Re: State law breach notification websites

["Brian Krebs" <Brian.Krebs () washingtonpost com>]

Wisconsin is another that publishes the data. I dont know about NC and NY though.
 
http://privacy.wi.gov/databreaches/databreaches.jsp
 
http://www.oag.state.md.us/idtheft/breacheNotices.htm
 
http://doj.nh.gov/consumer/breaches.html
 
 
Brian Krebs
www.washingtonpost.com/securityfix
703-469-3162 (w)
703-989-0727 (c)
 

________________________________

From: dataloss-bounces () attrition org on behalf of McNabb, Joanne@OISPP
Sent: Tue 7/15/2008 3:32 PM
To: Miller, Terry; Carter, Bill (THIP, Corp); dataloss () attrition org
Subject: Re: [Dataloss] State law breach notification websites


Only a few of the state breach notice laws require reporting to a government agency:  MD 
<http://www.oag.state.md.us/idtheft/breacheNotices.htm> , NC, NH, NY, for sure. Those are the states that might have 
sites that publish notifications.

Joanne McNabb, CIPP/G
Chief, California Office of Privacy Protection


 

________________________________

From: dataloss-bounces () attrition org [mailto:dataloss-bounces () attrition org] On Behalf Of Miller, Terry
Sent: Tuesday, July 15, 2008 12:06 PM
To: Carter, Bill (THIP, Corp); dataloss () attrition org
Subject: Re: [Dataloss] State law breach notification websites


Thanks Bill.  I may not have been clear earlier.  I was actually looking for links to sites which publish notifications 
made pursuant to state laws.  I included as examples the sites hosted by MD and NH.  I feel I have been on such sites 
for NY and CA but can't find them anymore.  Are other users aware of such state sites?  If so, I would appreciate any 
information or links you may have.
 
Terry

________________________________

From: Carter, Bill (THIP, Corp) [mailto:bill.carter () thehartford com] 
Sent: Tuesday, July 15, 2008 3:01 PM
To: Miller, Terry; dataloss () attrition org
Subject: RE: [Dataloss] State law breach notification websites


There are several pretty goods sites that have an index to state breach notification laws.  These two are pretty good. 
http://privacylaw.proskauer.com/2007/12/articles/security-breach-notification-l/updated-breach-notification-laws/
 
http://www.ncsl.org/programs/lis/cip/priv/breachlaws.htm
 
 

________________________________

From: dataloss-bounces () attrition org [mailto:dataloss-bounces () attrition org] On Behalf Of Miller, Terry
Sent: Tuesday, July 15, 2008 12:38 PM
To: dataloss () attrition org
Subject: [Dataloss] State law breach notification websites



Does anyone know if there is a central listing of websites for breach notifications made pursuant to state laws?  For 
example, here is Maryland's site:  http://www.oag.state.md.us/idtheft/breacheNotices.htm 
<http://www.oag.state.md.us/idtheft/breacheNotices.htm> .  I was made aware of New Hampshire's: 
http://doj.nh.gov/consumer/breaches.html <http://doj.nh.gov/consumer/breaches.html> .

Terry 

Confidentiality Notice:  This email, including attachments, may include non-public, proprietary, confidential or 
legally privileged information.  If you are not an intended recipient or an authorized agent of an intended recipient, 
you are hereby notified that any dissemination, distribution or copying of the information contained in or transmitted 
with this e-mail is unauthorized and strictly prohibited.  If you have received this email in error, please notify the 
sender by replying to this message and permanently delete this e-mail, its attachments, and any copies of it 
immediately.  You should not retain, copy or use this e-mail or any attachment for any purpose, nor disclose all or any 
part of the contents to any other person. Thank you



*************************************************************************
This communication, including attachments, is
for the exclusive use of addressee and may contain proprietary,
confidential and/or privileged information. If you are not the intended
recipient, any use, copying, disclosure, dissemination or distribution is
strictly prohibited. If you are not the intended recipient, please notify
the sender immediately by return e-mail, delete this communication and
destroy all copies.
*************************************************************************

Confidentiality Notice:  This email, including attachments, may include non-public, proprietary, confidential or 
legally privileged information.  If you are not an intended recipient or an authorized agent of an intended recipient, 
you are hereby notified that any dissemination, distribution or copying of the information contained in or transmitted 
with this e-mail is unauthorized and strictly prohibited.  If you have received this email in error, please notify the 
sender by replying to this message and permanently delete this e-mail, its attachments, and any copies of it 
immediately.  You should not retain, copy or use this e-mail or any attachment for any purpose, nor disclose all or any 
part of the contents to any other person. Thank you

_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml