David M. Stauss and Gregory Szewczyk of Ballard Spahr LLP write:
In the absence of federal action, state legislators continue to propose bills that would increase data privacy and security protections for consumers. Any entity that does business in these states or maintains confidential information of their residents should monitor the legislation to determine whether and how the proposed changes may affect operations.
The bills are a direct reaction to Equifax’s data breach disclosure last summer. In prior alerts and articles, we discussed proposed legislation in Arizona, Colorado, North Carolina, and South Dakota. In this alert, we examine legislation being considered in Oregon, New York, Alabama, and Rhode Island.
Read more on The National Law Review.