With the end of the calendar year drawing near, this is a good time for employers to conduct a year-end review to make sure their benefit plans are up-to-date and operating in compliance with the law. In addition, the end of the year brings a number of important deadlines, with others to follow early in 2017.
New Suit by Delta Reminds Everyone About the Importance of Data Security Protection in the Context of Third-Party Service Provider Relationships
F. Paul Greene, chair of HSE’s Privacy and Data Security Practice Group, was featured in the Expert Analysis section of the New York Law Journal on October 24, 2016.
Recent guidance issued by the Department of Health and Human Services (“HHS”) clarifies the extent to which cloud service providers are subject to the privacy, security, and breach notification rules under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”).
Last month, in Galaria v. Nationwide Mutual Insurance Co., Nos. 15-3386/3387 (6th Cir. Sept. 12, 2016), the Sixth Circuit issued a decision finding standing for a class of plaintiffs in a data breach class action.
The Second Circuit recently certified three questions regarding who may be held liable under New York State Human Rights Law Section 296(15) which prohibits discrimination on the basis of a criminal conviction record.