New York Enacts Security Breach Disclosure Law

After months of high-profile security breaches at companies across the country, the state of New York has taken action, enacting a new law that will force companies and government agencies to notify consumers in the state if their personal information is compromised.

According to an article by John Leyden on the Register website, the legislation was “designed to promote a culture of security.” The information, he says, will also help protect consumers against identity theft by informing them when sensitive details like their Social Security numbers, driver’s licenses and credit card numbers are exposed.

Leyden says the new law, entitled The Information Security Breach and Notification Act, is “broadly similar to security breaches laws enacted in California more than two years ago.” Since then, at least 15 states have approved similar legislation.

“The events of the last few months underscore the urgency of protecting consumers. If a person is not aware that he or she has been a victim of identity theft, then the damage done could be severe and irreversible. Prompt notification gives New Yorkers needed protections,” New York State Assembly member James Brennan told Leyden. “In the last year, over 9,000 New Yorkers were exposed to identity theft because of inadequate security and poor notification procedures.”

To read the full article, click here: www.theregister.co.uk/2005/08/12/ny_security_breaches_disclosure