PRIVACY + SECURITY BLOG

News, Developments, and Insights

high-tech technology background with eyes on computer display

Are Many Privacy Violations Also Data Breaches?

Privacy and Security

Data breaches and privacy violations have long been thought of as different things, but actually, there is a lot of overlap. Two recent FTC cases address this issue. These cases involve the Health Breach Notification Rule, 16 CFR Part 318, which covers health data breaches beyond HIPAA. The Rule had long existed, but the FTC […]

Cybersecurity and Data Security: What Every Lawyer Should Know

Cybersecurity and Data Security Speakers What Every Lawyer Should Know

I was recently on a terrific panel called Cybersecurity and Data Security: What Every Lawyer Should Know held by Penn State Dickinson Law.  The program focused on the latest developments in cybersecurity and data privacy. The panel was moderated by Professor Daryl Lim, H. Laddie Montague Jr. Chair in Law at Penn St. Dickinson Law. […]

Unifying Privacy and Data Security

Unifying Privacy and Security

Professor Woodrow Hartzog and I have posted on SSRN another free chapter from our recent book. The chapter is entitled Unifying Privacy and Data Security. The chapter is about the relationship between privacy and data security, and it can be read as a stand-alone essay. With our publisher’s gracious permission, we’re making this chapter available […]

Key Quotes from BREACHED!

Breached - Solove and Hartzog 11

Professor Woodrow Hartzog and I selected some key quotes from our new book, BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press 2022). Website for Breached!  Breached! Amazon Page Download Chapter 1 for free The Law’s Obsessive and Unproductive Focus on Data Breaches “Too much of the current law of data security […]

BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press 2022)

Breached - Solove and Hartzog 05

I’m delighted to announce that my new book, Breached!, with Professor Woodrow Hartzog is now out in print: BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press, March 1, 2022) Website for Breached!  Breached! Amazon Page Excerpt from the book jacket description: Drawing insights from many fascinating stories about data breaches, Solove […]

Automating Privacy Incident and Breach Response: An Interview with Andy Lunsford

Privacy law compliance and data breach response involve tasks of great complexity and scale that can quickly overwhelm an organization’s privacy team. Technologies have emerged to automate these tasks, but there are many decisions to make about which tasks to automate and which solutions to use. I recently had a chance to chat with Andy Lunsford is […]

Podcast Interview with Information and Privacy Commissioner of Ontario on Privacy and Children

On this podcast, Info Matters, I chat with Patricia Kosseim, Information and Privacy Commissioner (IPC) of Ontario, Canada about kids and privacy and my children’s book on privacy, THE EYEMONGER. Episode Summary: Parents, kids, teachers, this one’s for you! Explaining privacy in a way that kids can understand — concepts and tools you can use […]

Upcoming LinkedIn Live Conversation on Dark Patterns

Dark Patterns

I will be having a LinkedIn Live session on Tuesday, May 11, at 1 PM Eastern: Dark Patterns: A Conversation with Elena Elkina, Alexandra Ross, and Daniel Solove Tuesday, May 11 at 1 PM Eastern I’ll be speaking with: Elena Elkina Elena is a a co-founder of Aleada Consulting, a woman and minority owned privacy […]