New York’s Paid Family Leave Law (PFLL) will provide employees with wage replacement while away from work in order to bond with a child, care for a close relative with a serious health condition, or help with family duties when someone is called to military service.
Some may say that it was only a matter of time. On September 7, 2017 Equifax, one of the country’s three main credit reporting agencies, reported that it has been hacked. It appears that the breach took place from mid-May through July, during which the hackers accessed names, Social Security numbers, personal ID numbers, birth dates, addresses, and, in some cases, driver’s license numbers and credit card numbers. This breach affects at least 143 million U.S. consumers.
The move toward banking industry “disruption” and new “fintech” opportunities has resulted in a revisiting of the industrial loan company (ILC) charter- once a feared vehicle for expansion by Wal-Mart and others into the banking industry.
The federal district court in Connecticut recently considered whether federal law prevents enforcing Connecticut’s Palliative Use of Marijuana Act (PUMA), which permits the use of medical marijuana for certain conditions.
The Missouri legislature recently enacted significant changes that raise the bar on proving discrimination and whistleblower claims; cap compensatory and punitive damage; eliminate individual liability for supervisors; and preempt local minimum wages. They become effective on August 28, 2017.
The judge in a recent court case ordered the Equal Employment Opportunity Commission (EEOC) to develop the administrative record supporting rewards of up to 30% of the cost of health coverage for participation in wellness programs. If the EEOC is unable to defend the size of the reward, the EEOC may have to change its wellness program rules.
The National Institute of Standards and Technology (NIST) recently released an updated draft of its Special Publication (SP) 800-53, Security and Privacy Controls for Information Systems and Organizations that sets forth cybersecurity guidance for securing devices and software commonly referred to as the “internet of things.” The draft represents NIST’s latest attempt to produce a unified information security framework for the federal government that is now also bleeding into the private sector.
Effective July 2017, Vermont joined the growing list of state and local jurisdictions to “ban-the-box” and limit employer access to a prospective employee’s criminal record. Eight other states (Connecticut, Hawaii, Illinois, Massachusetts, Minnesota, New Jersey, Oregon and Rhode Island) have removed criminal history questions from job applications for private employers.
Companies doing business in Delaware should be aware of a recent amendment to its cybersecurity and data breach notification law. Effective April 14, 2018, companies will be required to ensure that reasonable procedures and practices are in place to protect Delaware residents’ personal information collected through the course of business. This new law does not define or otherwise elaborate on the specific procedures or practices that will be deemed acceptable.