Security breach laws typically have provisions regarding who must comply with the law (e.g., businesses, data/ information brokers, government entities, etc); definitions of “personal information” (e.g., name combined with SSN, drivers license or state ID, account numbers, etc.); what constitutes a breach (e.g., unauthorized acquisition of data); requirements for notice (e.g., timing or method of notice, who must be notified); and exemptions (e.g., for encrypted information). All 50 states, the District of Columbia, Guam, Puerto Rico and the Virgin Islands, according to the National Conference of State Legislatures survey, have enacted legislation requiring private or governmental entities to notify individuals of security breaches of information involving personally identifiable information.
- Negotiating the American Constitution (1787-1789) Coalitions, Process Rules, and Compromises
- Measuring Law Faculty Scholarly Impact by Citations: Reliable and Valid for Collective Faculty Ranking
- Is There a Case for Statistical Precedent?
- When Courts Should Ignore Statutory Text
- Beck’s The Parts We Skip: A Taxonomy of Constitutional Irrelevancy
- TR Legal Secures Mutiyear DOJ Contract
- Impeachment Inquiry: Read the House Democrats’ Resolution
- Academic Law Libraries’ New Frontier–The Post Truth Cognitive Bias Challenge and Calls for Behavioral and Structural Reforms
- Check out the British North American Legislative Database, 1758-1867
- CRS Report: Executive Privilege and Individuals outside the Executive Branch
Just in case you don't get it: The views expressed are solely those of the blog post author and should not be attributed to anyone else, meaning they do not necessarily represent the views of any organization that the post author is affiliated with or with the views of any other author who publishes on this blog.
- 231,422 hits