Missouri businesses would be required to notify consumers when their personal or financial information is compromised in security breaches, under a bill that received initial approval Wednesday from the Missouri Senate. Sen. Scott Rupp, R-Wentzville, sponsored Senate Bill 207 as a way to inform consumers of security breaches that could result in identity theft or…
Category: Breach Laws
Pointer: State Laws Require Secure Personal Data
Nick Akerman and Melissa J. Krasnow have an article in The National Law Journal: Connecticut, Massachusetts and Nevada recently enacted laws requiring businesses to institute certain compliance measures to secure personal information that can be used to perpetrate identity theft. The Massachusetts law applies to a business located anywhere in the United States that stores…
More on whether breach notification laws work
George Hulme of Information Week also responded to Kim Zettner’s article in Threat Level about a recent seminar on whether data breach notification laws are working. He raises some points about the value of such laws and similar to what I said here yesterday, notes “Helping consumers avoid identity theft and fraudulent transactions is only…
Experts Debate the Value of Breach Notification Laws
Kim Zettner of Threat Level discusses the different views expressed at a seminar last week on whether data breach notification laws do any good. As expected, the upshot was “we don’t know” because there are not enough data, surveys may not be reliable indicators, etc. Of course, there is another way to frame the issue…
CA: Lawmaker: Consumers need details in data breach warnings
Elinor Mills of Cnet reports: Six years after California enacted the country’s first data breach notification law, many state residents have received letters warning them that their data was exposed by a breach but usually they don’t know how or how long, experts said at a privacy conference on Friday. That would change with the…
Congress heard us! (commentary)
I’m first working my way through the provisions in the stimulus bill that relate to breaches and notifications. One of the recommendations that I and other privacy advocates had made was central notification and disclosure on a publicly available web site. They heard us. Here’s part of the new law: (3) NOTICE TO SECRETARY- Notice…