Federal

Violation of Nigerian data protection law attracts N2m fine, others

Ife Ogunfuwa reports: Nigerians and businesses’ risk losing N2m or more to the government for violating the Nigeria Data Protection Regulation 2019. The National Information Technology Development Agency made this known on Wednesday in a public notice signed by the Director-General/Chief Executive Officer, NITDA, Dr Isa Patanmi. said the penalty...

New Requirements for FTC Data Security Settlements

Katherine E. Armstrong of Drinker Biddle & Reath LLP writes: Two of the Federal Trade Commission’s (FTC’s) most recent data security settlements include new requirements that go beyond previous data security settlements. The new provisions (1) require that a senior corporate officer provide to the FTC annual certifications of compliance and (2) specifically prohibit...

SkyMed Medical Evacuation Membership Service Exposed Data of 137k Members

Jeremiah Fowler reports on another unsecured elasticsearch database that his firm has found: On March 27th I discovered an unsecured Elasticsearch database that contained what appeared to be members of a medical evacuation membership service. Upon further inspection of the data there were many references that the data allegedly belonged to Florida based SkyMed....