New Guide to State Data Security Laws Is Now Available on DMA's Web Site

July 24, 2006 — Do you know what to do in the event that the personal data of your customers or donors is compromised? What are your legal requirements for notifying consumers of a data loss or theft?

In 2002, California became the first state to enact data breach notification laws. As of early July of this year, 31 states have adopted similar laws.

To help you make sense of this complicated patchwork of requirements, DMA is pleased to make available to members a state-by-state summary of current data security laws.

Laws are a now in effect in the following states:

· Arkansas

· California

· Connecticut

· Delaware

· Florida

· Georgia

· Idaho

· Illinois

· Indiana

· Kansas

· Louisiana

· Minnesota

· Montana

· Nebraska

· Nevada

· New Jersey

· New York

· North Carolina

· North Dakota

· Ohio

· Pennsylvania

· Rhode Island

· Tennessee

· Texas

· Washington

· Wisconsin.

In addition, laws will go into effect on January 1, 2007, in five other states:

· Arizona

· Colorado

· Hawaii

· Maine

· Utah.

The summary is provided courtesy of Kelley Drye Collier Shannon LLP and the American Bar Association Section of Antitrust Law's Privacy and Information Security Committee.

DMA’s Web site provides you with the most up-to-date information on data security, including:

· A checklist for securing your company’s data, created in partnership with the Federal Trade Commission

· A summary of pending federal data security legislation

· The latest press releases and statements of DMA positions on data security issues

To access the information, visit www.the-dma.org/datasecurity.

# # #