The Associated Press reports: Consumers who use their debit cards to make purchases at New Jersey businesses could soon see new protections aimed at thwarting identity theft. The state Senate Commerce Committee recently endorsed a measure that would require merchants to truncate debit card account numbers and expiration dates on all sales receipts, including copies…
Category: Legislation
California Senate again OKs breach notification law update
Dan Kaplan reports: The California Senate has approved a bill that would update the state’s pioneering data breach notification law, the lawmaker who introduced the legislation announced Friday. The bill from Democratic Sen. Joe Simitian is a reintroduction of the same measure that he proposed last year, but which was ultimately vetoed by Gov. Arnold…
Last State Without a Breach Notice Law? Not Mississippi
Tanya Forsheit reports: Yesterday, Mississippi Governor Haley Barbour approved Mississippi’s first breach notification law, House Bill 583, leaving only four states without a notification law (Alabama, Kentucky, New Mexico, and South Dakota). Read more on InformationLawGroup. The law goes into effect July 1, 2011.
Virginia Adds Medical Information Breach Notice Law
David Navetta writes: The state of Virginia has passed a breach notice law requiring notice of security breaches involving medical information. […] “Breach of the security of the system” means unauthorized access and acquisition of unencrypted and unredacted computerized data that compromises the security, confidentiality, or integrity of medical information maintained by an individual or…
Malaysian Personal Data Protection Bill passed
The Personal Data Protection Bill 2009 was passed by the Dewan Rakyat today without any “fireworks” as had been expected. Debate on it lasted less than three hours and was mainly focused on several issues, specifically credit reference agencies, in particular Credit Tip Off Sdn Bhd (CTOS), the time frame of data protection and the…
Federal Information Security and Data Breach Notification Laws
From Congressional Research Service: Federal Information Security and Data Breach Notification Laws Gina Stevens Legislative Attorney January 28, 2010 The following report describes information security and data breach notification requirements included in the Privacy Act, the Federal Information Security Management Act, Office of Management and Budget Guidance, the Veterans Affairs Information Security Act, the Health…