Texas Passes Bill Allowing Public Listing of Data Breaches, Effective Sept. 1, 2021

By Lynn Sessions and Jessica Lowery on June 10, 2021 Posted in Data Breaches

On May 31, 2021, the Texas Legislature approved House Bill 3746, which amends the Texas Business and Commerce Code § 521.053 relating to certain notifications required following a data breach involving Texas residents. The bill includes the existing requirement that any business or entity notify the attorney general of a data breach within 60 days … Continue Reading

New Year Brings Trio of U.S. Breach Notification Amendments

By Andreas Kaltsounis on January 7, 2020 Posted in Breach Notification

Along with the California Consumer Privacy Act, the new year brought us a trio of updated breach notification laws, in Oregon, Texas and Illinois. The Oregon law is of the most interest because it is the first to require that vendors notify the state’s attorney general of breaches in some cases. It also requires a … Continue Reading

Washington State Passes Legislation Governing the Use of Biometric Information

By Melinda L. McLellan and Robyn M. Feldstein on June 8, 2017 Posted in Privacy Litigation, Retail Industry, State Legislation

Effective July 23, 2017, Washington will join Illinois and Texas as the third U.S. state to impose statutory restrictions on how businesses collect, use, disclose and retain biometric information. House Bill 1493 applies to entities that “enroll a biometric identifier in a database for a commercial purpose” and includes requirements to provide notice to individuals … Continue Reading