New Law Requires Consumers to be Notified of Breaches of Computer Data Containing Personal Information

September 28, 2007

Effective January 31, 2007, individuals, businesses and other entities must notify consumers when there has been a security breach of computerized data containing the consumers' personal information that could result in identity theft. The law is the Notice of Risk of Personal Data Act, 10 M.R.S.A. S1346-1349.

Details are available from the Department of Professional and Financial Regulation.