Okla. Data Breach Bill Becomes Law
An Oklahoma data breach bill became law without the governor’s signature on Wednesday. SB-626 passed by overwhelming margins in the legislature (see 2505080003).
Sign up for a free preview to unlock the rest of this article
Privacy Daily provides accurate coverage of newsworthy developments in data protection legislation, regulation, litigation, and enforcement for privacy professionals responsible for ensuring effective organizational data privacy compliance.
The bill requires that businesses notify the attorney general not more than 60 days after informing affected customers about a breach, if the breach affected at least 500 residents. Existing law requires that customers are notified not more than 30 days after a breach. The bill would include penalties for businesses that fail to notify the AG.