North Carolina Data Breach Notification Law
North Carolina enacted legislation requiring that private or governmental entities shall provide notice to the affected person that there has been a security breach following discovery or notification of the breach. The disclosure notification shall be made without unreasonable delay, consistent with the legitimate needs of law enforcement.
Details of the North Carolina Data Breach Notification Law
North Carolina Data Breach Who Must Comply with the Law
Any business that owns or licenses personal information of residents of North Carolina or any business that conducts business in North Carolina that owns or licenses personal information in any form (whether computerized, paper, or otherwise) shall provide notice to the affected person that there has been a security breach following discovery or notification of the breach. Any business that maintains or possesses records or data containing personal information of residents of North Carolina that the business does not own or license, or any business that conducts business in North Carolina that maintains or possesses records or data containing personal information that the business does not own or license.
North Carolina Data Breach Personal Information Desription
Personal data or Personally Identifiable Information (PII) is any information that can be used to identify a person directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
| North Carolina | N.C. Gen. Stat §§ 75-61, 75-65 |