January 1 2008, a new identity theft law (SB 583) went into effect in the state of Oregon. The new regulation requires that Oregon businesses and agencies have a data protection plan in place.

The law requires that ‘reasonable safeguards‘ be maintained including the implementation of a security program, risk assessment, data monitoring, and data disposal. The law also has requirements for data breach notification.

There is still a significant push for the House of Representatives to adopt more stringent National security standards. Such a standard would provide consistent rules for businesses in all states to follow and provide greater identity theft protection.

For now, 37 states (including Oregon) have individual laws on data security and data breach notification in order to address the growing issue of identity theft.

For more on the Oregon identity theft law, visit the Oregon.gov website.

Via Statesman Journal Tags: , , , , , ,

Share this post: These icons link to social bookmarking sites where readers can share and discover new web pages.
  • del.icio.us
  • Digg
  • StumbleUpon
  • Technorati