Identities Lost: Enacting Federal Law Mandating Disclosure & Notice After a Data Security Breach

John Ogle, University of Arkansas, Fayetteville

Keywords

Identity theft legislation, state law, Equifax

Abstract

Identity theft is real, it’s here, and consumers need protection. Over the past five years hackers have stolen billions of consumers’ sensitive information like social security numbers, addresses, and bank routing numbers from companies that have neglected their security measures. Most of the time these security breaches are easily preventable. Companies sometimes wait weeks, months, or even years to inform the customers whose information was stolen because there is no federal law that requires disclosure. As of 2018, all 50 states have adopted security breach notification laws that require companies to inform consumers that their information may have been stolen after an attack, but there is no federal law enforcing such a requirement.

Recommended Citation

John Ogle, Identities Lost: Enacting Federal Law Mandating Disclosure & Notice After a Data Security Breach, 72 Ark. L. Rev. 221 (2019).
Available at: https://scholarworks.uark.edu/alr/vol72/iss1/7

Download

Included in

Business Organizations Law Commons, Commercial Law Commons, Consumer Protection Law Commons, Legislation Commons, Privacy Law Commons

COinS

Identities Lost: Enacting Federal Law Mandating Disclosure & Notice After a Data Security Breach

Authors

Keywords

Abstract

Recommended Citation

Included in

Share

Search