On May 12, 2011 partner Dana Rosenfeld spoke at the DRI Strictly Retail Seminar in Chicago, IL. The session, “A Retailer’s Obligation to Protect Customer and Employee Personally Identifiable Information: A Review of Federal and State Regulatory Requirements, Recent Case Law and Pending Federal Legislation,” included a review of recent cases, the Federal Trade Commission’s recent reports related to privacy and data security, and new privacy legislation currently before Congress. The session also discussed whether tort law supports a claim for the increased risk of identity theft or an invasion of privacy claim.