Congressionally legislated privacy may not consider benefits of information sharing

With the addition of yet another privacy bill to the slate of draft legislation pending in Congress, this time in the Senate in the form of the Data Security and Breach Notification Act of 2010 (S….

Major cloud computing privacy legal issues remain unresolved

From a legal standpoint, it appears that while many opinions exist on how privacy can be protected in the cloud, who should ultimately be responsible for that protection, and how law enforcement agencies and other government entities should treat cloud environments, there are more unresolved issues than there are settled ones.

Proposed SEC rule on asset-backed securities calls for troubling amount of personal information disclosure

In the continuing aftermath of the financial industry meltdown and the contribution to that failure of insufficient oversight of large portions of the securities markets, the Securities and Exchange Commission has proposed significant changes to its…

Seattle public schools extend off-campus speech policies to online activity

As reported by local Seattle media outlets, the Seattle School Board — with oversight for public schools in a district serving 46,000 students — voted last week to adopt an update to its student Code of…

Court rules that continuous GPS monitoring infringes on reasonable expectations of privacy

The U.S. Circuit Court for the District of Columbia offered some new judicial insight into reasonable expectations of privacy when it issued a ruling this month overturning the conviction of an alleged drug trafficker because the…

The right to sue remains an important element of contract-based governance models

Among the gaps a formal governance system for the NHIN is intended to fill is the inability for organizations without a government contract or grant to sue the government; this lack of privity is cited by…

Despite emphasis on risk analysis, health IT security won’t change much under meaningful use

With all the talk about the need for effective security measures to protect personal health data stored in electronic health records and shared among organizations participating in health information exchanges, the decision of what actual security…