Oregon Enacts New Vendor Data Breach Notification Requirements

Oregon Gov. Kate Brown has signed a bill that requires vendors, service providers, and other third parties that store consumer data to notify consumers if a security breach occurs. The language stipulates that covered entities make such notifications “as soon as is practicable but not later than 10 days” after a suspected or confirmed security breach. The Oregon Consumer Information Protection Act takes effect on Jan. 1, 2020.

READ MORE

Leave a Reply

Your email address will not be published. Required fields are marked *