Leslie A. Pappas reports:
The Delaware House has moved legislation that would strengthen the state’s data breach notification law.
The bill would require any person doing business in Delaware to safeguard personal information. It would expand the definition of personal information to include medical information, biometric data, user names and passwords, passport numbers, routing numbers to accounts, and individual taxpayer identification numbers.
The bill would also add a new requirement that companies notify the state attorney general of breaches affecting more than 500 residents.
Read more on Bloomberg BNA.