Data Breach Notification Rule Data Breach Notification Rule requires companies to notify consumers following a security breach – including but not a loss of limited to personal information. Currently, all fifty states excluding New Mexico, Alabama and South Dakota have enacted Data Breach notification requirements. These requirements vary by jurisdiction, but almost universally include a “safe harbor” clause if the data lost was in encrypted form.

  • Protect personal privacy data with file/volume encryption and field/column encryption
  • Data is decrypted only for authorized users and processes as set by policy and controls
  • Audit and monitor all access to customer records and information