Blog
Connecticut Amends Its Data Breach Notification Law
Blog
July 12, 2012
Connecticut recently amended its data breach notification law to require companies to notify the Connecticut Attorney General if they suffer a breach incident. This is in addition to the existing requirement to notify impacted Connecticut residents. The notice provided to the Connecticut Attorney General must be made no later than when the notice is provided to the Connecticut residents. With the exception of this notification requirement, Connecticut’s data breach notification law remains largely unchanged. The new reporting requirements will go into effect on October 1, 2012.
TIP: Beginning October 1, 2012, companies should update their breach notification plans and add Connecticut to their list of states that require notification to the state (in addition to notification to the impacted individuals) in the event of a data breach.
This entry has been created for information and planning purposes. It is not intended to be, nor should it be substituted for, legal advice, which turns on specific facts.