:54:08 -0700 The loss of physical storage media is still among the most common causes of data breaches. Wed, 14 Jul 2010 01:54:08 -0700 Insurer Health Net reached a $250,000 settlement with Connecticut Attorney General Richard Blumenthal (D), who sued the company after it lost a computer hard drive in 2009. Wed, 7 Jul 2010 01:54:08 -0700 Insurer says old enrollment forms containing sensitive information were mistakenly left in discarded file cabinet. Tue, 6 Jul 2010 01:54:08 -0700 Experts Predict More Attacks, Higher-Value Targets. Mon, 28 Jun 2010 01:54:08 -0700 Is it actually a privacy leak if no one has looked at the private data? Mon, 21 Jun 2010 01:54:08 -0700 Turns out "our bad!" isn’t good enough for the government when it comes to last month’s revelation that Google Street View cars captured content flowing over wireless networks. Mon, 21 Jun 2010 01:54:08 -0700 The number of entities that have reported major patient information breaches to HHS' Office for Civil Rights nearly tripled from 32 in February to 93 by June 11. Mon, 14 Jun 2010 01:54:08 -0700 Five California hospitals were fined a total of $675,000 last week, a development that signals a change in how governments are starting to hold companies and organizations accountable. Mon, 14 Jun 2010 01:54:08 -0700 ATT and Apple have suffered a major privacy breach, exposing the contact information of over 114,000 iPad 3G customers — possibly many more. Thu, 10 Jun 2010 01:54:08 -0700 The recently sanctioned fine of £500,000 for organisations that fail to protect individuals' data is not enough, according to a poll undertaken by the Information Commissioner's Office. Wed, 9 Jun 2010 01:54:08 -0700 A US insurer appears to be taking pro-active action to refute liability on a data breach that the University of Utah has been seeking. Mon, 7 Jun 2010 01:54:08 -0700 Data security will remain the most pressing concern for CPAs and their clients over the next 12 to 18 months, according to the AICPA’s 21st annual Top Technology Initiatives Survey. Thu, 3 Jun 2010 01:54:08 -0700 As many as 25,572 Social Security numbers once stored on Penn State computer systems may have been exposed. Wed, 2 Jun 2010 01:54:08 -0700 With the number of personal information data breaches reported to the Information Commissioner’s Office (ICO) reaching 1,000, the privacy watchdog is urging organisations to minimise the risk of mistakes. Fri, 28 May 2010 01:54:08 -0700 Despite greater awareness among businesses in Asia on the need to protect data assets, security breaches seem to be on the increase across the region over the past year. Thu, 27 May 2010 01:54:08 -0700 Companies get to decide whether to tell their customers they've lost their personal information. Wed, 26 May 2010 01:54:08 -0700 Online commerce offers terrific conveniences but it also poses complex issues particularly over the role that the federal government should play. Wed, 19 May 2010 01:54:08 -0700 The US Federal Trade Commission is reportedly investigating whether copy machine makers are properly warning their distributors, resellers and customers about the risks of sensitive data being accessed from the machines’ hard drives. Tue, 18 May 2010 01:54:08 -0700 More and more people are becoming aware of the term “personally identifiable information” (PII). It’s sensitive data that could identify a particular individual. Fri, 14 May 2010 01:54:08 -0700 The company's colossal data breach, in which as many as 130 million credit and debit card numbers were compromised, has cost it $139.4 million so far. Thu, 13 May 2010 01:54:08 -0700 More than one-third say loss of personal information is top concern; only 29 percent concerned about loss of company data. Wed, 12 May 2010 01:54:08 -0700 Alberta has become the first province to add a data breach notification requirement into its legislation. The new measures were added into its Personal Information Protection Act (PIPA) on May 1 and are now law. Tue, 11 May 2010 01:54:08 -0700 Verizon this week announced that it will join forces with the U.S. Secret Service on a Data Breach Investigations Report. Thu, 6 May 2010 01:54:08 -0700 A medical center in Kentucky is notifying 5,418 patients of a data breach that occurred when computer equipment was stolen from its mammography suite. Wed, 28 Apr 2010 01:54:08 -0700 The average cost to an organization of a data breach in the United States is higher than in four other countries where data-breach costs were compared. Wed, 28 Apr 2010 01:54:08 -0700 A representative of the Information Commissioner's Office (ICO) said on Tuesday that a European Commission review of data laws will require data-breach notification. Tue, 27 Apr 2010 01:54:08 -0700 Seventy percent of IT security professionals believe that the federal government should pass data breach / data privacy legislation that overrides the current patchwork of state legislation. Thu, 22 Apr 2010 01:54:08 -0700 Two different companies in the past two weeks were fined by regulatory agencies for separate database breaches, totaling well over $1 million. Thu, 22 Apr 2010 01:54:08 -0700 Earlier this week, European Data Protection Supervisor (EDPS) Peter Hustinx called for producers to ‘build in' privacy and security safeguards to their solutions. Thu, 22 Apr 2010 01:54:08 -0700 Mississippi became the most recent state to pass a data breach measure last week, leaving just four states without similar protections. Tue, 20 Apr 2010 01:54:08 -0700 Washington has become the third state to pass legislation incorporating the Payment Card Industry Data Security Standard. Mon, 12 Apr 2010 01:54:08 -0700 The 2009 Australian Cost of a Data Breach study examined the actual financial losses incurred by 16 organisations from different industry sectors following a data loss. Thu, 8 Apr 2010 01:54:08 -0700 A new study from the Healthcare Information and Management Systems Society reports that since January 2008, more than 110 healthcare organizations have reported the loss of sensitive patient data affecting over 5,306,000 individuals. Wed, 7 Apr 2010 01:54:08 -0700 A new report by Forrester Research found that even though intellectual property comprises 62 percent of data assets, security programs are focused on compliance rather than data protection. Tue, 6 Apr 2010 01:54:08 -0700 John Muir Health, the Walnut Creek-based hospital system, said Monday it has begun notifying 5,450 patients by mail of a “potential breach of their personal and health information.” Mon, 5 Apr 2010 01:54:08 -0700 From Tuesday 6 April, the Information Commissioner’s Office (ICO) will get enhanced powers to fine organisations up to £500,000 for serious breaches of the Data Protection Act. Mon, 5 Apr 2010 01:54:08 -0700 It has been said that there are two kinds of systems in this world: Those that have been breached, and those that are going to be breached. Fri, 2 Apr 2010 01:54:08 -0700 Washington last week became the third state to pass legislation that will allow banks to recover certain costs and damages from retailers and credit card processors. Thu, 1 Apr 2010 01:54:08 -0700 Personal data on 3.3 million people have been stolen from the company that guarantees student loans in Virginia and two other states, authorities said. Sat, 27 Mar 2010 01:54:08 -0700 Hacker Albert Gonzalez is sentenced to 20 years in prison for his role in hacking TJX, Barnes and Noble, OfficeMax and other retailers. Fri, 26 Mar 2010 01:54:08 -0700 As new details continue to emerge this month about an initially undetected large-scale database pilfering by a former IT worker at HSBC, security experts hope it will highlight one of the most glaring weaknesses in many a financial institution's database protection scheme: poor accountability for IT super users. Thu, 25 Mar 2010 01:54:08 -0700 Risk and vulnerability are tough things to plot on a spreadsheet. Maybe that's why security hasn't always gotten the kind of attention or scrutiny it deserves in the "C" suites. Wed, 24 Mar 2010 01:54:08 -0700 Zurich Insurance has promised to improve its information security after losing personal financial information on 46,000 British clients through careless handling of unencrypted backup tapes. Wed, 24 Mar 2010 01:54:08 -0700 Two new breaches of debit card data have been reported by a pair of Ohio-based banks, raising the total number of banking-related data breaches to 22 so far this year. Tue, 23 Mar 2010 01:54:08 -0700 The Internal Revenue Service's failure to use strong passwords, install patches quickly, and adequately control access to computer systems and information makes the system vulnerable. Tue, 23 Mar 2010 01:54:08 -0700 The amount of online private medical information is expected to grow from terabytes today to petabytes over the next four years, exposing electronic health records to ever more serious data breach threats. Mon, 22 Mar 2010 01:54:08 -0700 Hackers are now stealing credit-card data from hotels more often than any other industry, according to data-security companies. Thu, 18 Mar 2010 01:54:08 -0700 Businesses are unconvinced of the benefits of a looming security standard for credit card payments. Mon, 15 Mar 2010 01:54:08 -0700 A number of companies, including Boston insurance giant John Hancock Financial Services, have in recent months reported stolen laptops and other breaches of data security. Sat, 13 Mar 2010 01:54:08 -0700 The U.S. Veterans Affairs Office of Inspector General has launched a criminal investigation into a security breach. Fri, 12 Mar 2010 01:54:08 -0700 An estimated 24,000 clients of HSBC Private Bank in Switzerland had personal details stolen in a data theft three years ago. Thu, 11 Mar 2010 01:54:08 -0700 An unencrypted backup storage drive holding the names, social security numbers and other unspecified personal information of more than 35,000 Arkansas National Guardsmen was discovered missing last month. Wed, 10 Mar 2010 01:54:08 -0700 A bank in Colorado has begun blocking point of sale purchases over concerns debit cards may have been compromised by the massive data breach that hit Heartland Payment Systems in 2008. Mon, 8 Mar 2010 01:54:08 -0700 We've all seen the sobering stats: Nearly 500 major data breaches have been reported in the United States since the beginning of 2009. Fri, 5 Mar 2010 01:54:08 -0700 Never mind three strikes and you're out. How about three strikes and I've got to ask myself if I even want to be in one of your hotels in the first place. Fri, 5 Mar 2010 01:54:08 -0700 Sharing information with law enforcement after a breach is critical to successfully battling increasingly sophisticated and organized cybercriminals. Wed, 3 Mar 2010 01:54:08 -0700 The idea behind the Verizon Business incident-sharing metrics framework is that those who do not learn from security incidents are doomed to repeat them. Mon, 1 Mar 2010 01:54:08 -0700 An onslaught of security breaches has prompted several states including Massachusetts to strengthen their data security regulations for businesses. Mon, 1 Mar 2010 01:54:08 -0700 A list of the covered entities that have reported health information data breaches impacting more than 500 people now has been posted by the Office of Civil Rights. Thu, 25 Feb 2010 01:54:08 -0700 The Federal Trade Commission said Monday that it has uncovered widespread data breaches at companies, schools and local governments. Tue, 23 Feb 2010 01:54:08 -0700 The Information Law Group has been following various Federal data security bills as they wind their way through the House and Senate. Mon, 22 Feb 2010 01:54:08 -0700 Countless organisations, both in the public and private sector, have reported losing sensitive data in recent years. Mon, 22 Feb 2010 01:54:08 -0700 A database containing contact details of 170,000 workers of oil giant Royal Dutch Shell has been emailed to campaigning groups opposed to the company’s activities. Tue, 16 Feb 2010 01:54:08 -0700 Adam Shostack, co-author of The New School of Information Security, and Forrester Research senior analyst Andrew Jaquith discuss the future of data security. Mon, 15 Feb 2010 01:54:08 -0700 Privacy and security officers have to comply with more rules than ever. The Federal Trade Commission's Red Flags rule, existing HIPAA laws, and the new Health Information Technology for Economic and Clinical Health (HITECH) Act require that covered entities... Fri, 12 Feb 2010 01:54:08 -0700 An analysis of data breaches by Trustwave found just 9 percent were uncovered internally by the companies' that were breached. Thu, 11 Feb 2010 01:54:08 -0700 California's Department of Health Care Services is apologizing to nearly 50,000 Medi-Cal recipients whose Social Security numbers were disclosed on the outside of envelopes. Mon, 8 Feb 2010 01:54:08 -0700 Security chip used in millions of PCs hacked; criminals can crack encryption with new attack. Mon, 8 Feb 2010 01:54:08 -0700 The names, Social Security numbers and bank account numbers of some 27,000 people were exposed when a hacker breached a Twin Cities-based payroll company's pay system. Fri, 5 Feb 2010 01:54:08 -0700 The names, Social Security numbers and bank account numbers of some 27,000 people were exposed when a hacker breached a Twin Cities-based payroll company's pay system. Thu, 4 Feb 2010 01:54:08 -0700 Some 3,700 Highmark Inc. customers are being notified that documents bearing their personal information - including names and Social Security numbers - were lost and have yet to be recovered. Thu, 4 Feb 2010 01:54:08 -0700 What's the cost of a data breach? The Ponemon Institute is out with its 5th annual "Cost of a Data Breach" study, and in an exclusive interview Dr. Larry Ponemon discusses... Tue, 2 Feb 2010 01:54:08 -0700 The insurance company is accused of failing to protect medical records, Social Security numbers, and bank account information of 446,000 customers. Mon, 1 Feb 2010 01:54:08 -0700 Thursday, January 28, 2010, is Data Privacy Day in North America and Europe. Thu, 28 Jan 2010 01:54:08 -0700 Ponemon Institute today announced the results of the third annual study into the costs incurred by UK organisations after experiencing a data breach. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 28 Jan 2010 01:54:08 -0700 Businesses that hold personally identifiable information on Massachusetts residents have one month to comply with the toughest data security requirements in the nation. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 27 Jan 2010 01:54:08 -0700 The Federal Data Breach Notification Law that recently passed through the house is now on its way to the Senate and then on its way to you. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 27 Jan 2010 01:54:08 -0700 Personal information for 250,000 Clinton administration staff and White House visitors sent to the National Archives was compromised after a computer hard drive containing confidential material disappeared. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 27 Jan 2010 01:54:08 -0700 Breaches of health data security could be subject to tougher federal regulations by mid-February — including up to $1.5 million in fines for privacy violations. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 25 Jan 2010 01:54:08 -0700 The cost of a data breach increased last year to $204 per compromised customer record, according to the Ponemon Institute's annual study. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 25 Jan 2010 01:54:08 -0700 Lawyers representing financial institutions in a data breach lawsuit against Heartland Payment Systems Inc are calling a $60 million settlement offer from the company as way too meager. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 21 Jan 2010 01:54:08 -0700 A number of hospitals, health clinics, and insurance firms are violating federal security rules on patient data and putting sensitive health information at risk. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 19 Jan 2010 01:54:08 -0700 More than 15,000 Kaiser Permanente patients in Northern California this week are being notified that their personal information was exposed last month. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 15 Jan 2010 01:54:08 -0700 Connecticut Attorney General Richard Blumenthal has filed a lawsuit charging Health Net of Connecticut Inc. with violations of the HIPAA privacy and security rules. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 14 Jan 2010 01:54:08 -0700 A £500,000 penalty has been introduced by the Information Commissioner's Office (ICO) for personal data security breaches. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 13 Jan 2010 01:54:08 -0700 Although the total number of reported data breach incidents fell year over year in 2009, the number of compromised records was still estimated at over 222 million. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 12 Jan 2010 01:54:08 -0700 The story of the Heartland Payment Systems data breach has come one step closer to reaching a conclusion. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 8 Jan 2010 01:54:08 -0700 NUMEROUS data-loss cases in headlines over the past two years have made Irish companies far more aware of privacy and data security policies and protections. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 8 Jan 2010 01:54:08 -0700 Next time you spill a latte on your laptop or drop your hard drive, you may want to think twice about who you pay to salvage your data. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 5 Jan 2010 01:54:08 -0700 It would seem that we are entering into a kind of “perfect storm” for medical fraud. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 4 Jan 2010 01:54:08 -0700 Eastern Washington University has notified present and former students of a massive data breach of its systems. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 4 Jan 2010 01:54:08 -0700 A Miami-based hacker plead guilty this week for his role in orchestrating a series of massive data security breaches. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 30 Dec 2009 01:54:08 -0700 Latest in a string of security incidents at universities compromises personal information of more than 30,000 students. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 29 Dec 2009 01:54:08 -0700 Security is always a big issue in IT, and 2009 was no different, with Conficker attacking, the Heartland data breach breaking records, and more. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 24 Dec 2009 01:54:08 -0700 Massachusetts’s highest court delivered retailers a significant holiday gift slamming the door on some financial institutions seeking to recover reissuance costs arising from a retailer’s payment card data breach. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 23 Dec 2009 01:54:08 -0700 2009 was a banner year for information security news. Rarely did a day go by where a data breach of some sort wasn’t announced. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 22 Dec 2009 01:54:08 -0700 This is the first settlement Heartland has reached with a card brand since disclosing the incident in January of this year. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 17 Dec 2009 01:54:08 -0700 A review of the companies that made headlines for all the wrong reasons. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 17 Dec 2009 01:54:08 -0700 The new national archivist will face questions about fixing his agency's ''staggering negligence'' on cybersecurity. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 16 Dec 2009 01:54:08 -0700 Symantec has been advising the Australian government on forthcoming data breach notification laws. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 16 Dec 2009 01:54:08 -0700 As businesses face a March deadline under an oft-delayed state law to protect customer and employee personal information, data breaches affecting Massachusetts residents remain strikingly frequent. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 11 Dec 2009 01:54:08 -0700 Albert Gonzalez pleaded guilty recently to additional charges that he engineered breaches at Heartland Payment Systems Inc., Hannaford Bros. Co., 7-Eleven Inc. and two unnamed retailers. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 11 Dec 2009 01:54:08 -0700 Requiring data brokers to establish procedures to verify the accuracy of information that identifies individuals. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 9 Dec 2009 01:54:08 -0700 Hackers are using a variety of weapons and exploiting errors such as default passwords and weak or misconfigured access control lists. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 9 Dec 2009 01:54:08 -0700 Attorney General Richard Blumenthal said today that a data breach affecting up to 450,000 Connecticut residents’ personal information was more serious than first thought. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 7 Dec 2009 01:54:08 -0700 Health Net in November announced that thousands of its members and network physicians could be at risk for identity theft due to a lost portable disk drive. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 7 Dec 2009 01:54:08 -0700 A Missouri man has lost his legal battle against an online prescription processor that suffered a security breach that exposed highly sensitive subscriber information. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 3 Dec 2009 01:54:08 -0700 Managers searching for excisable fat will doubtless be attracted to the privacy function, concluding that it makes no contribution to the bottom line. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 2 Dec 2009 01:54:08 -0700 A Leicestershire businesswoman discovered shredded records of NHS patients, with some information still showing, in packaging material used to protect gift boxes. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 30 Nov 2009 01:54:08 -0700 In 2009, a small number of data leaks exposed more personal information than ever before. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 24 Nov 2009 01:54:08 -0700 A health insurer lost 1.5 million patient records last May but waited six months to disclose the incident. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 19 Nov 2009 01:54:08 -0700 IT hardware that reaches the end of its usable life cannot be treated like common garbage. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 19 Nov 2009 01:54:08 -0700 Companies that do business with healthcare providers are unprepared to meet data breach obligations included in new federal regulation, according to a survey released Tuesday. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 18 Nov 2009 01:54:08 -0700 Anyone who used a Visa or Mastercard credit card when in Spain may have had their card data compromised. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 18 Nov 2009 01:54:08 -0700 More than half of IT and security professionals worldwide believe their company's laptops and other mobile devices pose security risks to their organization. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 17 Nov 2009 01:54:08 -0700 Companies in the UK that suffer a data breach may run the risk of being fined up to £500,000. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 13 Nov 2009 01:54:08 -0700 Federal prosecutors alleged that members of an elaborate hacking ring broke into debit-card systems and stole $9 million. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 10 Nov 2009 01:54:08 -0700 It's frustrating to be a consumer these days, especially knowing that your personal information could be exposed anytime there's a major data breach. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 9 Nov 2009 01:54:08 -0700 The Health and Human Services Department today published a rule that strengthens its enforcement of the Health Insurance Portability and Accountability Act. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 30 Oct 2009 01:54:08 -0700 Too many hours are being spent trying to assess the return on investment (ROI) of any security deployment. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 30 Oct 2009 01:54:08 -0700 Traditional insurance products are inadequate to cover the new types of events that can result from privacy invasion or misuse of technology. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 29 Oct 2009 01:54:08 -0700 A U.S. law that would require businesses to report data breaches to potential victims could help law enforcement agencies fight the growth of cybercrime. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 28 Oct 2009 01:54:08 -0700 Consumers who have received a data breach notification letter are four times more likely than others to be the victim of identity theft. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 28 Oct 2009 01:54:08 -0700 A new report suggests that many credit and debit card holders fail to understand the importance of a notice saying that a credit card or debit card has been breached. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 28 Oct 2009 01:54:08 -0700 The advocacy group Consumer Watchdog sent a letter urging HHS Secretary Kathleen Sebelius to repeal the agency's health data-breach notification rule. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 23 Oct 2009 01:54:08 -0700 Data breach notification laws will make a big difference to the speed at which UK businesses put security controls like encryption in place. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 23 Oct 2009 01:54:08 -0700 Zurich South Africa says that it has lost a tape containing customer information. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 22 Oct 2009 01:54:08 -0700 Healthcare providers aren't adequately protecting patient privacy in implementing e-health records. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 20 Oct 2009 01:54:08 -0700 The space agency has suffered hundreds of security incidents, including malware, data breaches, stolen laptops, and bot nets. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 16 Oct 2009 01:54:08 -0700 UK businesses are lagging behind many of their overseas trading partners in protecting data. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 16 Oct 2009 01:54:08 -0700 About 800,000 doctors have been warned that their business and personal information may be vulnerable to a possible breach. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 15 Oct 2009 01:54:08 -0700 A flash drive containing personal information for more than 103,000 former adult education students in Virginia was misplaced. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 14 Oct 2009 01:54:08 -0700 Schwarzenegger has vetoed an update to California's landmark data-breach notification law. