A new Florida law requires state and local government agencies to report to the state’s Cybersecurity Operations Center any ransomware incident within 12 hours; and any emergency-level, severe-level, or high-level cybersecurity incident – within 48 hours.
Such reports must specify at least the following information:
The U.S. Federal Trade Commission published a blog post stating that it will use the full scope of its legal authorities to protect consumers’ privacy against the over-collection, indefinite data retention, or misuse of their data.
Misuse of sensitive data such as mobile location and health information, might expose consumers to discrimination, stigma, mental anguish, or other serious harms. Such ...
The Israeli High Court of Justice dismissed the petitions filed against the Israeli biometric database law (officially called The Inclusion of Biometric Identification Measures and Biometric Identification Data in Identification Documents and a Database Law, 5770-2009). Since 2017, the law requires citizens seeking to issue identification documents (passports and IDs), to provide their facial images (and optionally, thumbprints), to be ...
The Israeli Supreme Court ruled that individuals and small businesses in Israel who use Facebook’s advertisement services may, in certain cases, assert civil claims against Facebook in Israel and under Israeli law. The governing law provision in Facebook’s terms, which provides that all lawsuits against Facebook will be asserted in California courts and under California law, is inconsequential.
The court ...
An investigative journalism report by the Turkish news website Medyascope revealed that the Information Technologies and Communications Authority of the Turkish Ministry of Transportation (BTK) has been conducting extensive surveillance of citizens’ online activities for the past 18 months. Among the data collected by the BTK, are information about the websites visited, WhatsApp interactions, and location data.
According to Medyascope’s ...
In a letter addressed to legal professionals the British National Cyber Security Center (NCSC) explained that although the legal framework in the UK does not outright prohibit paying ransomware, the British government does not endorse or condone it either, and payers and the legal advisers advising them on this matter should be mindful of the possibility that certain sanctions regimes ...
New user? Click here to register