Google Called Before EU Data Watchdogs Over Privacy Concerns

Stephanie Bodoni, Bloomberg,  Thursday, February 28, 2013

Google Inc. (GOOG) will have to appear before a group of European Union data-privacy watchdogs as part of a probe that may lead to what the regulators called coordinated “repressive action” after it failed to fix flaws in its privacy policy.

Why Is Google Dragging Its Heels on European Privacy?

Doug Miller by Doug Miller, Milltech Consulting
Thursday, February 28, 2013

Last week saw the latest chapter unfold in Google’s privacy battle with the European Union. In October 2012, France’s Commission Nationale de l’Informatique et des Libertes, or CNIL published a set of recommendations, on behalf of 27 European data protection authorities, suggesting that Google should address the “uncontrolled combination of data across services” and other data collection issues in its new privacy policy.

Google’s New Battle With Europe: Who Will Win?

Jeff Gould, Wired Insights,  Tuesday, February 26, 2013

As the European Commission’s long-running investigation of Google’s search market dominance edges toward a possible settlement, the Mountain View Internet giant, not content to let well enough alone, appears to be digging in for yet another protracted battle with European regulators, this time over online privacy. The association of the EU’s Data Protection Authorities – known as the Article 29 Group – will vote this week on a plan to take legal action over Google’s refusal to remedy what the regulators claim are clear violations of EU privacy laws.

Pentagon releases mobility implementation plan

Amber Corrin, Federal Computer Week,  Tuesday, February 26, 2013

The Defense Department on Feb. 26 released a new commercial mobile device implementation plan, which will set up framework and guidelines for Pentagon purchases of smart phones, tablets, apps and other mobile capabilities.

Massachusetts Bill To Ban Data-Mining of Student Emails

Bradley Shear by Bradley Shear, Law Office of Bradley S. Shear
Monday, February 25, 2013

Massachusetts has become the first state to introduce legislation that would ban companies that provide cloud computing services from processing student data for commercial purposes. MA Bill 331 is sponsored by Rep. Carlo Basile and it was referred to the House Committee on Education on January 22, 2013. MA Bill 331 states, "Section 1. Notwithstanding any general or special law to the contrary any person who provides a cloud computing service to an educational institution operating within the State shall process data of a student enrolled in kindergarten through twelfth grade for the sole purpose of providing the cloud computing service to the educational institution and shall not process such data for any commercial purpose, including but not limited to advertising purposes that benefit the cloud computing service provider."

Will Samsung’s KNOX, Centrify Deliver Knockout Punch to BlackBerry?

Doug Miller by Doug Miller, Milltech Consulting
Monday, February 25, 2013

In August I wrote a piece for AOL Government asking: “After BlackBerries, What’s Next For Government Mobile Users?” We were all witnessing the decline of BlackBerries as a favored mobile device for government users and I discussed the alternatives that existed in the marketplace.

Big Data's Opportunities, Responsibilities For Education

Cameron Evans, InformationWeek Education,  Thursday, February 21, 2013

It's hard to read an IT trade journal these days without seeing several articles highlighting the promise that big data analytics offer to various industries. At a high level, more data about health care and outcomes can help lead to better future diagnoses and treatments. More data about students also holds promise, offering the potential to improve learning and help identify student weaknesses in ways that are not possible today. But as new technologies such as big data analytics usher in new opportunities, we also have the responsibility to ensure those technologies are used in ways that meet our laws and cultural norms.

Federal CIO Outlines Next Steps

J. Nicholas Hoover, InformationWeek Government,  Thursday, February 21, 2013

The Obama administration's second term has gotten off to a fast start for federal CIO Steven VanRoekel. In the past few weeks, he's been quizzed by lawmakers on the need for additional IT reform and the Department of Energy has been hit by a sophisticated cyber attack. Now the threat of budget cuts triggered by sequestration looms.

Federal Privacy Regs Puzzle State Agencies

Eric Chabrow, GovInfoSecurity.com,  Thursday, February 21, 2013

State and local agencies that must comply with federal regulations have complained that they can be befuddled by privacy requirements that could limit the effectiveness of their information sharing systems. The U.S. Government Accountability Office on Feb. 21 made pubic the report, Human Services: Sustained and Coordinated Efforts Could Facilitate Data Sharing While Protecting Privacy, which examined four selected states and localities that employed systematic and automated data sharing to improve eligibility or case management processes.

Are Cloud Service Providers Maintaining Encrypted Data Business Associates Under HIPAA?

Daniel J. Solove by Daniel Solove, TeachPrivacy
Wednesday, February 20, 2013

In a previous post, I discussed the implications of the new HIPAA-HITECH Act regulation for cloud service providers. I noted that cloud service providers would generally be deemed to be business associates (BAs) under HIPAA because any entity that “maintains” protected health information (PHI) on behalf of a covered entity or another BA is deemed a BA. Under HIPAA, BAs are directly liable to HHS enforcement for a number of responsibilities under the HIPAA Privacy and Security Rules. Moreover, a BA must be under a business associate agreement (BAA) with the entity supplying the PHI.