Suzette Parmley reports: Legislation expanding the types of personal data that will trigger a required notification to customers in case of a breach, including email addresses and passwords, was signed into law by Gov. Murphy. The online breach bill was among 22 measures that the governor signed on Friday. With his signature, New Jersey joins California,…
Category: State/Local
Washington State Lawmakers Reach Deadline Without Passing Privacy Act, But Reach Agreement on Amendments to Breach Notification Law
From Covington & Burling: The Washington Privacy Act stalled this April in the state’s House of Representatives, and will likely not reappear again for discussion until the 2020 legislative session. The bill overwhelmingly passed the Senate, but failed to come to a floor vote in the House of Representatives before the April 17th deadline for…
North Carolina’s Much Anticipated Data Breach Notification Law Amendment Moves to General Assembly
Joseph J. Lazzarotti and Maya Atrakchi of JacksonLewis PC writes: The much-anticipated amendment to North Carolina’s data breach notification law that we reported on earlier this year (see here) has finally been introduced to the state’s General Assembly. The bill entitled, an Act Amending the Identity Theft Protection Act, House Bill DRH40393-LR10C, is primarily sponsored…
Washington AG Ferguson bill strengthening data breach laws passes Legislature
From the Washington Attorney General’s Office yesterday, a press release on an expansion of the breach notification requirements. Of special note, under the new law, a hacker acquiring a name in combination with a student ID would trigger notification obligations, but only if the information was not secured or made unusable (e.g., by encryption) AND …
PA: Bill Targets Data Security of State Agencies, Municipalities and School Districts
Thomas S. Markey writes: On Feb. 19, a bill was introduced in the Pennsylvania Senate proposing to amend the Pennsylvania Breach of Personal Information Notification Act to add new breach notification requirements for state agencies and political subdivisions of the commonwealth. Enacted in 2005, the act (73 P.S. Section 2301 et seq.) applies to commonwealth…
District of Columbia Introduces Legislation on Data Privacy
Sydny Shepard reports: District of Columbia Attorney General Karl A. Racine has introduced the Security Breach Protection Amendment Act of 2019, which would modernize the District’s data breach law and strengthen protections for residents’ personal information. Racine introduced the bill in response to the major data breaches that have put tens of millions of consumers,…