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 13 Oct 2009 01:54:08 -0700 A federal judge in Maine is asking the state's Supreme Court to clarify whether consumers can seek restitution from merchants. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 13 Oct 2009 01:54:08 -0700 A data breach can have a serious impact on your business, costing an organization $4.1 million on average. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 12 Oct 2009 01:54:08 -0700 U.S. Republican Reps. Joe Barton and George Radanovich ask about lost JPMorgan Chase data tape. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 8 Oct 2009 01:54:08 -0700 The data breach at Heartland Payment Systems was a disaster for the company. But after picking up the pieces, the company is looking ahead to a more secure future. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 7 Oct 2009 01:54:08 -0700 A file containing identifying information for every physician in the country contracted with a Blues-affiliated insurance plan was on a laptop computer stolen. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 6 Oct 2009 01:54:08 -0700 The agency sent a defective hard drive back to its vendor for repair and recycling without first destroying the data. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 1 Oct 2009 01:54:08 -0700 Express Scripts Inc. (ESRX), the object of a 2008 extortion attempt, recently learned that the perpetrator took steps to prove he or she possesses more member records. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 30 Sep 2009 01:54:08 -0700 "hundreds of thousands of cards" are being replaced because credit-card information had been stolen from a database. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 29 Sep 2009 01:54:08 -0700 The new health care data breach notification law, which is set to go into effect Wednesday, has drawn harsh criticism from privacy advocates. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 23 Sep 2009 01:54:08 -0700 What happens when you move up to a more modern format of tape, to disk backup, or simply choose to dispose of old tapes? http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 21 Sep 2009 01:54:08 -0700 A rule requiring healthcare providers to notify individuals of a breach will become effective September 23, 2009. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 16 Sep 2009 01:54:08 -0700 Companies face three significant challenges - cost, time and number of vendors involved. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 15 Sep 2009 01:54:08 -0700 Organisations of any size should be looking at decommissioning as an ongoing rather than an ad hoc process. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 14 Sep 2009 01:54:08 -0700 Backup Tape Reported Missing from Vendor Storage Facility. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 11 Sep 2009 01:54:08 -0700 67 percent of French organisations have been hit by at least one data breach incident within the last year, with 18 percent having been hit by more than five incidents. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 9 Sep 2009 01:54:08 -0700 Two-and-a-half years later, the retailer is still handling fallout from data compromise. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 3 Sep 2009 01:54:08 -0700 Data leakage or data loss prevention systems have gradually entered the mainstream as their increasing maturity has allowed increasing adoption. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 1 Sep 2009 01:54:08 -0700 Each time a transaction occurs you're putting your financial data in jeopardy. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 1 Sep 2009 01:54:08 -0700 Each time a transaction occurs you're putting your financial data in jeopardy. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 31 Aug 2009 01:54:08 -0700 Facing increased pressure to improve their data security, a growing number of small and midsize banks are looking for outside help. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 24 Aug 2009 01:54:08 -0700 Earlier this week the OCABR announced the revised rules will facilitate a "risk-based approach" to data security. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 20 Aug 2009 01:54:08 -0700 New regulations requiring health care providers, health plans, and other entities to notify individuals when their health information is breached were issued today by the U.S. Department of Health and Human Services. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 19 Aug 2009 01:54:08 -0700 The Federal Trade Commission has issued a rule that broadens the reach of data breach notification rules. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 18 Aug 2009 01:54:08 -0700 The constellation of hacks connected to the TJX hacker is growing. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 17 Aug 2009 01:54:08 -0700 Security teams are more visible than ever. With visibility comes an increased set of responsibilities. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 13 Aug 2009 01:54:08 -0700 Parcel service UPS has encrypted all its UK laptops and smartphones, following a breach of the Data Protection Act last year. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 12 Aug 2009 01:54:08 -0700 How to batten down the hatches after a data breach - is it possible to prevent further damage to your firm's reputation? http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 11 Aug 2009 01:54:08 -0700 Articles and blog posts associated with security and cloud computing are a daily occurrence, unless some well-publicized breach occurs in the cloud. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 7 Aug 2009 01:54:08 -0700 What must be done to bridge the information-sharing gap between the public and private sectors? http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 7 Aug 2009 01:54:08 -0700 Enterprises in the Asia Pacific have been warned they need to sharpen up their data security. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 5 Aug 2009 01:54:08 -0700 Kathleen Sebelius transferred authority for the enforcement of the security provisions of HIPAA to the Office for Civil Rights. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 4 Aug 2009 01:54:08 -0700 Expect states to crack down on health data privacy across the United States. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 27 Jul 2009 01:54:08 -0700 Hackers have broken into Web servers owned by domain registrar and hosting provider Network Solutions. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 24 Jul 2009 01:54:08 -0700 Business starts with trust, which is why, when PETCO.com opened for business in 2001 to sell pet supplies to consumers, it made some reassuring promises. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 24 Jul 2009 01:54:08 -0700 Senate Judiciary Chairman Patrick Leahy (D-Vt.) has reintroduced a data breach bill that would set tougher rules for government agencies and private sector firms. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 23 Jul 2009 01:54:08 -0700 HSBC Holdings, Europe's biggest bank, was fined 3.2 million pounds on Wednesday for information security breaches. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 22 Jul 2009 01:54:08 -0700 During 2008,the UK Ministry of Defence admits it lost an entire server from a secure building - as well as 1.7m individuals' personal data. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 21 Jul 2009 01:54:08 -0700 Two credit-card payment processors are offering to cover merchants' fines and penalties in the event of a data breach. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 21 Jul 2009 01:54:08 -0700 The problem with securing data and insuring its safety is that there is simply so much more stored electronically these days. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 20 Jul 2009 01:54:08 -0700 A recent ruling from the U.S. District Court for the District of Maine might make it even more difficult for consumers to successfully bring claims against stores that fail to protect their personal data. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 17 Jul 2009 01:54:08 -0700 Compared to other key corporate executives, CEOs appear to underestimate the IT security risks faced by their own organizations. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 15 Jul 2009 01:54:08 -0700 Twitter's latest security hole has less to do with its users than it does with its staff. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 15 Jul 2009 01:54:08 -0700 Canyons School District officials are investigating the disappearance of a thumb drive. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 13 Jul 2009 01:54:08 -0700 California officials have received more than 800 reports of health data breaches in the first five months. