On December 12, 2019, the U.S. Department of Health and Human Services Office for Civil Rights (OCR) announced its second “HIPAA Right of Access Initiative” settlement of alleged HIPAA violations.

The HIPAA Right of Access Initiative is a new effort in 2019 by OCR to monitor compliance with HIPAA requirements addressing patient rights to promptly

Security researchers have warned municipalities repeatedly about how they are being targeted with ransomware, that they are at high risk, and the need to make data security a high priority.

Municipalities are unfortunately only taking heed now that recent ransomware campaigns are in the news and bringing some municipalities to their knees [view related posts

The North American Securities Administrators Association (NASAA) this week approved an information security model rule package aimed at improving the cybersecurity posture of the 17,543 state-registered advisers.

The proposed model would require state-registered investment advisers to establish written cybersecurity policies and procedures designed to safeguard clients’ records and information, and to deliver its privacy policy

Last week, the Federal Aviation Administration (FAA) began investigating a YouTube video that shows a helicopter almost colliding with a drone right off the coast of Hollywood Beach, Florida. In the video, the drone is heading west towards the coast before its camera turns south and the helicopter is seen in the distance; the helicopter

Last week, A&B Insurance and Financial LLC (A&B Insurance) agreed to pay $4.25 million to settle claims that it violated the Telephone Consumer Protection Act (TCPA) by initiating telephone calls to consumers without prior express consent, as required by the TCPA, including some calls to consumers on the federal Do Not Call Registry. Lead plaintiffs,

A class action was filed in Fort Lauderdale, Florida this week against a national telehealth provider, MDLive Inc. (MDLive) for its mobile app’s alleged secret capture of screenshots containing sensitive patient information without restricting access to medical providers who have a legitimate need to view the information. The lawsuit was filed by Utah resident, Joan Richards, who is seeking class certification of a class that she estimates will include thousands of other MDLive users and more than $5 million damages.
Continue Reading Class Action Initiated Against Telehealth Provider for Disclosure of Sensitive Information

The city of Orlando, Florida recently issued a new drone ordinance aiming to “promote hobbyists and commercial use of unmanned aircraft” while “balancing the paramount need to protect the well-being, tranquility and privacy of its citizens.” The ordinance restricts the use of drones (i.e., the launch, landing or operation) at or near city property: 500

American Eagle Outfitters (American Eagle) settled a class action filed against it for alleged Telephone Consumer Protection Act (TCPA) violations for $14.5 million last week. The class action complaint alleged that American Eagle send unsolicited text message messages to over 600,000 unique cell phone numbers without prior written consent as required by the TCPA. The