Three States Join Others to Expand Personal Information Definition to Include Usernames or Email Addresses

 Posted by at 10:38 am  State/Local  Comments Off on Three States Join Others to Expand Personal Information Definition to Include Usernames or Email Addresses
Jan 062017
 

Mark L. Krotoski and W. Scott Tester of Morgan Lewis remind entities that duty to notify of a breach depends on state definitions of “personal information,” and more states are now including usernames or email addresses as personal information: Illinois, […]

Hooray for transparency: Massachusetts puts data breach archive online

 Posted by at 6:58 pm  Of Note, State/Local  Comments Off on Hooray for transparency: Massachusetts puts data breach archive online
Jan 032017
 

The state’s announcement: The Office of Consumer Affairs and Business Regulation today announced the online public availability of its Data Breach Notification Archive. The Massachusetts Data Security Law (M.G.L. c.93H) requires any entity that keeps a Massachusetts resident’s personal information […]