The various state laws have different provisions governing who must report a security breach, timing and circumstances applicable when notification must be made, the remedies available to individuals whose data security was breach, whether exemptions apply for encrypted, redacted data or law-enforcement actions. These laws may change, such as to add additional types of personal data.
While we do not guarantee that the laws listed are up to date, we believe that management, IT departments, purchasing departments, in-house lawyers and customers and suppliers should have a better understanding of the types of privacy laws by actually reading them.
State Laws Federal Laws and Regulations
- Federal Trade Commission, Identity Theft Site.
- Privacy Act of 1974, 5 U.S. C. 552a (2000).
- Graham-Leach-Bliley Act of 1999. 15 U.S.C. 6809 et seq., and regulations, 16 C.F.R. 319.
- Health Insurance Portability and Accountability Act of 1996, P.L. 104-191, and medical data processing regulations under Section 264(c).
© Copyright 2004-2008 Bierce & Kenerson, P.C.SM.
Attorney Advertising.
Privacy Policy | Disclaimer | Copyright Notice | Site Map