Bradley Barth reports: A proposed California legislation imposing specific penalties for ransomware took a step forward yesterday when the state senate’s Public Safety Committee passed the bill at a hearing that featured testimony from Hollywood Presbyterian Medical Center (HPMC) — a notable victim of the ongoing ransomware epidemic. The legislation, Senate Bill 1137, would amend California’s penal code making it…
Category: State/Local
RESOURCE: State Security Breach Notification Laws
Mintz Levin has updated its convenient chart of state breach notification laws. Read more here. I’ve already downloaded my copy of their updated chart to keep on my desktop.
Tennessee Amends Breach Notification Statute (updated)
Jason C. Gavejian of Jackson Lewis writes: On March 24, 2016, Tennessee’s breach notification statute was amended when Governor, Bill Hallam, signed into law S.B. 2005. Under the amendment, notification of a data breach must now be provided to any affected Tennessee resident within 45-days after discovery of the breach (absent a delay request from law enforcement). Previously,…
Letter to New York State Banks and Insurance Companies: New Cybersecurity Regulations Likely (Part 2 of 2)
Randall J. Collins writes: In my previous post, I reviewed the New York State Department of Financial Services’ (NYDFS) findings and conclusions of survey results of financial institutions and insurers’ programs, costs, and future plans related to cybersecurity. Anthony J. Albanese – Acting Superintendent of Financial Services – writes in a November 9, 2015 letter to Financial and…
Plan Now to Comply with New Rhode Island Identity Theft Protection Act
John Ottaviani writes: Businesses, organizations, state and local governmental entities and individuals who collect and store personal information about Rhode Island residents should start planning now to comply with the new Rhode Island Identity Theft Protection Act, which goes into effect on June 26, 2016 and replaces the existing law. Businesses and organizations of any…
Ga. Senator Proposes Bill On Public Data Breach Investigations
Johnny Kauffman reports: A bill filed in the Georgia Legislature by Sen. John Albers (R–Roswell) would mandate companies and state agencies provide details to the attorney general and the governor’s office and give authority to the attorney general’s office to conduct an investigation. The Republican’s bill (SB 276) is called the “Georgia Personal Data Security…