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 9 Jul 2009 01:54:08 -0700 Seven in ten UK organisations experienced a data breach incident over the last year. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 9 Jul 2009 01:54:08 -0700 Your company needs to figure out what data it has and create effective policies for disposing of it. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 8 Jul 2009 01:54:08 -0700 The Information Commissioner’s Office (ICO) has taken action against an insurance company following a data breach affecting 2,100 policyholders. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 7 Jul 2009 01:54:08 -0700 Companies in Ireland are allowing home-based employees to download sensitive company and client data. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 3 Jul 2009 01:54:08 -0700 62 per cent of consumers to feel particularly worried about using their card and PIN to make a purchase if the outlet had suffered a data breach. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 2 Jul 2009 01:54:08 -0700 It was only a single digit in a 20-page Microsoft Word contract. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 2 Jul 2009 01:54:08 -0700 A House committee chairman is urging DHS' Transportation Security Administration (TSA) to get more involved in safeguarding personal. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 30 Jun 2009 01:54:08 -0700 It's not the first time a military institution has lost a hard drive. Earlier this year, the RAF lost a disk containing data about retired officers. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 25 Jun 2009 01:54:08 -0700 TJX Companies Inc. agreed to boost its security measures and pay 41 states nearly $10 million. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 25 Jun 2009 01:54:08 -0700 Rogue employees and hackers were the most commonly cited sources of data breaches. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 19 Jun 2009 01:54:08 -0700 Two Vietnam veterans are not entitled to damages from a 2007 Department of Veterans Affairs computer security breach. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 17 Jun 2009 01:54:08 -0700 Heartland Payment Systems chief executive Robert Carr remembers what it felt like when he first heard about the massive data breach. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 17 Jun 2009 01:54:08 -0700 Banks and other financial firms that deal with consumer credit card information are lacking proper security measures. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 15 Jun 2009 01:54:08 -0700 A former employee of Aetna Inc. has filed a class action lawsuit against the company. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 12 Jun 2009 01:54:08 -0700 People are tired of talking about data security, mostly because they believe there’s not much they can do about it. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 11 Jun 2009 01:54:08 -0700 A hacker called pwnmobile claims to have broken in to T-Mobile’s servers. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 10 Jun 2009 01:54:08 -0700 T-Mobile has now confirmed that a hacker, known as "Pwnmobile," did, indeed, gain unauthorized access to its records. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 10 Jun 2009 01:54:08 -0700 The risk management technology company Intersections Inc. and the Identity Theft Assistance Center were expected to unveil Breachcenter.com today. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 8 Jun 2009 01:54:08 -0700 T-Mobile is investigating a claim that a massive amount of internal data has been stolen from the telecommunication operator's servers. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 8 Jun 2009 01:54:08 -0700 Batteries.com and Aviva USA, one of the largest insurance companies in the world, have both reported data breaches in recent days. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 2 Jun 2009 01:54:08 -0700 In this day and age, virtually every business is a "data" or "Internet" company by virtue of handling various types of personal information. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 1 Jun 2009 01:54:08 -0700 The National Archives offered a $50,000 reward today for information leading to the recovery of a missing computer hard drive. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 29 May 2009 01:54:08 -0700 President Barack Obama will create a new White House office of cyber security. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 29 May 2009 01:54:08 -0700 Aetna has contacted 65,000 current and former employees whose Social Security numbers (SSNs) may have been compromised. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 28 May 2009 01:54:08 -0700 The United Kingdom's Information Commission has called for an overhaul of the National Health Service's security measures. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 26 May 2009 01:54:08 -0700 The British Ministry of Defense (MoD) experienced a breach when three portable USB drives went missing. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 26 May 2009 01:54:08 -0700 The British Ministry of Defense (MoD) experienced a breach when three portable USB drives went missing. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 20 May 2009 01:54:08 -0700 Data theft has exploded in 2008 as the total number of records compromised stands over 285 million. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 18 May 2009 01:54:08 -0700 IT practices such as identity management, email and URL filtering can get companies into a heap of trouble if deployed without an understanding of global data privacy laws. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 12 May 2009 01:54:08 -0700 You might need this advice for secure equipment disposal. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 12 May 2009 01:54:08 -0700 How to destroy digitally stored information. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 5 May 2009 01:54:08 -0700 CEOs and board members should face imprisonment for exposing consumers’ confidential data. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 30 Apr 2009 01:54:08 -0700 Many employees disable the encryption solutions on their laptops. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 27 Apr 2009 01:54:08 -0700 The high-profile data-handling fiascos of recent months have underlined the importance of data protection. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 27 Apr 2009 01:54:08 -0700 The information Commissioner's office has found the British Council in breach of the Data Protection Act. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 21 Apr 2009 01:54:08 -0700 Organized crime is responsible for a large increase in the number of breached corporate electronic records. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 15 Apr 2009 01:54:08 -0700 44 states, the District of Columbia, Puerto Rico, and the U.S. Virgin Islands have enacted security breach notification legislation. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 14 Apr 2009 01:54:08 -0700 Security experts say it all the time: have a response plan in place for what needs to be done. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 14 Apr 2009 01:54:08 -0700 Only about 40 percent of self-insured organizations have started work on HIPAA security at their organizations. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Sat, 11 Apr 2009 01:54:08 -0700 The government has failed to meet its own deadlines to bring in new powers for the Information Commissioner's Office (ICO) to fine companies who lose personal data. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 10 Apr 2009 01:54:08 -0700 More than two months after the first announcement of the Heartland Payment Systems security breach, the processor has continued to draw fire from merchants and issuers. Damages from what may be the largest PCI data breach in history continue to snowball. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 1 Apr 2009 01:54:08 -0700 Criminal hackers aren't just hard to catch. They're also hard to blame. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 31 Mar 2009 01:54:08 -0700 A new survey has shown that 55% of British bank account holders would switch to a different provider if their existing bank lost their personal details. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 31 Mar 2009 01:54:08 -0700 IT managers are concerned about where their electronic equipment is going after disposal because they are worried about sensitive data loss, not the environment. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Sun, 29 Mar 2009 01:54:08 -0700 Charles Cresson Wood said organizations need to get their information security policies in order or risk going down the tubes. