Ohio data security breach notification law

Ohio HB 104 of 2005 requires that any person that owns or licenses computerized data that includes personal information shall disclose any breach of the security of the system, following its discovery or notification of the breach of the security of the system, to any resident of this state whose personal information was, or reasonably is believed to have been, accessed and acquired by an unauthorized person if the access and acquisition by the unauthorized person causes, or is reasonably believed will cause, a material risk of identity theft or other fraud to the resident. The policy detects combinations of Personally Identifiable Information (PII) like social security, credit card, and driver’s license numbers. The rules for this policy are:

• Ohio Data Security Breach Notification Law: Name and SSN
• Ohio Data Security Breach Notification Law: Name and DL
• Ohio Data Security Breach Notification Law: Name and CCN
• Ohio Data Security Breach Notification Law: Name and Password (Wide)
• Ohio Data Security Breach Notification Law: Name and Password (Default)
• Ohio Data Security Breach Notification Law: Name and Password (Narrow)
• Ohio Data Security Breach Notification Law: Password Dissemination for HTTP Traffic (Wide)
• Ohio Data Security Breach Notification Law: Password Dissemination for HTTP Traffic (Default)
• Ohio Data Security Breach Notification Law: Password Dissemination for HTTP Traffic (Narrow)