Ohio recently passed a bill that requires that subjects be notified of
data loss whenever it poses risk of identity theft. It is HB 104
in the 126th Session. Took effect on 2/16. Here is the
summary:<br>
<strong>require a state agency, an agency of a political subdivision,
or a person, including a business entity that does business in Ohio, to
contact individuals residing in Ohio if unencrypted or unredacted
personal information about those individuals that is included in
computerized data owned or licensed by the agency, person, or business
entity is accessed and acquired by unauthorized persons and causes or
reasonably is believed will create a material risk of the commission of
the offense of identity fraud or other fraud to the individual, and to
authorize the Attorney General to investigate and enforce compliance
with the requirements.<br>
<br>
</strong>It can be viewed here:<br><a href="http://www.legislature.state.oh.us/bills.cfm?ID=126_HB_0104">http://www.legislature.state.oh.us/bills.cfm?ID=126_HB_0104</a><br>
<br>
Halbert<br><div><span class="gmail_quote">On 2/22/06, <b class="gmail_sendername">Saundra Kae Rubel</b> <<a href="mailto:privacylaws@sbcglobal.net">privacylaws@sbcglobal.net</a>> wrote:</span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<div><br>
<p><font face="Courier New" size="2"><span style="font-size: 10pt;">I haven't heard boo from Congress about a federal</span></font></p>
<p><font face="Courier New" size="2"><span style="font-size: 10pt;">notification law (though there are several state ones) so I don't know</span></font></p>
<p><font face="Courier New" size="2"><span style="font-size: 10pt;">what the status is there, ….</span></font></p>
</div>
<br></blockquote></div><br><br clear="all"><br>-- <br>Halbert Thomas