Jun 302020
 June 30, 2020  Posted by  Breaches, Healthcare

From the FBI, this warning of June 26:

The Federal Bureau of Investigation is warning the public about potential fraud schemes related to antibody tests for COVID-19.

Scammers are marketing fraudulent and/or unapproved COVID-19 antibody tests, potentially providing false results. In addition, fraudsters are seeking to obtain individuals’ personal information (names, dates of birth, Social Security numbers, etc.) and personal health information, including Medicare and/or private health insurance information, which can be used in future medical insurance or identity theft schemes.

In response to the vast number of COVID-19 cases, and in an effort to return to a normal economy as soon as possible, researchers have been encouraged to devise testing methods that can be quickly and easily deployed to test large numbers of individuals for COVID-19 antibodies. However, not all COVID-19 antibody tests have been approved by the U.S. Food and Drug Administration (FDA), and their efficacy has not been determined.

The FBI warns the public to be aware of the following potential indicators of fraudulent activity:

  • Claims of FDA approval for antibody testing that cannot be verified
  • Advertisements for antibody testing through social media platforms, email, telephone calls, online, or from unsolicited/unknown sources
  • Marketers offering “free” COVID-19 antibody tests or providing incentives for undergoing testing
  • Individuals contacting you in person, phone, or email to tell you the government or government officials require you to take a COVID-19 antibody test
  • Practitioners offering to perform antibody tests for cash

The FBI recommends:

  • Checking the FDA’s website (fda.gov) for an updated list of approved antibody tests and testing companies
  • Consulting your primary care physician before undergoing any at-home antibody tests
  • Using a known laboratory approved by your health insurance company to provide the antibody testing
  • Not sharing your personal or health information to anyone other than known and trusted medical professionals
  • Checking your medical bills and insurance explanation of benefits (EOBs) for any suspicious claims and promptly reporting any errors to your health insurance provider
  • Following guidance and recommendations from the U.S. Centers for Disease Control and Prevention (CDC) and other trusted medical professionals

If you believe you have been the victim of a COVID-19 fraud, immediately report it to National Center for Disaster Fraud Hotline at (866) 720-5721 or justice.gov/disastercomplaintform, or the FBI (ic3.govtips.fbi.gov, or 1-800-CALL-FBI).

For accurate and up-to-date information about COVID-19, visit:

Jun 302020
 June 30, 2020  Posted by  Featured News, Laws, Non-U.S.

From Hunton Andrews Kurth:

Zeyn Bhyat of ENSafrica reports that on June 22, 2020, it was announced that South Africa’s comprehensive privacy law known as the Protection of Personal Information Act, 2013 (the “POPIA”) will become effective on July 1, 2020. POPIA acts as the more detailed framework legislation supporting South Africa’s constitutional right to privacy.

POPIA has been a work-in-progress since it was earmarked for implementation by the South African Law Reform Commission in 2005. The delay in its enactment was attributable, in part, to the publication of the draft EU General Data Protection Regulation (“GDPR”) in 2013, as the POPIA drafting committee paused to consider some of the proposed innovations in the GDPR and also to take steps to ensure that the South African privacy regulator (i.e., the Information Regulator (“SAIR”)) was given an opportunity to develop operational capabilities.

Read more on Privacy & Information Security Law Blog.

Jun 302020
 June 30, 2020  Posted by  Non-U.S., Online

Sangeeta Nair reports:

India has banned 59 Chinese mobile apps that are prejudicial to sovereignty and integrity of India, Defence of India, security of state and public order.

From the Why has India banned Chinese Apps?

The Union Ministry of Information Technology had received several complaints from various sources including reports regarding misuse of some mobile apps available on iOS  and Android platforms to steal and transmit users’ data in an unauthorised manner to servers located outside India.

The compilation of the stolen data and its profiling by elements hostile to national security and defence of India ultimately impinges upon the sovereignty and integrity of India. The Ministry recognised this as a matter of deep and immediate concern that required emergency measures.

The Ministry had also received concerns from citizens regarding security of data and risk to privacy in operation of certain apps.  The Indian Cyber Crime Coordination Centre under the Home Ministry had also sent a recommendation to block such malicious apps.

You can find the list of banned apps here.


Jun 302020
 June 30, 2020  Posted by  Business, Govt, Laws, Online, U.S., Youth & Schools

Liisa Thomas of SheppardMullin writes:

HyperBeard, the makers of several children’s mobile apps (including KleptoCats), recently settled with the FTC over failure to obtain verifiable parental consent before collecting children’s personal information online, in violation of COPPA. In its complaint, the FTC argued that the HyperBeard apps were clearly directed to children. The apps contained brightly-colored animated characters, kid-friendly language, games that were easy to play, and were promoted on kids’ websites and publications.

In the settlement, the company agreed to pay $150,000 in civil penalties and to delete the information it collected without obtaining appropriate parental consent.

Read more on Eye on Privacy.