I was at the Secure360 conference (a fabulous event, btw) this week, and I’m just getting to an important current topic: CAN-SPAM.
On Monday (5/12) the FTC announced an update to the Controlling the Assault of Non-Solicited Pornography and Marketing Act of 2003 (CAN-SPAM) law.
Archive for the ‘Laws & Regulations’ Category
CAN-SPAM: Record Judgment Along With Updated Rules
Thursday, May 15th, 2008Useful Data Protection (Privacy) Law Sites
Wednesday, March 19th, 2008This morning I took a little time to update my long listing of world-wide data protection (privacy) laws.
Here are some of them you may find helpful:
HIPAA *HAS* Impacted Healthcare Providers…Despite Lack Of Enforcement
Monday, March 17th, 2008I have written many times about how the U.S Department of Health and Human Services (HHS) has severely weakened the planned privacy and security goals of the Health Insurance Portability and Accountability Act (HIPAA) to require healthcare covered entities (CEs) to implement strong safeguards for the protected health information (PHI) with which they’ve been entrusted. And I still believe that.
However, after reading a another report today I realized something…
Iowa Privacy Breach Bill Has Much Of Its Teeth Pulled
Monday, March 10th, 2008Iowa introduced a new bill, SSB 3200, on February 20 to establish a state privacy breach notification law.
As originally worded it would have also required merchants to follow credit and debit card industry data security rules and make them liable to banks for costs they incurred after a breach of payment card transaction data not retained in compliance with those rules. However, in the past week SSB 3200 was amended in committee to remove the retailer liability provisions.
A companion bill, HSB 721, was introduced February 26.
New Information Technology Crime Law in Saudi Arabia
Saturday, February 9th, 2008Here’s an interesting new law in Saudi Arabia…
A New Privacy/Security Breach Notice Law Soon In The Land Down Under?
Friday, February 1st, 2008Another country appears to be on the verge of passing a privacy breach notice law…
Privacy, The 5th Amendment And PGP Passwords
Sunday, January 6th, 2008While doing some encryption research I ran across this Vermont ruling made on November 29, 2007.
It provides some good lessons about computer forensics and investigation and password management.
New U.S. Law Effective Jan 1 Prohibits Lithium Batteries In Checked Luggage
Friday, December 28th, 2007I like to carry extra laptop and cell phone batteries with me when I travel for more than a couple of days at a time, especially if going outside the country. I fried a cell phone once using a faulty outlet converter overseas, so now I like to play it safer by depending upon extra batteries. It was fairly simple to pack the extra batteries into my checked luggage. It was a good simple way to have a backup power source while travelling.
Well, as of next Tuesday that simplicity is no more.
FTC Settlement For Marketing Via Pop-up Ads: Lessons For All Marketers Regarding Consent & Consumer Complaints
Sunday, December 9th, 2007I like to keep my eye on the FTC site; they are very active in catching businesses violating the U.S. FTC Act by practicing unfair and deceptive business practices, particularly via the Internet. They really demonstrate the need for privacy and information security professionals to stay on top of what their business units and marketing areas are doing with regard to contacting consumers, forcing ads upon them, and gathering information from them.