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 25 Mar 2009 01:54:08 -0700 A north London health authority has been given until the end of the month to improve its information security policies following an embarrassing information security blunder last year. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 24 Mar 2009 01:54:08 -0700 Many companies have no well-defined process for decommissioning PCs, and those that do still aren't prepared to deal with so many at once. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 23 Mar 2009 01:54:08 -0700 The personal information of more than 200,000 visitors to Jackson Memorial Hospital over an 11-month period was on a hard drive that has been stolen. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Sat, 21 Mar 2009 01:54:08 -0700 The HITECH Act also adds data breach notification requirements. Though several states have such requirements, few have applied them to health information so far. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 18 Mar 2009 01:54:08 -0700 A co-author of the landmark data-breach notification law that took effect in California six years ago is now looking to add new requirements spelling out what companies have to tell affected individuals about breaches. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 9 Mar 2009 01:54:08 -0700 Consumers caught in a national epidemic of data spills are growing numb, discarding breach notification letters as junk mail rather than acting to protect their identity, experts say. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 9 Mar 2009 01:54:08 -0700 Public sector security is not adequate just by relying on the government to legislate data protection--the private sector also needs to make the necessary investments to protect critical infrastructure. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 9 Mar 2009 01:54:08 -0700 Over 300 publicized privacy incidents have occurred at U.S. institutions of higher learning since 2001, with at least 53 colleges and universities experiencing multiple breaches http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 9 Mar 2009 01:54:08 -0700 The data loss debacle at Heartland highlights the fact that information security will be the next major shareholder derivative and liability issue. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Sat, 7 Mar 2009 01:54:08 -0700 Six years after California enacted the country's first data breach notification law, many state residents have received letters. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 6 Mar 2009 01:54:08 -0700 Stung by financial fraud, U.S. adults are reacting to losses by ending relationships with banks and curtailing the use of online e-commerce services. Roughly 7.5% of U.S. adults lost money as a result of financial fraud in 2008, largely because of data breaches, according to a Gartner study released Wednesday. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 4 Mar 2009 01:54:08 -0700 Is being green the top motivator for IT managers in determining how e-waste is handled? http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 3 Mar 2009 01:54:08 -0700 Visa and MasterCard are being circumspect about another breach of credit and debit card transaction data from yet another payment card processor. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 3 Mar 2009 01:54:08 -0700 The European Commission, European Parliament and Council are all considering changes to the Privacy and Electronic Communications Directive. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 3 Mar 2009 01:54:08 -0700 The start of 2009 makes clear that the FTC intends to continue its aggressive enforcement in this area. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 2 Mar 2009 01:54:08 -0700 Identity thefts soared in 2008, and now 2009 is shaping up to be another banner year for phishers, hackers and other ID thieves. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 2 Mar 2009 01:54:08 -0700 Heartland Payment Systems said it plans to vigorously defend itself against lawsuits filed against it as a result of the data breach. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 24 Feb 2009 01:54:08 -0700 A hospital has lost 100 computer disks containing personal information about patients. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 24 Feb 2009 01:54:08 -0700 The inability to discard worthless items even though they appear to have no value is known as compulsive hoarding syndrome. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 24 Feb 2009 01:54:08 -0700 The federal government should establish a basic policy that outlines how organizations respond to data breaches, some observers say. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 20 Feb 2009 01:54:08 -0700 Days before Heartland Payment Systems admitted to a computer intrusion that likely exposed hundreds of thousands of consumers to fraud, a group of volunteer security professionals sniffed out the truth on their own. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 20 Feb 2009 01:54:08 -0700 Almost all states have passed laws requiring businesses to notify consumers of breaches of the security of their personal information in electronic databases. HIPAA, however, has no strict notification requirement. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 19 Feb 2009 01:54:08 -0700 Best Buy stores will not take possession of customers’ personal data- this includes, camera and computer discs/CDs/DVDs, hard drives from laptops or desktop PCs, or any other device that could contain customer information. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 19 Feb 2009 01:54:08 -0700 CVS Caremark Corp. has agreed to pay $2.25 million to settle a federal investigation into allegations that it violated HIPAA privacy regulations. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 18 Feb 2009 01:54:08 -0700 Most US states have data breach notification laws, but the UK Government said recently that it doesn't want one here. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 17 Feb 2009 01:54:08 -0700 For the second time in three months, Massachusetts officials have pushed back the deadline for companies to comply with a controversial set of data security regulations. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 13 Feb 2009 01:54:08 -0700 Since the government's loss of 25 million child-benefit recipients' details in 2007, the UK has held its hands up to millions more sets of personal data going astray. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 13 Feb 2009 01:54:08 -0700 A New York computer forensics firm has found that 40 per cent of the hard disk drives it recently purchased in bulk orders on eBay contained personal, private and sensitive information. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 12 Feb 2009 01:54:08 -0700 What happens when progressive governments like the state of Massachusetts and the state of California begin drafting legislation that essentially mandates PCI-like compliance for ALL businesses. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 12 Feb 2009 01:54:08 -0700 President Barack Obama on Monday ordered a 60-day review of the government's cyber-security policies. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 10 Feb 2009 01:54:08 -0700 Every few months, there's another horror story about lost tapes or stolen laptops. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 9 Feb 2009 01:54:08 -0700 These days the headlines are full of stories about data being stolen from major organisations - in both the private and public sector. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 9 Feb 2009 01:54:08 -0700 By the latest count, the number of institutions that have informed their card customers and members that they were hit as a result of the Heartland Payment Systems (HPY) data breach has swelled to 124. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 9 Feb 2009 01:54:08 -0700 The rate is an increase on the previous year, prompting fears that fewer firms and public sector organisations are taking care of personal information because of the recession. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 9 Feb 2009 01:54:08 -0700 An online seller of computer supplies and consumer electronics has failed to adequately protect customer data and will have to submit to outside audits for 10 years in a settlement with the U.S. Federal Trade Commission. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 6 Feb 2009 01:54:08 -0700 State Sen. Dominic Pileggi recently re-introduced legislation that would require state agencies to notify the public about data breaches involving personal information within one week. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 6 Feb 2009 01:54:08 -0700 The cost of data breaches for UK firms has risen from an average of £47 per record in 2007 to £60 ($86) in 2008, according to a new survey. