California law will better inform consumers of privacy breaches

California will strengthen its data breach notification requirements with the passing of Senate Bill 24 on January 1, 2012. The bill requires businesses and state agencies to include specific information, such as a description of the breach and contact information for credit reporting agencies, in breach notifications sent to individuals. Additionally, if a breach affects more than 500 Californians, data holders must send an electronic copy of the notification to the Attorney General. Over 45 other states have adopted similar legislation.