States Privacy News

HIPAA Events


Events Webinars Training

The amendment requires entities that suffer breaches of personal information that require notification to more than 500 state residents, to also notify the state’s attorney general.

The amendment also expands the definition of “breach of security”. Previously, it had been limited to incidents affecting “personal information maintained in computerized form.” The change expands the definition to include information maintained “in any medium, including on paper, that was transferred by the person to that medium from computerized form.”

Effective date: July 1, 2014.