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 4 Feb 2009 01:54:08 -0700 A settlement has been reached regarding the 2008 identity breach that affected more than 600,000 Connecticut residents.. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 3 Feb 2009 01:54:08 -0700 When the world's largest disk-makers joined last week to announce a single standard for encrypting disk drives, the move raised questions among users about how to deal with full-disk encryption. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 3 Feb 2009 01:54:08 -0700 The cost of a data breach runs companies $202 per compromised record, up 2.5 percent from $197 per record in 2007. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 2 Feb 2009 01:54:08 -0700 Multi-vendor standards for self-encrypting storage devices are emerging through the Trusted Computing Group. But flash and tape drives are not included in them. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 30 Jan 2009 01:54:08 -0700 Most large organizations maintain a detailed corporate security policy document that spells out the dos and don'ts of information security. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 29 Jan 2009 01:54:08 -0700 The Veterans Affairs Department has agreed to pay $20 million to settle a lawsuit filed by veterans over the risk of potential identity theft. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 28 Jan 2009 01:54:08 -0700 A Pa.-based law firm has filed a class action lawsuit against Heartland Payment Systems. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 28 Jan 2009 01:54:08 -0700 When I learned last week about what may have been the world's largest payment card data breach, I knew there were going to be potentially millions of victims. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 28 Jan 2009 01:54:08 -0700 For some security experts, the recent data breach at job site Monster.com comes as no surprise. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 28 Jan 2009 01:54:08 -0700 A COMPUTER containing the medical records of more than 8,000 Co Londonderry patients has disappeared, it was revealed yesterday. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 28 Jan 2009 01:54:08 -0700 The Ministry of Defence admitted yesterday that 217 of its laptops, 47 desk-top computers, 80 hard drives and 96 memory sticks were lost or stolen during 2008. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 26 Jan 2009 01:54:08 -0700 The Secret Service has identified the prime suspect in the Heartland Payment Systems security breach. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 23 Jan 2009 01:54:08 -0700 With the way the economy is going, businesses can't help but ask what technologies to invest in during 2009. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 23 Jan 2009 01:54:08 -0700 TJX stores are holding a one-day 15-percent-off sale on Thursday as a way to show appreciation for customers after a data breach at the company. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 22 Jan 2009 01:54:08 -0700 Gartner analyst, Avivah Litan questioned the timing of Heartland's disclosure and the amount of information that the payment processor released as part of its disclosure. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 21 Jan 2009 01:54:08 -0700 Heartland Payment Systems (HPY) on Tuesday disclosed that intruders hacked into the computers it uses to process 100 million payment card transactions. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 20 Jan 2009 01:54:08 -0700 A second draft economic recovery bill contains not only $20 billion in health information technology spending but also a comprehensive health IT act similar to those Congress has sought to enact for several years. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 19 Jan 2009 01:54:08 -0700 Breach notification laws offer the chance of eventual improvements in security, years hence. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 19 Jan 2009 01:54:08 -0700 A coalition of business leaders is asking the Patrick Administration to delay by two years its planned May 1 start date. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 16 Jan 2009 01:54:08 -0700 The National Institute of Standards and Technology (NIST) this month released preliminary recommendations. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 15 Jan 2009 01:54:08 -0700 The European Data Protection Supervisor (EDPS) adopted an Opinion on the review of the Directive on Privacy and electronic communications. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 12 Jan 2009 01:54:08 -0700 A claim that the only way to destroy data is to smash the hard drive has been criticised. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 8 Jan 2009 01:54:08 -0700 Two major data breaches since early 2007 have cost Maine banks and credit unions more than $2.1 million. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 7 Jan 2009 01:54:08 -0700 IT executives at small and medium-sized businesses (SMBs) will spend a full percentage point more of their IT budgets on security in 2009. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 6 Jan 2009 01:54:08 -0700 Businesses, governments and educational institutions reported nearly 50 percent more data breaches last year. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Tue, 6 Jan 2009 01:54:08 -0700 In the first 11 months of 2008 there have been a record number of corporate data breaches. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 5 Jan 2009 01:54:08 -0700 A spike in data breaches, the threat of malicious hardware, and alarming revelations http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 2 Jan 2009 01:54:08 -0700 Breach notifications should be delayed until all the facts are in about what was lost and who was affected http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 31 Dec 2008 01:54:08 -0700 Records abandoned in storage can be sold like office furniture http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 26 Dec 2008 01:54:08 -0700 It’s been a whirlwind year in IT security http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 26 Dec 2008 01:54:08 -0700 Google is no longer ranked among the top 20 most trusted companies for privacy, but Apple, Facebook, and Yahoo for the first time are. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 15 Dec 2008 01:54:08 -0700 Detailed and sensitive bank information of tens of thousands of German credit card customers have been stolen http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Sat, 13 Dec 2008 01:54:08 -0700 A look at the most disastrous security breaches of the past year http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 12 Dec 2008 01:54:08 -0700 Technology vendors Hewlett-Packard and Symantec are warning employees that their names and Social Security numbers may have recently fallen into criminal hands http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 11 Dec 2008 01:54:08 -0700 44 states now have laws that lay out requirements for companies in the event that sensitive information is compromised. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 11 Dec 2008 01:54:08 -0700 When it comes to data breaches, experts agree that prevention is the best cure but what steps should CIOs take if the unthinkable happens? http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Thu, 11 Dec 2008 01:54:08 -0700 According to a study released this morning, troubled times and sloppy security may prove a mighty temptation http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Mon, 8 Dec 2008 01:54:08 -0700 Massachusetts businesses will likely be granted a brief reprieve from implementing the toughest data security standards in the country http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 5 Dec 2008 01:54:08 -0700 Lots of Canadians have gotta be scratching their heads wondering what will happen to them in the wake of two big data storage security leaks http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Wed, 3 Dec 2008 01:54:08 -0700 Even if thrifty consumers cut back on trips to TJX-owned stores from now until Christmas, the Framingham retailer still holds a trump card it can play after the holiday shopping game is over. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Sun, 30 Nov 2008 01:54:08 -0700 Close to half a million people will likely never know whether their personal information was compromised http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 28 Nov 2008 01:54:08 -0700 Figures uncovered by Tory frontbencher Grant Shapps MP show that in the year until the end of last month, Government departments lost a total of 53 lap-tops http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 21 Nov 2008 01:54:08 -0700 Identity theft hurts consumers, and it can cost companies that have put private data at risk thousands of dollars in fines. http://www.peakdataservices.com/English/Resources/Compliance_Watch.html Fri, 21 Nov 2008 01:54:08 -0700 Countrywide Financial may have become a poster child for U.S. financial institutions... http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Fri, 21 Nov 2008 01:54:08 -0700 It would be an overstatement to suggest that the state of storage security has declined in the past year, but it's fair to say that it's lost some momentum. