The Texas Court of Criminal Appeals ruled Feb. 25 that law enforcement needs a warrant to search the cellphone of someone who has been arrested and jailed.
Schools and school districts should start with an inventory of all the online educational services they use, the guidance says. It also urges them to establish policies for evaluating online services before schools agree to use them.
A bill in the California State Senate would ban online services for K-12 schools from compiling or sharing students' personal information for commercial purposes, including advertising. Sen. Darrell Steinberg (D-Sacramento), the Senate leader, introduced the bill Feb. 20. "Kids are in the classroom to learn and we value the security of their personal information above private profit," Steinberg said in a statement.
Homeland Security Secretary Jeh Johnson has ordered Immigration and Customs Enforcement not to go forward with a solicitation for a commercially-run nationwide license plate tracking database following public outcry against it.
Technology has allowed law enforcement and intelligence to expand surveillance not just because it has lowered costs but because they encounter less resistance from judges and companies, Christopher Soghoian of the American Civil Liberties Union said.
A component of the Homeland Security Department wants the private sector to build a nationwide database of license plates and zoomed-out photos of their cars, shows a Feb. 12 solicitation notice.
Consumers would have access to the private information that data brokers collect about them under a bill that Sen. Jay Rockefeller (D-W.V.) introduced Feb. 12. Data brokers, which assemble information about individuals and sell it to marketers, would have to maintain a public website that explains to consumers how to review their information and how they can prevent brokers from selling it.
There's confusion within the federal government regarding the requirements for setting up information exchanges between agencies, finds the Government Accountability Office in a newly released Jan. 13 report.
Although the National Institute of Standards and Technology backed down from including a dedicated privacy appendix in the newly released critical infrastructure cybersecurity framework, it hasn't given up on the prospect of including privacy controls in future iterations of the framework. In the final version of the framework released Feb. 12 – final only in the sense that it's version 1.0 of what NIST says will be a "living document" – NIST removed an appendix containing privacy controls included in earlier drafts.
The federal government today released a framework for cybersecurity meant for voluntary adoption within the private sector while acknowledging that work remains to be done in constructing incentives for adoption, and within the framework itself. Framework development has been a year-long effort under the tutelage of NIST, which received a mandate through an cybersecurity executive order.