News & Insight

Category: Data Privacy and Protection

Liberal Arts Colleges’ Student Admission Files Hacked

On Thursday March 7, the same week that The Wall Street Journal reported on Chinese hackers targeting universities in order to obtain access to classified military technology, Inside Higher Ed reported that applicants at three liberal arts colleges had received anonymous notes offering them the chance to buy their complete […]

  Mar 13, 2019  |  By    |   On Data Privacy and Protection

Universities Targeted by Chinese Hackers for Military Technology

On Tuesday, March 4, The Wall Street Journal reported that more than two dozen universities in the U.S., Canada and Southeast Asia had been targeted by Chinese hackers.  In its report, The Wall Street Journal cited research from iDefense, a cybersecurity intelligence unit of Accenture Security, indicating that the University of […]

  Mar 13, 2019  |  By    |   On Data Privacy and Protection

Illinois Privacy Law Does Not Require Actual Harm

On January 25, 2019, the Illinois Supreme Court held that a person whose rights under the Biometric Information and Privacy Act (“BIPA”) (740 ILCS 14/1) are violated is “aggrieved” and is not required to show that the violation caused actual harm in order to bring an action seeking damages and/or […]

  Feb 18, 2019  |  By    |   On Data Privacy and Protection

GDPR and Higher Education in the US: An Overview

Welcome to the first in HMBR’s series of FAQ’s developed to inform colleges and universities in the United States (US) about the GDPR and how various activities may bring them under the jurisdiction of European Union (EU) data protection authorities, even when they have no established presence in the EU. […]

  Apr 6, 2018  |  By    |   On Data Privacy and Protection

Protection and Disclosure of Decedent’s PHI — Recent changes to HIPAA privacy rules to allow less stringent policies in protecting privacy of deceased individual’s information

  Jan 26, 2018  |  By    |   On Data Privacy and Protection

Risk Assessment – Practical commentary on conducting a risk assessment under HIPAA’s Breach Notification Rule.

  Jan 26, 2018  |  By    |   On Data Privacy and Protection