On March 13, 2015, the Connecticut Attorney General’s Office announced that it has created a privacy and data security department to focus on data breach and consumer privacy investigations and litigation. Attorney General George Jepsen said,

When I took office in January 2011, it became immediately clear that data privacy and security were growing concerns in our state and across the country… In the four years since, nothing has lessened the importance of our privacy work… Sadly there is no reason to predict that the demands of privacy and data security concerns will subside in the foreseeable future.

The head of this new department will be Assistant General Matthew Fitzsimmons, who will work alongside one attorney who will focus exclusively on privacy matters, and three other attorneys who will spend part of their time working with the department. For the last several years, Fitzsimmons has been an integral part of the consumer protection oversight and enforcement efforts of the AG’s Office, which have included frequent collaborations with the FCC, leading to large financial recoveries and settlements. Of course, this new department will also continue to work closely with the Department of Consumer Protection.

This department was created not only out of the state’s desire to better protect consumer privacy, but also because since 2012, when Connecticut companies were first obligated by law to notify the Attorney General’s office of data breaches, the office has received over 1,100 notifications. Assistant General Fitzsimmons says, “It’s going to be an enduring part of the office long after [Attorney General Jepsen] leaves.” Companies can take this as a fair warning that the Connecticut Attorney General’s office is on the lookout to investigate and enforce failures to adequately protect consumer information.

Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Edward Heath Edward Heath

Ed Heath is an experienced trial lawyer who has taken matters to verdict in state and federal courts and has appeared on behalf of international and domestic businesses in courts throughout the country. In addition, he routinely counsels clients in connection with government…

Ed Heath is an experienced trial lawyer who has taken matters to verdict in state and federal courts and has appeared on behalf of international and domestic businesses in courts throughout the country. In addition, he routinely counsels clients in connection with government investigations involving agencies such as the United States Attorneys’ Offices, the Federal Bureau of Investigation, the Internal Revenue Service, the Department of Health and Human Services, the Department of Labor, the Environmental Protection Agency, and the Coast Guard, as well as the attorneys general of various states. His clients have included technology companies; manufacturers; financial institutions; health care entities; educational, charitable, and religious organizations; professional associations, such as law and accounting firms; municipalities; judges; and media personalities. Read his full rc.com bio here.

Photo of Kathryn Rattigan Kathryn Rattigan

Kathryn Rattigan is a member of the Business Litigation Group and the Data Privacy+ Cybersecurity Team. She concentrates her practice on privacy and security compliance under both state and federal regulations and advising clients on website and mobile app privacy and security…

Kathryn Rattigan is a member of the Business Litigation Group and the Data Privacy+ Cybersecurity Team. She concentrates her practice on privacy and security compliance under both state and federal regulations and advising clients on website and mobile app privacy and security compliance. Kathryn helps clients review, revise and implement necessary policies and procedures under the Health Insurance Portability and Accountability Act (HIPAA). She also provides clients with the information needed to effectively and efficiently handle potential and confirmed data breaches while providing insight into federal regulations and requirements for notification and an assessment under state breach notification laws. Prior to joining the firm, Kathryn was an associate at Nixon Peabody. She earned her J.D., cum laude, from Roger Williams University School of Law and her B.A., magna cum laude, from Stonehill College. She is admitted to practice law in Massachusetts and Rhode Island. Read her full rc.com bio here.