Latest in Data Protection
Companies holding sensitive personal information on individuals have little incentive to improve their cybersecurity postures. Congress needs to act.
A standard on collection should be rooted in recognized principles on collection of personal information and add some general guideposts to inform the application of the principles in the infinitely varying contexts of today’s data-driven world.
Announcing the latest edition of the Aegis Paper Series from the Hoover Institution
The rules of the game need to change before it’s too late.
Are we framing the conversation about corporate data collection too narrowly?
Not long ago, it was hard to find anyone who thought regulating Silicon Valley was a good idea. But times have changed.
The EU data law is scheduled to take effect May 25.
A new petition for certiorari will give the Supreme Court the opportunity to resolve a circuit-split on an important issue of standing in data breach cases.
There is no cohesive security standard that judges use for reference in data-breach cases.
The Equifax breach raises questions about the duty of care with respect to special relationships and statutes as the basis for a claim.