October 22, 2017

Answers To The Most 5 Frequently Asked Questions Regarding Data Protection in the United States

1. Are there any database protection rights in the United States? If so, could these be used to protect information such as sports fixture lists, timetables or other collections of data? Are there any decisions on the scope of protection and/or what can be protected?

2. Could such information be protected under copyright law and if so how? Has this protection been tested in any cases?

In the United States, database protection rights exist in only a few limited areas, including the protection of semiconductor chips and boat hulls.  Currently, no law exists that explicitly provides protection to databases and collections of data.  Although legislators have introduced bills in the United States Congress to protect databases, Congress has never enacted any of these bills into law.  Without these type of rights, collections of data only receive protection under if they can be protected under copyright law. Among other requirements to be protected under copyright law, the work has to be “original” which means that the work is independently created and not copied from other works.  (See 17 U.S.C. § 102(a).)  The copyright in a compilation or derivative work extends only to the material contributed by the author of such work, as distinguished from the preexisting material employed in the work, and does not imply any exclusive right in the preexisting material.  Thus, there is no copyright protection in the underlying facts or data in a compilation.  In addition, the United States Copyright Office has issued regulations prohibiting the use of copyright to protect “information that is common property containing no original authorship,” such as “schedules of sporting events[] and lists or tables taken from public documents or other common sources.”  (22 C.F.R. § 202.1(e).) [Read more…]

Avoiding/Reducing Corporate Criminal Exposure for IP Violations

All it takes are the acts of one rogue employee for the federal government to open a criminal investigation of the company.  In the intellectual property arena, companies have found themselves to be the subject of a federal investigation, for example, by  hiring employees from a competitor and who bring with them to their new company the trade secrets and other confidential information from their old company.  Avoiding exposure to liability for criminal theft of trade secrets under the Economic Espionage Act requires that businesses take a close look at all their procedures involving confidential information.  Standards of contracting authority and rules for entering into nondisclosure agreements should be reviewed to control the process of assuming, tracking, and enforcing confidentiality obligations to third parties.  Hiring practices should be reviewed to avoid hiring tainted employees and consultants and to emphasize respect for intellectual property rights as part of a company’s training program.  Perhaps most importantly, a company must examine its business relationships to determine the procedures and behaviors of those who may create vicarious liability under the EEA.
[Read more…]

Are You Ready To Be Hacked?

A number of the largest ever computer security breaches have occurred over the past several months.  For example, at the end of March, computer hackers stole the names and email addresses of customers of Barclayscard US, Capital One and other large firms from the email provider Epsilon.  Then in April, 2011, reports suggest that hackers obtained credit card information and other personal identifiable information of potentially 77 million Sony Playstation users in 59 countries.  There have also been a number of other large scale attacks since then. While it is extremely difficult to measure with precision the total costs and damages caused by a security breach, especially for ones as large as these, it is estimated that Epsilon and Sony may be out tens of millions of dollars.  According to one estimate, the average cost to respond to a breach in 2010 was more than $300 per affected customer.  Thus, if the estimates are correct, Sony could be facing a bill of more than $20 billion just for notifying affected customers.
[Read more…]