|
If passed, licensees must maintain a comprehensive information security program (based on its size and complexity, activities and sensitivity of information to be protected), and annually certify its compliance with the Law to the Commissioner of Commerce (“Commissioner”); the timeframe to notify the Commissioner of a data breach has increased from 72 hours to 5 business days, and the threshold of affected consumers that triggers breach notification has changed from 250 to 500. |
Minnesota Re-Proposes Insurance Data Security Law
Related Posts
Brazil Enshrines Right to Data Protection in Constitution
An important milestone where, Effective February 10, 2022, Brazilians have the constitutional right to the protection of their…
New York Proposes the Digital Fairness Act
If passed, entities that process the PI of 500 or more unique individuals must obtain explicit, informed opt-in…
Brazil ANPD Defines LGPD Investigation and Enforcement
Effective October 29, 2021, the ANPD is able to monitor, inspect and apply administrative sanctions for LGPD compliance in accordance with the…