Miss-ing data must be reported
eSecurity Planet is reporting that Mississippi has passed a data breach law that requires "businesses and government agencies to immediately notify people when their personal information has been compromised by either an accidental or deliberate data breach." However, there is a bit of a loophole: Mississippi's new law does allow companies to, after reasonable investigation, forego notification if they can prove that the breach will not likely result in harm to the affected individual. Then the article goes on to say: The law makes it clear that any exposure of certain data, including social security numbers, driver's license or state identification numbers, or any credit or debit card account information, must be immediately reported to the affected individuals. It will certainly be interesting to see what happens when the first reported breach occurs. In the meantime, it's great to see that more and more states are adopting laws to protect consumers. Mississippi's law is set to go into effect on July 1st. To learn more about this latest data breach notification law, visit the Info Law Group's site.