On June 28, 2024, Pennsylvania enacted amendments to its Breach of Personal Information Notification Act (“BPINA”). These amendments contain a number of significant changes, including clarifying a key definition, adding a new notification obligation to the Attorney General, requiring organizations to provide credit monitoring services, and reducing the threshold to notify consumer reporting agencies. These amendments—which take effect today, September 26, 2024—bring Pennsylvania in line with many other states that have taken steps to strengthen their respective data breach notification laws.
Latest Post
More Posts
In Law360, Matthew Cin Discusses the Implications of Illinois’s Biometric Information Privacy Act Reform
Biometric Privacy Update: Illinois Legislature Balances BIPA, but Don’t Mess with Texas
FCC Provides Long-Awaited Clarification on Revocation of Consent
California Court of Appeal Restores CPPA Authority to Enforce Privacy Regulations
States Move Forward with Automated Privacy Opt-Out Signals; Colorado Approves First Universal Opt-Out Mechanism
Subscribe: Subscribe via RSS
Blogs
Firm/Org