TN Updates Data Breach Notification Law for Encrypted Data

Any person or business that conducts business in Tennessee is only required give data breach notification if the information acquired was unencrypted, according to a recently passed amendment. Amended Senate Bill 547 states that encrypted data is “computerized data that is rendered unusable, unreadable, or indecipherable without the use of a decryption process or key and in accordance with the current version of the Federal Information Processing Standard (FIPS).”

Read more about the new data breach notification law enacted by Tennessee on Health IT Security.

Track the strategic threats to your business with the Threat Brief, delivered to your email daily.

Subscribe Here