On May 2, 2023, Indiana became the seventh state in the US to have a complete state privacy law when Governor Eric Holcomb signed Senate Bill 5, or the Indiana Consumer Data Protection Act (ICDPA), into law. Several recent state legislation, including those in Virginia, Utah, and Iowa, are quite similar to the bill. This move was long overdue, as privacy concerns [...]
In a groundbreaking move, Washington State has introduced comprehensive privacy laws to protect its residents' health data. The My Health My Data Act (MHMDA) was enacted on April 27, 2023, in response to the Supreme Court's Dobbs decision, which overturned Roe v. Wade. This pioneering legislation aims to safeguard personal information related to consumer health data and attempts to obtain healthcare services [...]
The Iowa Data Privacy Law is an important legislation that ensures the protection of individual privacy rights in the state. It regulates how organizations collect, store, and use personal information to Iowa residents, to prevent unauthorized access, disclosure or misuse of such data. The law applies to both private and public entities operating within Iowa’s borders. On March 29, 2023, Governor Kim [...]
In a July post (available here), we discussed a new rush of state data privacy laws that will affect businesses nationwide, including the implementation of the CPRA compliance checklist. In that post, we delved into the details of new laws coming online in California, Colorado, Connecticut, Utah, and Virginia. Of these, the law that is (or should be) on every business’s [...]
On May 10, 2022, Connecticut Governor Ned Lamont signed the Connecticut Data Privacy Act, making Connecticut the fifth state in the nation to pass a comprehensive data privacy law after California, Colorado, Utah, and Virginia. Together, these laws represent a monumental shift in the regulatory landscape for businesses and impose significant and meaningful legal obligations on companies nationwide – regardless of where the company is located. [...]
The Colorado Privacy Act (CPA) is a comprehensive consumer data privacy law passed in July 2021. The CPA taking effect on July 1, 2023, regulates the personal information of Colorado residents. Details of the Colorado Privacy Act are provided below. Who Is Regulated Under the Colorado Privacy Act? The Colorado Privacy Act regulates certain businesses that the law terms “controllers.” To qualify [...]
The Utah Consumer Privacy Act (UCPA) is legislation unanimously passed in the Utah Legislature. The final version of this Utah privacy law now awaits the signature of Governor Spencer Cox. If, as expected, the Governor signs the legislation by March 24, 2022, Utah will become the fourth state in the nation with a comprehensive consumer privacy law. The details of the Utah Consumer Privacy Act are [...]
The Virginia House of Delegates and Senate have passed legislation known as the Virginia Consumer Data Protection Act (CDPA). The personal data act is expected to reach the desk of Virginia Governor Ralph Northam, who may sign the legislation by as early as the end of February of 2021. The CDPA is modeled on the California Consumer Privacy Act (CCPA), California’s expansive consumer data privacy protection law, and [...]
The Blackbaud breach is infamous for the sheer amount of organizations the incident affected. Among hundreds of affected organizations were several in the healthcare industry, compromising the protected health information of more than 11 million patients across the country. One such victim has filed a lawsuit against Rady Children’s Hospital, one of the breached organizations, under California healthcare law. More details on the lawsuit are discussed. [...]
The HIPAA Privacy Rule dictates how a healthcare provider may share protected information, or PHI in the workers compensation context. PHI disclosures to the employer and the workers compensation board must be HIPAA compliant. HIPAA workers compensation requirements are discussed below. What is Workers Compensation? Many employers are required, under state law, to purchase and maintain a workers compensation insurance policy (or to self-insure). When [...]