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Mon, 17 Nov 2008 01:54:08 -0700 It would be an overstatement to suggest that the state of storage security has declined in the past year, but it's fair to say that it's lost some momentum. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Mon, 17 Nov 2008 01:54:08 -0700 University of Florida college IT staff were upgrading a server on October 3, 2008, when they discovered some unauthorized installed software http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Fri, 14 Nov 2008 01:54:08 -0700 As the recession continues to bite and firms look at ways of cutting corners on spending, it is vital companies don’t scrimp on protecting their data assets. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Wed, 12 Nov 2008 01:54:08 -0700 Express Scripts announced today that a small number of its clients have received letters threatening to expose the personal information of its members. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Tue, 11 Nov 2008 01:54:08 -0700 Based on what’s just happened at Express Scripts, consumers should indeed be wary of having their health information online. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Fri, 07 Nov 2008 01:54:08 -0700 Massachusetts has enacted data privacy and data security regulations that will make it eke out California for the most wide ranging state privacy and security laws http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Thu, 06 Nov 2008 01:54:08 -0700 Express Scripts Inc said on Thursday it received an extortion letter threatening to expose millions of patient records and warned of a "potential large data breach." http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Thu, 06 Nov 2008 01:54:08 -0700 Harvard Law School is alerting thousands of clients from a legal services clinic after a computer tape containing their Social Security numbers, addresses, and financial information was lost in September. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Thu, 06 Nov 2008 01:54:08 -0700 A laptop computer containing limited health information on 100,000 patients was stolen from an employee's car in September, Baylor Health Care System Inc. said Monday. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Wed, 05 Nov 2008 01:54:08 -0700 A laptop computer containing limited health information on 100,000 patients was stolen from an employee's car in September, Baylor Health Care System Inc. said Monday. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Tue, 04 Nov 2008 01:54:08 -0700 Gordon Brown today admitted the Government cannot promise to keep safe the millions of pieces of sensitive personal information it has gathered on the British public http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Mon, 03 Nov 2008 01:54:08 -0700 The number of data breaches reported to the Information Commissioner's Office (ICO) has soared to 277 in almost a year http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Thu, 30 Oct 2008 01:54:08 -0700 ALMOST 80 per cent of local organisations have experienced a data breach in the past five years http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Sun, 19 Oct 2008 01:54:08 -0700 The National Health Insurance Corp. (NHIC) was found to have provided personal information of about 1.5 million subscribers to a private research institute http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Wed, 22 Oct 2008 01:54:08 -0700 Thirty-one percent of customers are terminating their relationship with organizations following a data breach http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Tue, 30 Sep 2008 01:54:08 -0700 Retailers in California would not be allowed to store customers' personal information unless they took stringent steps to prevent identity theft http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Wed, 10 Sep 2008 01:54:08 -0700 Countrywide Financial Corp. is offering two years of free credit monitoring to customers http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Wed, 10 Sep 2008 01:54:08 -0700 over half a billion records of personal information have been exposed or mishandled in the past eight years. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Tue, 09 Sep 2008 01:54:08 -0700 Over the weekend, news broke of a data breach affecting up to 5,000 prison staff, http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Mon, 08 Sep 2008 01:54:08 -0700 Retailers in California would not be allowed to store customers' personal information unless they took stringent steps to prevent identity theft http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Sun, 31 Aug 2008 01:54:08 -0700 Bank of New York Mellon Corp said on Thursday that a security breach involving the loss of personal information is much larger than previously reported http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Thu, 28 Aug 2008 01:54:08 -0700 The eBay computer scandal which saw the loss of personal data on a million bank customers is to be investigated by the Information Commissioner. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Wed, 27 Aug 2008 01:54:08 -0700 The number of data breaches hit a record high in 2007, but it appears this year will be significantly more dangerous, when it comes to potential identity theft. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Fri, 24 Oct 2008 10:54:08 -0700 Federal prosecutors recently busted a sophisticated hacking operation that allegedly stole more than 40 million credit- and debit-card numbers from a host of big-name retailers. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Mon, 25 Aug 2008 09:54:08 -0700 More than 160 "significant" incidents of confidential data being misplaced by councils, central government and businesses. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Sat, 23 Aug 2008 08:54:08 -0700 An overview of recently published guidelines in the United Kingdom (developed by the Information Commisioner's Office). http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Thu, 21 Aug 2008 07:54:08 -0700 Despite the aim of HIPAA to bolster the security and privacy of data... http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Wed, 20 Aug 2008 06:54:08 -0700 A good overview detailing the main drivers of compliance and trends in how organizations are re-aligning to address them. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Mon, 18 Aug 2008 05:54:08 -0700 If your organization suffers a data breach, you are required -- in many instances -- to notify individuals that their personal information may have been compromised. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Mon, 18 Aug 2008 04:54:08 -0700 The consequences of data breaches can be devastating. Take the case of CardSystems Solutions... http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Fri, 15 Aug 2008 03:54:08 -0700 Twelve laptops containing detailed personal information on 9,000 current and former Charter Communications Inc. workers nationwide have been stolen. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Wed, 13 Aug 2008 02:54:08 -0700 Many federal operations are supported by automated systems that may contain sensitive information. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Tue, 12 Aug 2008 01:54:08 -0700 Massachusetts seems to understand that the holy grail of efficiency can only be reached if everyone is on board with EHR (Electronic Health Records) systems. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Mon, 11 Aug 2008 01:54:08 -0700 Some of the companies, despite knowing that an investigation was in progress, chose not to inform their customers of a potential breach. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Mon, 11 Aug 2008 01:54:08 -0700 Not all missing data ends up in an actual data breach. In this case, a laptop with customer information was found, then later recovered a week later, intact and not breached. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Tue, 05 Aug 2008 01:54:08 -0700 A useful and comprehensive primer relating to all types of media. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Fri, 01 Aug 2008 01:54:08 -0700 A good overview, though we would respectfully suggest that disk drives can and should be removed from their subsystems prior to the clearing process. http://www.peakdatallc.com/English/Resources/Compliance_Watch.html Fri, 01 Aug 2008 01:54:08 -0700