Posts about Data Security by Professor Daniel J. Solove for his blog at TeachPrivacy, a privacy awareness and security training company.
Professor Woodrow Hartzog and I are posting The Failure of Data Security Law as a free download on SSRN. This is a chapter is from our book, BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT. In this book chapter, we survey the law and policy of data security and analyze its strengths […]
Data breaches and privacy violations have long been thought of as different things, but actually, there is a lot of overlap. Two recent FTC cases address this issue. These cases involve the Health Breach Notification Rule, 16 CFR Part 318, which covers health data breaches beyond HIPAA. The Rule had long existed, but the FTC […]
I recently gave a talk on Faculti about ideas in my recent book, BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press 2022), about how major security breaches could be prevented through new approaches to data security law. The Faculti platform provides a library of 8,000 video and audio insights […]
Professor Woodrow Hartzog and I have posted on SSRN another free chapter from our recent book. The chapter is entitled Unifying Privacy and Data Security. The chapter is about the relationship between privacy and data security, and it can be read as a stand-alone essay. With our publisher’s gracious permission, we’re making this chapter available […]
Woodrow Hartzog and I wrote a new article about data breaches called “Data Vu: Why Breaches Involve the Same Stories Again and Again.” We discuss how data breaches involve the same old mistakes and how we must break the cycle. We begin: In the classic comedy Groundhog Day, protagonist Phil, played by Bill Murray, asks “What would […]
Professor Woodrow Hartzog and I selected some key quotes from our new book, BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press 2022). Website for Breached! Breached! Amazon Page Download Chapter 1 for free The Law’s Obsessive and Unproductive Focus on Data Breaches “Too much of the current law of data security […]
I have an article with Professor Woodrow Hartzog in Slate created from an excerpt from our new book, Breached! Why Data Security Law Fails and How to Improve it We Still Haven’t Learned the Major Lesson of the 2013 Target Hack By Woodrow Hartzog & Daniel Solove Slate (April 13, 2022) You can read Chapter […]
Professor Woodrow Hartzog and I have posted Chapter 1 of our new book, BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press 2022) on SSRN: Chapter 1: Chronicle of a Breach Foretold You can download it for free. Website for Breached! Breached! Amazon Page * * * * This post was authored […]
I’m delighted to announce that my new book, Breached!, with Professor Woodrow Hartzog is now out in print: BREACHED! WHY DATA SECURITY LAW FAILS AND HOW TO IMPROVE IT (Oxford University Press, March 1, 2022) Website for Breached! Breached! Amazon Page Excerpt from the book jacket description: Drawing insights from many fascinating stories about data breaches, Solove […]
Privacy law compliance and data breach response involve tasks of great complexity and scale that can quickly overwhelm an organization’s privacy team. Technologies have emerged to automate these tasks, but there are many decisions to make about which tasks to automate and which solutions to use. I recently had a chance to chat with Andy Lunsford is […]