The Illinois Personal Information Protection Act (PIPA) requires that any “data collector”, which includes businesses, universities, governmental agencies or any other entity that deals with personal information, notify Illinois residents in the event of a data security breach.
We have written previously that 2012 will be the year of enforcement (see this post). It will also be the year of the data breach. In 2012 State AGs will awaken from their slumber and start going after companies on the wrong side of this issue. They have a statutory right to bring an action under the HITECH Act, and as the link above illustrates they may become increasingly more agressive in bringing actions under state law law well.
In 2012 State AGs will awaken from
their slumber and start going after
companies on the wrong side of
The States are starving for revenue and the time is right with cybersecurity now a front and center national issue. You don't need a crystal ball to understand that this is where we are headed in the short run. Therefore, covered entities and business associates are well advised to get their houses in order.
Looking for best of breed HIPAA Training?
To stay current on the HITECH Act and its quickly changing regulatory scheme visit the HITECH Survival Guide website and/or sign up for our free monthly compliance newsletter. Also, check out our FREE EHR Checklist.