HITECH Act (Health Information Technology for Economic and Clinical Health) HIPPA Breach Notification Requirements require reporting of some data breaches to the Department of Health and Human Services, the individuals effected, and in some cases the local media.
The Federal Trade Commissions Identity Theft Red Flag Rule requires a program be implemented for any organization that fits the definition of a 'creditor' that will detect and deter an individual from using someone else's information in return for goods or services. A policy establishing what the Red Flags would be and training staff members is required.
Most States have their own data breach notification laws the follow is a compilation of these laws. (This is meant as a summary these laws are constantly changing and being updated please consult with counsel in comply with these laws.)
|
|
|
DATA Breach Laws |