Several states are taking steps to strengthen consumers’ rights when breaches occur. Kentucky became the 47th state to enact a data breach notification law earlier this month. Iowa’s governor signed a bill to strengthen that state’s notification law. The highly publicized breaches of retailers Target and Neiman Marcus served as catalysts for new and revised state breach notification laws. The Kentucky law exempts entities such as banks that are subject to the Gramm-Leach-Bliley Act and healthcare providers that adhere to the Health Insurance Portability and Accountability Act.”]
Source: https://www.cuinfosecurity.com/states-advance-breach-notification-laws-a-6762