US State Data Breach Notification Laws Course

Wrap up this path with an exploration of US state data breach notification laws.

1 hour, 43 minutes

Course description

Students will learn about several US state data breach notification laws. They will review California's data breach notification law, which was the first of its kind in the US. They’ll explore other laws in Texas, New York, Massachusetts, Puerto Rico and the District of Columbia. Students will also review individual definitions of breaches, notification requirements, safe harbor requirements and more.


Learning Path Reference Guide

File - 00:10:00

A list of all of the references from this learning path.
District of Columbia D.C. Code § 28-3851 et seq.

Video - 00:13:00

A review of the US District of Columbia data breach notification law.
Puerto Rico P.R. Laws tit. 10, § 4051 et seq.

Video - 00:13:00

A review of the Puerto Rico data breach notification law.
Mass. Gen. Laws 93H § 1 et seq.

Video - 00:14:00

A review of the Massachusetts data breach notification law.
N.Y. Gen. Bus. Law § 899-aa

Video - 00:16:00

A review of the New York State data breach notification law.
Tex. Bus. & Com. Code §§ 521.002, 521.053, 521.151-152

Video - 00:12:00

A review of the Texas data breach notification law.
Cal. Civ. Code § 1798.80 et seq.; Cal. Health & Safety Code § 1280.15

Video - 00:17:00

A review of California's data breach notification law, which was the first US state data breach notification law, enacted in 2002.
Introduction to US data breach notification laws

Video - 00:08:00

An introduction to US state data breach notification laws and course learning objectives.

Meet the author

Christopher Stevens

Chris Stevens has spent over thirty-five years as a data protection professional, a homeland security intelligence professional, an information privacy professional, a strategic intelligence manager, and as a Senior National Intelligence Service Senior Executive. Chris possesses all seven of the International Association of Privacy Professionals’ (IAPP) certifications. He is an IAPP Fellow of Information Privacy. Chris is a member of the IAPP Privacy Faculty, and he served for two years as an IAPP Baltimore, MD Knowledge Net Chapter Co-Chairperson. He is an American Health Information Management Association “Certified in Healthcare Privacy and Security” professional. He is a Healthcare Compliance Association “Certified Healthcare Privacy Compliance” professional.

Chris is an ISACA “Certified Information Security Manager,” “Certified in Risk and Information Security Controls,” and a “Certified Data Privacy Solutions Engineer” professional. Chris has completed the Loyola University-Chicago School of Law’s “Graduate Certificate in Privacy Law.” Chris is a certified OneTrust Privacy Professional. Chris possesses several baccalaureate and graduate degrees in several disciplines. He is currently completing the Capella University Doctor of Information Technology with a concentration in Cybersecurity and Information Assurance.

He has assisted several private sector and public sector organizations in better managing their privacy and risk management programs. He has developed information privacy courses and learning paths for Cybrary and the Infosec Institute, respectively. He currently teaches IAPP privacy certification examination courses. He also teaches for Drexel University’s College of Computing and Informatics as a part-time adjunct professor. He currently works for King and Spalding LLP as its Privacy and Cybrary Risk Analyst. He lives in Laurel, MD with his fiancé, her 11-year-old son, and his two rambunctious Scottish terriers: Thor and Maggie. 

Unlock 7 days of free training

  • 1,400+ hands-on courses and labs
  • Certification practice exams
  • Skill assessments

Associated NICE Work Roles

All Infosec training maps directly to the NICE Workforce Framework for Cybersecurity to guide you from beginner to expert across 52 Work Roles.

  • All-Source Analyst
  • Mission Assessment Specialist
  • Exploitation Analyst

Plans & pricing

Infosec Skills Personal

$299 / year

  • 190+ role-guided learning paths (e.g., Ethical Hacking, Threat Hunting)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Custom certification practice exams (e.g., CISSP, Security+)
  • Skill assessments
  • Infosec peer community support

Infosec Skills Teams

$799 per license / year

  • Team administration and reporting
  • Dedicated client success manager
  • Single sign-on (SSO)
    Easily authenticate and manage your learners by connecting to any identity provider that supports the SAML 2.0 standard.
  • Integrations via API
    Retrieve training performance and engagement metrics and integrate learner data into your existing LMS or HRS.
  • 190+ role-guided learning paths and assessments (e.g., Incident Response)
  • 100s of hands-on labs in cloud-hosted cyber ranges
  • Create and assign custom learning paths
  • Custom certification practice exams (e.g., CISSP, CISA)
  • Optional upgrade: Guarantee team certification with live boot camps

Learn about scholarships and financing with

Affirm logo

Award-winning training you can trust