New Calif. Data Breach Rules Bring Obligations And Debate

Law360, New York ( October 22, 2014, 1:06 PM EDT) -- Recent amendments to California statutes governing breach notification and data safeguards impose new obligations by: (1) enhancing breach notification requirements relating to offerings of "identity theft prevention and mitigation services"; (2) expanding the statutory requirement to implement reasonable security measures to protect personal information so that it applies not only to businesses that own or license personal information, but also to third-party service providers that maintain such personal information for others; and (3) prohibiting the sale, advertisement for sale, or offer to sell an individual's Social Security number....

Law360 is on it, so you are, too.

A Law360 subscription puts you at the center of fast-moving legal issues, trends and developments so you can act with speed and confidence. Over 200 articles are published daily across more than 60 topics, industries, practice areas and jurisdictions.


A Law360 subscription includes features such as

  • Daily newsletters
  • Expert analysis
  • Mobile app
  • Advanced search
  • Judge information
  • Real-time alerts
  • 450K+ searchable archived articles

And more!

Experience Law360 today with a free 7-day trial.

Start Free Trial

Already a subscriber? Click here to login

Hello! I'm Law360's automated support bot.

How can I help you today?

For example, you can type:
  • I forgot my password
  • I took a free trial but didn't get a verification email
  • How do I sign up for a newsletter?
Ask a question!