Effective October 1, 2021, the deadline for breach notification to State residents would decrease from 90 to 60 days, notification of breached login credentials will require data controllers to advise affected residents to change their passwords, and notification may not be provided through affected online accounts; data controllers should proceed in good faith to identify affected individuals and provide them with notice as expediently as possible.
1 minute read
Connecticut Enacts New Breach Notification Obligations
Related Posts
NHS Cyber Attack Highlights Third-Party Risk
A recent cyber attack targeting a blood test provider contracted by the NHS has resulted in the theft…
New York Introduces Stricter Social Media Privacy Laws for Children
New York has enacted stringent legislation aimed at enhancing social media privacy protections for children. The new law…
Surge in Data Subject Requests (DSRs)
A recent report reveals a significant increase in Data Subject Requests (DSRs), highlighting the growing demand for individuals…