Litigation and regulation surrounding privacy and cybersecurity is continuously developing, both within the government and the private sector. This digest summarizes the most notable events in data security this week.
Adobe Reaches Preliminary Settlement with Class Action Plaintiffs Over Breach
Adobe has asked the Court to approve a class action settlement stemming from a 2013 security breach. The settlement requires Adobe to implement reasonable security measures with respect to intrusion detection, network segmentation, and encryption, and to submit to a security audit to ensure implementation of the measures. Each named plaintiff in the class will also receive $5,000, and Adobe will pay $1.18M in attorneys fees and costs.
New Hampshire Student Data Bill Passed
Effective August 11, 2015, the New Hampshire Department of Education will be required to maintain a data security plan to protect the personally-identifiable information of it students and teachers, which includes privacy compliance standards, privacy and security audits, a breach notification plan, and a data retention policy.
EPIC Files Request with FTC to Investigate Uber Customer Tracking