*This article was originally published in E-Commerce Law Reports
The Federal Trade Commission asserted its data security authority in two recent back-to-back enforcement actions, only a day apart from each other.
On June 24, 2016, the non-profit Catholic Health Care Services of the Archdiocese of Philadelphia (CHCS) agreed to settle potential violations of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) Security Rule with the U.S. Department of Health and Human Services (HHS). This is HHS’ first resolution agreement and monetary penalty against a business associate (BA) under HIPAA.
Ransomware is old news – it has been around at least since 1989 – but it has only now started to attract widespread attention. Ransomware is a type of malicious software (or malware, for short) that blocks access to the infected device, to some or all of the information stored in the device, or even worse, to files in the device’s network. To unlock either the device or the data, the responsible cybercriminals require the victim to pay a ransom. Ransomware is typically enabled when a victim clicks on malicious links in an email or online.
Internet security software company, Kaspersky Lab, recently released a report on the rise of ransomware between 2014 and 2016. The findings are troublesome, some of which are as follows:
What’s New? (The GDPR.)
Fashion and luxury goods companies need to take heed of yet another data protection regulation. This one could substantially impact them if they collect, process, or transfer EU individuals’ personal data, or plan to do so at some point soon. Specifically, the General Data Protection Regulation (GDPR) is the EU’s new data protection law, recently and finally entered into law. It replaces the old EU data protection regime established by the Data Protection Directive (95/46/EC). The GDPR lays out requirements for organizations that process EU residents’ data and generally provides people increased control over their personal data.
Recent reports indicate that advertising fraud is not only increasing but is now being run by groups alongside otherwise legitimate advertising businesses.
Cybersecurity company Check Point recently released a report finding that HummingBad—a known malware that takes over Android devices, generates fraudulent advertising revenue, and installs apps on the infected phones—was developed and is controlled by a group of cybercriminals within Yingmob, an otherwise legitimate advertising analytics business based in Beijing.
Mobile advertising company InMobi, whose advertising network reaches more than one billion devices worldwide through thousands of apps, has settled with the Federal Trade Commission over charges that it “deceptively tracked” the locations of hundreds of millions of consumers without their knowledge or consent, in a deal announced June 22. Central to the case is an alleged Children’s Online Privacy Protection Act, or COPPA, violation, resulting in $950,000 in civil penalties and required implementation of a comprehensive privacy program.
Consumer advocate groups--Public Knowledge, Consumer Watchdog, Center for Digital Democracy, Consumer Action, TURN-The Utility Reform Network and Consumer Federation of America—recently filed a complaint with the Federal Trade Commission and a petition with the Federal Communications Commission against AT&T, Cablevision, and Comcast, citing privacy-related offenses. The FTC complaint notes the companies’ failure to adequately disclose the extent of their consumer data use and sharing, arguing that their use of customer data without appropriate disclosures and without opt-in consent amounts to an “unfair and deceptive” practice in violation of the Federal Trade Commission Act. The FCC petition, on the other hand, asserts that the cable and satellite providers fail to adequately obtain customer consent prior to collection and use of such data, in violation of federal law.
If you attended the Consumer Electronics Show in Las Vegas, you probably noticed many concepts applied to the one item that many Americans use every day: the automobile. Over the past few years technology developers and manufacturers have set their sights on the automotive industry, which is one of the largest industries in the United States. From automated cars, syncing software, to wearable devices that interact with a vehicle, it is clear that our time in the car is under an era of rapid change.
ABOUT ARENT FOX LLP
Arent Fox LLP, founded in 1942, is internationally recognized in core practice areas where business and government intersect. With more than 350 lawyers, the firm provides strategic legal counsel and multidisciplinary solutions to clients that range from Fortune 500 corporations to trade associations. The firm has offices in Los Angeles, New York, San Francisco, and Washington, DC.