[Dataloss] State law breach notification websites

Brian Krebs Brian.Krebs at washingtonpost.com
Tue Jul 15 19:40:50 UTC 2008 

Wisconsin is another that publishes the data. I dont know about NC and NY though.
 
http://privacy.wi.gov/databreaches/databreaches.jsp
 
http://www.oag.state.md.us/idtheft/breacheNotices.htm
 
http://doj.nh.gov/consumer/breaches.html
 
 
Brian Krebs
www.washingtonpost.com/securityfix
703-469-3162 (w)
703-989-0727 (c)
 

________________________________

From: dataloss-bounces at attrition.org on behalf of McNabb, Joanne at OISPP
Sent: Tue 7/15/2008 3:32 PM
To: Miller, Terry; Carter, Bill (THIP, Corp); dataloss at attrition.org
Subject: Re: [Dataloss] State law breach notification websites


Only a few of the state breach notice laws require reporting to a government agency:  MD <http://www.oag.state.md.us/idtheft/breacheNotices.htm> , NC, NH, NY, for sure. Those are the states that might have sites that publish notifications.

Joanne McNabb, CIPP/G
Chief, California Office of Privacy Protection


 

________________________________

From: dataloss-bounces at attrition.org [mailto:dataloss-bounces at attrition.org] On Behalf Of Miller, Terry
Sent: Tuesday, July 15, 2008 12:06 PM
To: Carter, Bill (THIP, Corp); dataloss at attrition.org
Subject: Re: [Dataloss] State law breach notification websites


Thanks Bill.  I may not have been clear earlier.  I was actually looking for links to sites which publish notifications made pursuant to state laws.  I included as examples the sites hosted by MD and NH.  I feel I have been on such sites for NY and CA but can't find them anymore.  Are other users aware of such state sites?  If so, I would appreciate any information or links you may have.
 
Terry

________________________________

From: Carter, Bill (THIP, Corp) [mailto:bill.carter at thehartford.com] 
Sent: Tuesday, July 15, 2008 3:01 PM
To: Miller, Terry; dataloss at attrition.org
Subject: RE: [Dataloss] State law breach notification websites


There are several pretty goods sites that have an index to state breach notification laws.  These two are pretty good. http://privacylaw.proskauer.com/2007/12/articles/security-breach-notification-l/updated-breach-notification-laws/
 
http://www.ncsl.org/programs/lis/cip/priv/breachlaws.htm
 
 

________________________________

From: dataloss-bounces at attrition.org [mailto:dataloss-bounces at attrition.org] On Behalf Of Miller, Terry
Sent: Tuesday, July 15, 2008 12:38 PM
To: dataloss at attrition.org
Subject: [Dataloss] State law breach notification websites



Does anyone know if there is a central listing of websites for breach notifications made pursuant to state laws?  For example, here is Maryland's site:  http://www.oag.state.md.us/idtheft/breacheNotices.htm <http://www.oag.state.md.us/idtheft/breacheNotices.htm> .  I was made aware of New Hampshire's: http://doj.nh.gov/consumer/breaches.html <http://doj.nh.gov/consumer/breaches.html> .

Terry 

Confidentiality Notice:  This email, including attachments, may include non-public, proprietary, confidential or legally privileged information.  If you are not an intended recipient or an authorized agent of an intended recipient, you are hereby notified that any dissemination, distribution or copying of the information contained in or transmitted with this e-mail is unauthorized and strictly prohibited.  If you have received this email in error, please notify the sender by replying to this message and permanently delete this e-mail, its attachments, and any copies of it immediately.  You should not retain, copy or use this e-mail or any attachment for any purpose, nor disclose all or any part of the contents to any other person. Thank you



*************************************************************************
This communication, including attachments, is
for the exclusive use of addressee and may contain proprietary,
confidential and/or privileged information. If you are not the intended
recipient, any use, copying, disclosure, dissemination or distribution is
strictly prohibited. If you are not the intended recipient, please notify
the sender immediately by return e-mail, delete this communication and
destroy all copies.
*************************************************************************

Confidentiality Notice:  This email, including attachments, may include non-public, proprietary, confidential or legally privileged information.  If you are not an intended recipient or an authorized agent of an intended recipient, you are hereby notified that any dissemination, distribution or copying of the information contained in or transmitted with this e-mail is unauthorized and strictly prohibited.  If you have received this email in error, please notify the sender by replying to this message and permanently delete this e-mail, its attachments, and any copies of it immediately.  You should not retain, copy or use this e-mail or any attachment for any purpose, nor disclose all or any part of the contents to any other person. Thank you

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://attrition.org/pipermail/dataloss/attachments/20080715/99cd8c2a/attachment.html

More information about the Dataloss mailing list