Ask Reggi Your Question Now
Can you summarize 10 MERS Section 1348?
NOTICE OF RISK TO PERSONAL DATA > Security breach notice requirements
Short Summary
This legal document outlines the requirements for notifying residents and other relevant parties in the state of Maine in the event of a security breach involving personal information. The document applies to information brokers, other persons, third-party entities, consumer reporting agencies, and state regulators. If an information broker or any other person becomes aware of a breach, they must conduct a reasonable and prompt investigation to determine the likelihood of misuse of personal information and provide notice to affected residents. Third-party entities must also notify the person maintaining the personal information. Notification should be made as expediently as possible, without unreasonable delay, and within 30 days of becoming aware of the breach. The document also allows for a delay in notification if it may compromise a criminal investigation. Additionally, if the breach affects more than 1,000 persons, consumer reporting agencies must be notified. State regulators within the Department of Professional and Financial Regulation or the Attorney General must also be notified. The document does not specify penalties for non-compliance.
Whom does it apply to?
Information brokers, other persons, third-party entities, consumer reporting agencies, state regulators
What does it govern?
Notification requirements for security breaches of personal information
What are exemptions?
No exemptions are mentioned.
What are the Penalties?
Not specified in the provided document.
Jurisdiction
Maine