A privacy breach notification bill recently passed by the California legislature would expand the state’s existing law for how organizations notify consumers of a data breach. California’s existing data breach law does not specify what the breach notification should include information-wise. The new bill, among other things, requires that the company include the type of personal information exposed in the breach; the date or estimated date of the breach. If a single breach affects more than 500 California residents, the organization must send an electronic copy of the notification.”]