Data breach law looms Oct. 1

Beginning Oct. 1, Connecticut state law will require businesses that suffer data breaches to provide notice to the state attorney general, with Attorney General George Jepsen establishing a new email address of ag.breach@ct.gov for companies to comply.

Connecticut already has a law on the books requiring companies to notify residents whose personal information may be compromised by a data breach, but Jepsen said that the law was difficult to enforce because his office has had no way of knowing when a breach has occurred.

The attorney general’s office will also maintain a web page at ct.gov/ag detailing the new law’s requirements.