On June 17, the Texas Governor signed into law H.B. 300, which, among other things, amended the state’s security breach notification law. Effective September 1, 2011, H.B. 300 will provide that the notice requirements of the state’s security breach notification law apply with respect to covered personal information relating to Texas residents and to residents of any other state if such state does not require a person to notify individuals of a breach. Nonetheless, providing notice to a resident of another state under that state’s law will satisfy the requirements of the Texas law.
And Illinois Does Too
On August 22, the Illinois Governor signed into law H.B. 3025. H.B. 3025 amends the state’s security breach notification requirement to, among other things, establish content requirements for security breach notices that must be provided to consumers. In addition,H.B. 3025 creates a requirement that businesses appropriately dispose of materials that include sensitive types of personal information, such as an individual’s name in combination with SSN. The provisions of H.B. 3025 will become effective on January 1, 2012.