Personal information in the United States is currently protected by a patchwork of industry-specific federal laws and state legislation whose scope and jurisdiction vary. The challenge of compliance for organizations that conduct business across all 50 states is therefore considerable. This page provides a summary of the requirements of each of the 50 state data breach notification laws as of July 2018.
Click on the individual states to see your data breach notification obligations.
Please note this is only an information summary and is in no way a substitute either for consulting the laws themselves or for taking appropriately qualified legal advice. Laws may be subject to change.