Category Archives: marketing data

Lege TREND. Data Minimization in Cybersecurity bill drafts

What do I need to know about data minimization? It means that companies shouldn’t collect personal data “beyond what is adequate, relevant and necessary” for the product or service.

What’s an example? Your takeaway driver doesn’t need access to your photo library to scan your credit card

NextGov | Inside One Lawmaker’s Proposal for a Privacy Bill of Rights

Lege Trend. +1 State Broad Data Privacy Legislation

Washington State is considering SB 5376 and HB 1854 (WA | 2019) will:

  • Consumer Access to data collected on them
  • Consumers can delete data collected on them
  • Consumers can correct their data
  • Consumers can restrict access to their data
  • Consumers can get a copy of their data
  • Consumers can object to their data for marketing
  • No profiling based on data
  • Comapnies collecting data have 30 days to respond to consumer requests, with an extention of an additional 60 days for voluminous requests

The…

Lege Trend. Data Broker Registries

Tim Cook (Apple) is recommending a Data Broker Registry.

What’s a data broker? they buy and sell data from third parties

So how would it work?

  • every consumer can opt into their data being collected or not
  • consumers would be able to remove their data from the registry
  • the FTC would house the registry and consumers could see what info is being collected and by whom

Why does this sound familiar? Because in 2018 informed:intel told you about the first in the nation data broker state law in VT,…

5 Points. Apple Desired Information Privacy Law.

 

  • tech companies should de-identify customer data or not collect customer data
  • comprehensive federal law is necessary
    • why? tech companies that collect a lot of data are basically spies
  • people should have a right in their data, and a right to have that data minimized
  • consumers must be told what data is being collected & why
  • the data belongs to the users and users (consumers) should always have access to it

The gold standard law: GDPR in the EU

Ars Technica | Tim Cook Calls for Strong US…

Lege TREND. Data Miner Regulations. Legislation proposal.

How a state can legislatively protect its residents from data miners:

  • apply laws not only to 3rd party data miners but also 1st party data miners that do have a direct relationship with consumers such as:
    • retailers
    • social media companies

Also, what is a data miner? an entity or person that collects and sells personal information from consumers with whom the broker has no direct relationship

 

Electronic Fronteir Foundation | Vermont’s New Data Privacy Law

Lege Trend. 2 Concerns about Student Data Protection. Vouchers Included.

Concerns related to maintaining  data collection: Make certain the state collects enough data necessary  to improve schools

Concerns to protect student data from voucher schools: Student data must be protected from “voucher schools” that would use the data to advertise to public school students

Milwaukee Star Tribune | Legislators to study how to protect student data

Teacher Data Hacked. 3 Keys from the ISD Response.

What did hackers breach? Lawrence, MA Public Schools’ online database

How did the hackers breach the school database? A phishing attack 

What did hackers take? Teachers’ personal information:

  • names
  • phone numbers
  • addresses
  • Social Security numbers
  • calendar year 2015 gross earnings

How did the school district respond?

  • email to teachers informing them of the breach
  • explained that the district would:
    • mitigate the breach
      • directing teachers to sign up for 90 days of free credit…

INTERIM. 8 Elements of Data Security Laws & Regulations.

  • Data Breach Definition.
    • What data was breached?
    • The level of knowledge the data holder must have of the breach before notification is triggered. Did they know? Is it reasonable that this data was breached?
  • How to treat good faith access to data by an unauthorized employee
  • How to treat the breach of account creditial information.
    • user name, passwords, and security questions
  • Timing.
    • When must notification be given?
  • How to treat data processors, people who hold the data but…

North Texas Congressman Front & Center on Cyber Security Legislation

In the political hot spot that is Denton County, Congressman Burgess noted the importance of bringing all stakeholders together on data security legislation by saying,

“I wanted to take an opportunity to hear from people who are working in the research area and the private sector and pull everyone together in a room for the morning and hear what the state of the industry is, and where they thought we might do things to improve it,” said Burgess, R-Lewisville.

Denton Record Chronicle