PA Attorney General Launches Online Portal For Identity Theft
by Alex Lloyd Gross
Effective September 26,2024, any company that has a data breach that effects more than 500 Pennsylvania residents is required to report this information to the Pennsylvania Attorney General;s office.
This includes department stores, credit agencies, car dealerships, or any other business.
“This new requirement in the law will offer Pennsylvanians more protections and prompt notifications when sensitive information, such as account numbers and personal data, is compromised,” Attorney General Henry said. “We have launched this portal to make the process easier and more efficient for businesses who are required to make these notifications.”
On June 28, Governor Josh Shapiro approved amendments to the Breach of Personal Information Notification Act when a data breach affects more than 500 Pennsylvanians. The companies must also provide impacted individuals with 12 months of credit monitoring and access to a credit report, if the breach involves the person’s name and Social Security Number, bank account number, or driver’s license or state ID number.
Entities can access the portal via the Office of the Attorney General’s website, where they will be guided through a step-by-step process to submit required information about the breach.
In addition to reporting data breaches, the portal also provides entities with important information about BPINA. Attorney General Henry encourages all entities operating in Pennsylvania to familiarize themselves with the updates to this law.