Pennsylvania AG launches website for data breach reporting as required by law

Pennsylvania Attorney General Michelle Henry announced the launch of an online portal for companies and other entities that report data breaches.

The site is for reporting violations affecting more than 500 Pennsylvania residents — which is required under Pennsylvania law as of Sept. 26.

Credit reporting companies or other entities that hold personal data must report data breaches to the Attorney General under the Personal Information Breach Notification Act (BPINA).

“This new requirement in the law will provide Pennsylvanians with more protection and prompt notifications when sensitive information, such as account numbers and personal data, is compromised,” Henry said. “We launched this portal to make the process easier and more efficient for companies that need to make these notifications.”

On June 28, Governor Josh Shapiro approved amendments to BPINA when a data breach affects more than 500 Pennsylvanians. Companies must also provide affected individuals with 12 months of credit monitoring and access to a credit report if the breach involves the individual’s name and Social Security number, bank account number, or driver’s license or state identification number.

The new portal can be accessed through the website of the general prosecutor.

Source: Pennsylvania Attorney General

TOPICS
Pennsylvania