Monday, June 27, 2011

National Data Breach Law Proposed : Massachusetts Data Privacy Law Blog

"So my question to ponder as I sail adrift in this storm is whether the Massachusetts requirement that businesses have a Written Information Security Program will be eliminated by the passage of this bill in its current state. You see, the proposed Federal law specifically says “supersede any provision of the law…relating to notification…” It doesn’t say any more or any less."

National Data Breach Law Proposed : Massachusetts Data Privacy Law Blog:

Friday, June 24, 2011

Compliance Guide: The New European Online Privacy Law

"The EU recently enacted its new Privacy and Electronic Communications Directive (the “E-Privacy Directive”), an important new policy directive establishing rules for the use of cookies for tracking/storing information on European users will change. Prior to the enactment of the E-Privacy Directive, website operators with customers in the EU were simply required to: (a) inform website users how they use cookies; and (b) provide “opt out” information.

Under the new rules, which went into effect on May 25th, 2011, cookies can only be placed on computers where the user has given their express consent, except in cases in which a website operator doing something that is “strictly necessary” for a service specifically requested by the user."

Compliance Guide: The New European Online Privacy Law:

New cookies law: Are you EU-compliant?

The new EU ‘Cookies’ law took effect on 2011-05-25, a European law requiring organizations’ websites that track users’ cookies – the personal information stored by PCs, iPads and smartphones – to first secure explicit permission from site visitors - The Privacy and Electronic Communications (EC Directive) (Amendment) Regulations 2011.

New cookies law: Are you EU-compliant?