<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.6000.16608" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Yes, if you start adding in all the laws
within the local and city levels and U.S. territories, that could become a
much longer list indeed. If you have a list of all of these it would be
great to see! </FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>BTW, hopefully Iowa will soon be passing their
proposed privacy breach notice / credit freeze bill into law and then we
can add it to the list of state laws.</FONT></DIV>
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 2px solid; MARGIN-RIGHT: 0px">
<DIV style="FONT: 10pt arial">----- Original Message ----- </DIV>
<DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=privacylaws@sbcglobal.net
href="mailto:privacylaws@sbcglobal.net">Privacy Laws</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A
title=rebeccaherold@rebeccaherold.com
href="mailto:rebeccaherold@rebeccaherold.com">Rebecca Herold</A> ; <A
title=dataloss@attrition.org
href="mailto:dataloss@attrition.org">dataloss@attrition.org</A> </DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Monday, March 10, 2008 2:46
PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> Re: [Dataloss] A data security
breach legislation question</DIV>
<DIV><BR></DIV>
<DIV>Wait what about New York City and Puerto Rico?</DIV>
<DIV> </DIV>
<DIV>Saundra Kae Rubel, CIPP<BR><BR><B><I>Rebecca Herold <<A
href="mailto:rebeccaherold@rebeccaherold.com">rebeccaherold@rebeccaherold.com</A>></I></B>
wrote:</DIV>
<BLOCKQUOTE class=replbq
style="PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #1010ff 2px solid">Counting
the District of Columbia, as of the end of October it was 40; see <BR><A
href="http://www.privacyguidance.com/files/statebreachnotificationlaws10.19.07.pdf">http://www.privacyguidance.com/files/statebreachnotificationlaws10.19.07.pdf</A><BR><BR>Best
regards,<BR><BR>Rebecca Herold<BR>----- Original Message ----- <BR>From:
"Kalter, Sarah " <SKALTER@AFFINIONGROUP.COM><BR>To: "lyger"
<LYGER@ATTRITION.ORG>; <DATALOSS@ATTRITION.ORG><BR>Sent: Monday, March 10,
2008 10:07 AM<BR>Subject: [Dataloss] A data security breach legislation
question<BR><BR><BR>> Hi All,<BR>><BR>> Does anyone happen to know
how many states have enacted data security<BR>> breach laws/legislation?
And if so, which states?<BR>><BR>> Thank you so much!<BR>><BR>>
Best,<BR>> Sarah<BR>>
_______________________________________________<BR>> Dataloss Mailing
List (dataloss@attrition.org)<BR>>
http://attrition.org/dataloss<BR>><BR>> Tenable Network Security
offers data leakage and compliance monitoring<BR>> solutions for large
and small networks. Scan your network and monitor your<BR>> traffic to
find the data needing protection before it leaks out!<BR>>
http://www.tenablesecurity.com/products/compliance.shtml
<BR><BR>_______________________________________________<BR>Dataloss Mailing
List
(dataloss@attrition.org)<BR>http://attrition.org/dataloss<BR><BR>Tenable
Network Security offers data leakage and compliance monitoring<BR>solutions
for large and small networks. Scan your network and monitor your<BR>traffic
to find the data needing protection before it leaks
out!<BR>http://www.tenablesecurity.com/products/compliance.shtml<BR></BLOCKQUOTE><BR></BLOCKQUOTE></BODY></HTML>