CIPP-US - State Privacy Laws - Section 5.5
Compare state data breach notification requirements across timing, covered information types, notification recipients, and safe-harbour provisions for encrypted data.
Compare how state data breach notification laws define the covered information that triggers notice, typically a name combined with a financial, health, or government identifier, and vary in their notification timelines. Recognise that most states offer a safe harbour for encrypted data, and that entities must often notify the attorney general or regulator alongside affected consumers.
Data breach notificationReasonable securitySafe harbour encryptionNotification timeline
More in this domain
Back to all State Privacy Laws objectives, or the CIPP-US cert hub.
Examworthy is not affiliated with or endorsed by IAPP. Original, blueprint-aligned practice material only.