BreachExchange mailing list archives
California data-breach law now covers medical information
From: lyger <lyger () attrition org>
Date: Fri, 4 Jan 2008 12:52:27 +0000 (UTC)
http://www.sfgate.com/cgi-bin/article.cgi?f=/c/a/2008/01/04/BUR6U9000.DTL California residents must now be notified when their electronic medical information or health insurance information has been exposed. AB1298, which took effect Tuesday, expands California's data-breach notification law to include unencrypted medical histories, information on mental or physical conditions, and medical treatments and diagnoses. Also covered under the law are unencrypted insurance policy or subscriber numbers, any applications for insurance, claims histories and appeals. The exposed information must include a California resident's name to require notification but does not need to include Social Security numbers. The law applies to state agencies and any company that does business with Californians, even if its headquarters are not in the state. [...] _______________________________________________ Dataloss Mailing List (dataloss () attrition org) http://attrition.org/dataloss Tenable Network Security offers data leakage and compliance monitoring solutions for large and small networks. Scan your network and monitor your traffic to find the data needing protection before it leaks out! http://www.tenablesecurity.com/products/compliance.shtml
Current thread:
- California data-breach law now covers medical information lyger (Jan 04)