January 28, 2022

Volume XII, Number 28

Advertisement
Advertisement

January 27, 2022

Subscribe to Latest Legal News and Analysis

January 26, 2022

Subscribe to Latest Legal News and Analysis

January 25, 2022

Subscribe to Latest Legal News and Analysis

State Data Breach Notification Matrix Update – Texas and Connecticut

It’s time for an updated version of our “Mintz Matrix” – the Mintz Levin matrix of state data security breach notification laws.   We update this matrix quarterly, or as developments dictate.

The Fall 2012 version can be found  at Data Breach Notification Matrix

In this update, we call particular attention to changes in the following states:

Texas –   The amendment to the Texas breach notification statute took effect September 1, 2012.   We previously blogged about these amendments, which could be construed to now act as a 50-state breach notification statute.  It requires entities that conduct business in Texas to provide notice to both affected Texas residents and to non-residents if the non-resident lives in a state that does not require notification of the security breach.  As of today, those states include Alabama, Kentucky, New Mexico and South Dakota.  The amendment also increased penalties for violations to $100 per affected individual per day of failed or delayed notification, up to $250,000 for a single breach.

Connecticut – The amended version of Connecticut’s data breach notification law (previously blogged about here) adds a requirement to notify the Connecticut Attorney General “not later than the time when notice is provided to the resident.”  This amendment took effect on October 1, 2012.   Attorney General George Jepsen’s Privacy Task Force has established an email address to facilitate breach reporting at ag.breach@ct.gov.   A link to the email address and information regarding the new reporting requirement is at the AG’s website.

©1994-2022 Mintz, Levin, Cohn, Ferris, Glovsky and Popeo, P.C. All Rights Reserved.National Law Review, Volume II, Number 278
Advertisement
Advertisement
Advertisement
Advertisement
Advertisement
Advertisement

About this Author

Cynthia Larose, Privacy, Security, Attorney, Mintz Levin, Law Firm, electronic transactions lawyer
Member / Chair, Privacy & Cybersecurity Practice

Cynthia is a highly regarded authority in the privacy and security field and a Certified Information Privacy Professional (CIPP). She handles the full range of data security issues for companies of all sizes, from start-ups to major corporations. Cynthia is masterful at conducting privacy audits; crafting procedures to protect data; advising clients on state, federal, and international laws and regulations on information use and data security; helping organizations respond to breaches; and planning data transfers associated with corporate transactions. She is an in-...

617-348-1732
Advertisement
Advertisement
Advertisement