A California lawmaker has introduced a bill that would update the state’s current data breach notification law, SB-1386. The new bill would include additional requirements for organizations that lose sensitive data. This is the third time the bill has been proposed.
The proposal, introduced Thursday by Democratic state Senator Joe Simitian would require breach notification letters contain specifics of the incident. This would include the type of personal information exposed, a description of what happened, and advice on steps to take to protect oneself from identity theft. The new law would also require organizations suffering a breach affecting 500 or more people to submit a copy of the alert letter to the state attorney general’s office.
The proposed bill has gone to former Governor Arnold Schwarzenegger twice now, but both times was vetoed.
Simitian said in a news release that he hopes the new administration, led by Governor Jerry Brown, “will give this issue a fresh look.”
“This new measure makes modest but helpful changes for consumers,” Simitian said. “By requiring notice to the attorney general, it will enable law enforcement to identify patterns of data theft and to understand the scope of the threat.”
Similar Posts:
- Monday Morning News Kick Off: Child Identity Theft Increases and New Data Breach Legislation
- Monday Morning News Kick Off: Inside the Russian Cyber-Underground; Data Breach at Yale University; American Idol and Much More
- National Data Security and Notification Legislation Underway
- Connecticut Insurance Commissioner Requires Data Breach Notification
- Are You Ready for a Healthcare Data Breach?
