Kim Zettner of Threat Level discusses the different views expressed at a seminar last week on whether data breach notification laws do any good. As expected, the upshot was “we don’t know” because there are not enough data, surveys may not be reliable indicators, etc. Of course, there is another way to frame the issue…
Category: Breach Laws
CA: Lawmaker: Consumers need details in data breach warnings
Elinor Mills of Cnet reports: Six years after California enacted the country’s first data breach notification law, many state residents have received letters warning them that their data was exposed by a breach but usually they don’t know how or how long, experts said at a privacy conference on Friday. That would change with the…
Congress heard us! (commentary)
I’m first working my way through the provisions in the stimulus bill that relate to breaches and notifications. One of the recommendations that I and other privacy advocates had made was central notification and disclosure on a publicly available web site. They heard us. Here’s part of the new law: (3) NOTICE TO SECRETARY- Notice…
Massachusetts extends deadline on data security rules again
Jaikumar Vijayan reports: For the second time in three months, Massachusetts officials have pushed back the deadline for companies to comply with a controversial set of data security regulations that the state announced last September. In addition to the deadline extension, which was announced late Thursday , the state’s Office of Consumer Affairs and Business…
PA: Legislation aims at data breach notification
Alex Rose: State Sen. Dominic Pileggi, R-9, of Chester, recently re-introduced legislation that would require state agencies to notify the public about data breaches involving personal information within one week. Current state law only allows for notification “without unreasonable delay.” Pileggi, the Senate majority leader, introduced similar legislation last year. That bill passed the Senate…
Washington state CUs introduce data breach bill
In the wake of the Heartland Payment Systems data breach announced last week, Washington state’s credit unions once again have introduced legislation to encourage financial institutions to take “extraordinary proactive steps” to protect consumers from identity theft and financial fraud after a breach. Receiving its first hearing before the Full House Financial Institutions and Insurance…