[ Friday, September 24, 2010 ]
Coming Soon (Possibly): a General Federal Data Breach Notification Requirement.
Obviously, we've got the HIPAA data breach notification requirement ushered in by HITECH, and many states (California and Massachusetts in the vanguard) have data breach notification requirements as well. But apparently the FTC has testified
before Congress in support of a federal statute.
I guess I could go for it, as long as there's preemption. I'm generally against more laws, and specifically more federal laws (on Federalist grounds), but if everyone has to do breach notification anyway under state laws, at least there can be one set of rules.
Jeff [12:36 PM]
Blogger: HIPAA Blog - Edit your Template