Vermont Attorney General TJ Donovan released guidance on the state's Security Breach Notice Act, Vermont Business Magazine reports. Explanations of legal obligations, notice requirements and updated definitions are included in the guidance. Notably, more types of data are considered personally identifiable information under the recently enacted law, including health or genetic information, user login credentials and passport numbers. Donovan said the best way to enforce the law and promote compliance is "by providing education and outreach."
If you want to comment on this post, you need to login.