George Hulme of Information Week also responded to Kim Zettner’s article in Threat Level about a recent seminar on whether data breach notification laws are working. He raises some points about the value of such laws and similar to what I said here yesterday, notes “Helping consumers avoid identity theft and fraudulent transactions is only…
Category: Breach Laws
Experts Debate the Value of Breach Notification Laws
Kim Zettner of Threat Level discusses the different views expressed at a seminar last week on whether data breach notification laws do any good. As expected, the upshot was “we don’t know” because there are not enough data, surveys may not be reliable indicators, etc. Of course, there is another way to frame the issue…
CA: Lawmaker: Consumers need details in data breach warnings
Elinor Mills of Cnet reports: Six years after California enacted the country’s first data breach notification law, many state residents have received letters warning them that their data was exposed by a breach but usually they don’t know how or how long, experts said at a privacy conference on Friday. That would change with the…
Congress heard us! (commentary)
I’m first working my way through the provisions in the stimulus bill that relate to breaches and notifications. One of the recommendations that I and other privacy advocates had made was central notification and disclosure on a publicly available web site. They heard us. Here’s part of the new law: (3) NOTICE TO SECRETARY- Notice…
Massachusetts extends deadline on data security rules again
Jaikumar Vijayan reports: For the second time in three months, Massachusetts officials have pushed back the deadline for companies to comply with a controversial set of data security regulations that the state announced last September. In addition to the deadline extension, which was announced late Thursday , the state’s Office of Consumer Affairs and Business…
PA: Legislation aims at data breach notification
Alex Rose: State Sen. Dominic Pileggi, R-9, of Chester, recently re-introduced legislation that would require state agencies to notify the public about data breaches involving personal information within one week. Current state law only allows for notification “without unreasonable delay.” Pileggi, the Senate majority leader, introduced similar legislation last year. That bill passed the Senate…