The Texas government, Greg Abbott, signed a law on data breaches on Monday, requiring the state Attorney General to publish a list of violations involving at least 250 Texas residents.
Unlike Texas House Bill 3746, California law requires that at least 500 California residents be affected in order for the California Attorney General to be informed.
The Texas Act, which enters into force on September 1, requires the Texas Attorney General to publish information about the violation that excludes sensitive personal information. , any information that could jeopardize the security of a computer system and any other information that is confidential by law.
The list must be updated no later than 30 days after the Minister of Justice is notified of a new breach of system security, and it must be removed with the first anniversary of the notification.
Entities providing information to the Advocate General on a data breach involving more than 250 must disclose see the infringement 60 days after it was notified; contain a detailed description of the infringement, the number of inhabitants concerned and the number of inhabitants who have been notified of it, the measures already taken in response and those which it intends to take with regard to the infringement after notification.
It must also disclose information on whether law enforcement is involved in the investigation of the offense.