Effective October 1, 2021, the deadline for breach notification to State residents would decrease from 90 to 60 days, notification of breached login credentials will require data controllers to advise affected residents to change their passwords, and notification may not be provided through affected online accounts; data controllers should proceed in good faith to identify affected individuals and provide them with notice as expediently as possible.
Connecticut Enacts New Breach Notification Obligations
Related Posts
University of Michigan Data Breach
The recent cyberattack on the University of Michigan, where sensitive employee and student data fell victim to a…
Irish National Police Data Leak Highlights Third-Party Risk
The recent data breach incident involving the Irish National Police. This breach underscores the critical importance of addressing…
California Enacts New Delete Act to Strengthen Data Privacy
We are thrilled to share a significant development in data privacy regulation. California has taken a momentous step…