This article, published in Computer Law & Security Review, takes a look at the Hong Kong Monetary Authority (HKMA)’s Open Application Programming Interface Framework for the Banking Sector (Open API Framework), which was issued on 18 July 2018, with the aim to encourage the development of innovative technology solutions and the amalgamation of information by
Payment Card Industry Data Security Standards (PCI DSS)
US Consumer Financial Protection Bureau Brings First Data Security Enforcement Action
On March 2, 2016, the Consumer Financial Protection Bureau (Bureau) undertook its first data security enforcement action in a consent order against Dwolla, Inc., a payment network provider that allegedly made deceptive representations about its data security practices. Although in this matter the Bureau relied upon its authority to take action against “deceptive” practices, the…
Safeguarding Personal Information: What Washington Businesses Need to Know about Data Security Standards
In a bylined article, Litigation & Dispute Resolution partners Charles E. Harris, II, Laura Hammargren, and associate Rebecca Klein (all Chicago) examines certain data security standards and why Washington entities might consider complying with one of these standards.
US Federal Trade Commission and Wyndham Worldwide Settle Closely Watched Cybersecurity Action
On December 9, 2015, Wyndham Worldwide Corporation, and related companies (collectively, “Wyndham”), reached a settlement with the US Federal Trade Commission (FTC) to resolve claims arising from three data breaches that the hotel chain suffered over several years. Wyndham did not admit to the FTC’s allegations of deceptive and unfair practices, but agreed to meet…
Big Data and Cybersecurity: Standards for Safeguarding Personal Information
Domestic and multinational companies are increasingly focused on safeguarding personal information due largely to the potential liability and reputational damage associated with data breaches. In 2010, we published an article titled “Is Data Breach Litigation a Continuing Threat?,” after countless consumer class actions seeking damages following a data breach were dismissed for failure to establish…